Report Overview
Visitedpublic
2024-11-29 20:59:56
Tags
Submit Tags
URL
cdn.discordapp.com/attachments/1312143311582134383/1312160801272102933/sex-with-husky.exe?ex=674b7c79&is=674a2af9&hm=e23cb1f85ff17e6a67c35ca203d116cadc881ce96e3b280e0c046e907fe7c056&
Finishing URL
about:privatebrowsing
IP / ASN
162.159.135.233
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
cdn.discordapp.com 3 alert(s) on this Host | 2474 | 2015-02-26 | 2015-08-24 | 2024-11-27 | 636 B | 1.1 MB | 162.159.130.233 |
Related reports
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2024-11-29 | medium | cdn.discordapp.com/attachments/1312143311582134383/1312160801272102933/sex-with-husky.exe?ex=674b7c79&is=674a2af9&hm=e23cb1f85ff17e6a67c35ca203d116cadc881ce96e3b280e0c046e907fe7c056& | Detects a vulnerable GIGABYTE driver sometimes used by malicious actors to escalate privileges |
| 2024-11-29 | medium | cdn.discordapp.com/attachments/1312143311582134383/1312160801272102933/sex-with-husky.exe?ex=674b7c79&is=674a2af9&hm=e23cb1f85ff17e6a67c35ca203d116cadc881ce96e3b280e0c046e907fe7c056& | meth_stackstrings |
OpenPhish
No alerts detected
PhishTank
No alerts detected
Mnemonic Secure DNS
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
cdn.discordapp.com/attachments/1312143311582134383/1312160801272102933/sex-with-husky.exe?ex=674b7c79&is=674a2af9&hm=e23cb1f85ff17e6a67c35ca203d116cadc881ce96e3b280e0c046e907fe7c056&
IP / ASN
162.159.130.233
File Overview
File TypePE32+ executable (console) x86-64, for MS Windows, 6 sections
Size1.1 MB (1076736 bytes)
MD5a5650239731a42bf37e299984e69138f
SHA154733ba380a5d4664a349537f4bac5b063b61947
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| Public Nextron YARA rules | malware | Detects a vulnerable GIGABYTE driver sometimes used by malicious actors to escalate privileges |
| YARAhub by abuse.ch | malware | meth_stackstrings |
| VirusTotal | malicious |
JavaScript (0)
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|