Report Overview

  1. Visited public
    2024-06-11 12:02:29
  2. URL

    www.universalmechanism.com/download/swtoumaddin.exe

  3. Finishing URL

    about:privatebrowsing

  4. IP / ASN
    95.181.164.192

    #208626 ServTech LTD

    Title
    about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
ocsp2.globalsign.com15441999-04-192012-05-23 20:10:042024-06-09 19:04:37
www.universalmechanism.comunknown2011-10-102013-08-03 02:54:402023-06-26 04:37:34

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


Files detected

  1. URL

    www.universalmechanism.com/download/swtoumaddin.exe

  2. IP

    95.181.164.192

  3. ASN

    #208626 ServTech LTD

  1. File type

    PE32 executable (GUI) Intel 80386, for MS Windows, 10 sections

    Size

    1.6 MB (1552472 bytes)

  2. Hash

    82d249da9005d5de19e96c1b58058670

    1f9150d97ca1fbb93ee7b3421f2bc72c6b53215a

    Detections

    AnalyzerVerdictAlert
    VirusTotalsuspicious

JavaScript (0)

HTTP Transactions (2)

URLIPResponseSize
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.21.226 1.4 kB
www.universalmechanism.com/download/swtoumaddin.exe
95.181.164.192200 OK1.6 MB