Report - cdn.discordapp.com/attachments/1329192572685651979/1329563342859141251/VANIHUB_MAJIN_RIAD_FREE_fixed_capcha.zip?ex=6790ba9b&is=678f691b&hm=7f9b9a6323654ec2fc21755fb41a8276f89746db48a5ef699dde5feed723b018&

Report Overview

Visited public
2025-01-21 17:16:21
Tags
URL
cdn.discordapp.com/attachments/1329192572685651979/1329563342859141251/VANIHUB_MAJIN_RIAD_FREE_fixed_capcha.zip?ex=6790ba9b&is=678f691b&hm=7f9b9a6323654ec2fc21755fb41a8276f89746db48a5ef699dde5feed723b018&
Finishing URL
about:privatebrowsing
IP / ASN
162.159.130.233
#13335 CLOUDFLARENET
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.discordapp.com	2474	2015-02-26	2015-08-24	2025-01-15	658 B	623 kB	162.159.129.233

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
cdn.discordapp.com/attachments/1329192572685651979/1329563342859141251/VANIHUB_MAJIN_RIAD_FREE_fixed_capcha.zip?ex=6790ba9b&is=678f691b&hm=7f9b9a6323654ec2fc21755fb41a8276f89746db48a5ef699dde5feed723b018&
IP
162.159.129.233
ASN
#13335 CLOUDFLARENET

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
621 kB (620861 bytes)
Hash
d7668bdcdf7c0ebab68b3b68b74d5059
eef69b606d8ad588003a55db227a317c9cbed86b
d255b7bf033e2dc85948c04aab771db89f24251b7efbc245278865c57fb625de

Archive (12)

Filename

Md5

File type

FindText.ahk

edc9cba9f370d00d40e9a597e70bc42e

ASCII text

gui.ahk

092cc292277b7c5b8e2926859f24a24d

ASCII text, with CRLF line terminators

close.png

96e8f800a5cf91ad9f1c9f7d72eb6ea1

PNG image data, 295 x 324, 8-bit/color RGBA, non-interlaced

CloseImage.png

cf3b4c04e8e87f230ed285dd7bc12cfa

PNG image data, 224 x 215, 8-bit/color RGBA, non-interlaced

Discord-Logo.png

32c6d327568ffba8f0fe563a0471a1d0

PNG image data, 3840 x 2160, 1-bit colormap, non-interlaced

Vani pfp.jpg

d05ea76815cf83bd1e86e2f16bd9e5bc

JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 736x736, components 3

mainsettingsui.ahk

ddabc2ea452fdeb81ce694e6a778daa4

ASCII text, with CRLF line terminators

OCR.ahk

398b64ff16fff4f6e30a9cc24a0f9e56

C++ source, Unicode text, UTF-8 (with BOM) text, with very long lines (310)

config.txt

860a3be048603ab3eac7ba61b59ace9f

ASCII text

gamemode.txt

2e907702429e05169f2b74da3c8ad701

ASCII text

lastlog.txt

d41d8cd98f00b204e9800998ecf8427e

vanihub Majin Free fixed capcha cause someppl dont work.exe

747fc6ab9d5b0e79d21b21a9d22e40a8

PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, 3 sections

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 3/65

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

cdn.discordapp.com/attachments/1329192572685651979/1329563342859141251/VANIHUB_MAJIN_RIAD_FREE_fixed_capcha.zip?ex=6790ba9b&is=678f691b&hm=7f9b9a6323654ec2fc21755fb41a8276f89746db48a5ef699dde5feed723b018&

162.159.129.233

200 OK

621 kB

URL User Request GET HTTP/2
cdn.discordapp.com/attachments/1329192572685651979/1329563342859141251/VANIHUB_MAJIN_RIAD_FREE_fixed_capcha.zip?ex=6790ba9b&is=678f691b&hm=7f9b9a6323654ec2fc21755fb41a8276f89746db48a5ef699dde5feed723b018&
IP
162.159.129.233:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectdiscordapp.com
Fingerprint0A:D4:AE:4F:06:AD:72:A7:F1:78:90:F7:BD:F9:12:3F:64:33:FD:87
ValidityWed, 15 Jan 2025 02:59:08 GMT - Tue, 15 Apr 2025 03:58:50 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
621 kB (620861 bytes)
Hash
d7668bdcdf7c0ebab68b3b68b74d5059
eef69b606d8ad588003a55db227a317c9cbed86b
d255b7bf033e2dc85948c04aab771db89f24251b7efbc245278865c57fb625de

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 3/65

HTTP Headers

GET /attachments/1329192572685651979/1329563342859141251/VANIHUB_MAJIN_RIAD_FREE_fixed_capcha.zip?ex=6790ba9b&is=678f691b&hm=7f9b9a6323654ec2fc21755fb41a8276f89746db48a5ef699dde5feed723b018& HTTP/1.1
Host: cdn.discordapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 21 Jan 2025 17:15:55 GMT
content-type: application/zip
content-length: 620861
cf-ray: 9058f2fa3ea27131-OSL
cf-cache-status: HIT
accept-ranges: bytes, bytes
age: 196106
cache-control: public, max-age=31536000
content-disposition: attachment; filename="VANIHUB_MAJIN_RIAD_FREE_fixed_capcha.zip"; filename*=UTF-8''VANIHUB%20MAJIN%20RIAD%20FREE%20fixed%20capcha.zip
etag: "d7668bdcdf7c0ebab68b3b68b74d5059"
expires: Wed, 21 Jan 2026 17:15:55 GMT
last-modified: Thu, 16 Jan 2025 21:30:03 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-goog-generation: 1737063003136630
x-goog-hash: crc32c=qvT+5A==, md5=12aL3N98Drq2iztot01QWQ==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 620861
x-guploader-uploadid: AFIdbgTGCh7YQuU12zeCfkYttsQOeUKewFKK2Mc_8nyZNrBDQBCn-nPFdm9mo8ef-Vmco6dPoMYqOFw
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jZZIKTfuvBGntMImJtc8QxxXl2s34njZzT2b24Inrn3nZISSZ9eyH2TRXtNI0ea2HOJXoM%2ByOkp4PiZ9BybBIllSUcTWHVAPCN8%2FpsKMN8dUb2EMDe0A%2FWxIk3R6LR3eas%2FdXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
set-cookie: __cf_bm=GVHswYFuM1yFBWsYnP53_mj42QrKdpqlwc8HEhu2mxY-1737479755-1.0.1.1-6MAA7wR2rmrhTOVnZuVC05WBuu4gcQMrKRfaPrspYiop1ca5ypLb7eZB04oj.xSZC2gzKfMa9Z4LOJRq2IOMIw; path=/; expires=Tue, 21-Jan-25 17:45:55 GMT; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
_cfuvid=E3Uly1pV8tYVD_a.GX2IYdQTOJldNh_UDBieQi2NvXU-1737479755915-0.0.1.1-604800000; path=/; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (12)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers