Report Overview
Visitedpublic
2025-02-18 11:53:38
Tags
Submit Tags
URL
xmp.down.sandai.net/kankan/KankanSetup.exe
Finishing URL
about:privatebrowsing
IP / ASN
101.226.28.234
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
xmp.down.sandai.net 1 alert(s) on this Domain | 792916 | 2003-01-27 | 2012-07-21 | 2025-02-15 | 508 B | 6.9 MB | 101.226.27.113 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
xmp.down.sandai.net/kankan/KankanSetup.exe
IP / ASN
101.226.27.113
File Overview
File TypePE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive, 5 sections
Size6.9 MB (6932672 bytes)
MD5bbb504701bc497ea6bec288a089662e2
SHA10ed6e1b4ac34303a996840e6718887dd59c154f4
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| VirusTotal | suspicious |
JavaScript (0)
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|