Report Overview
Visitedpublic
2023-10-03 08:39:29
Tags
Submit Tags
URL
github.com/S1lentHashhh/WinRing/raw/main/WinRing0x64.sys
Finishing URL
about:privatebrowsing
IP / ASN
140.82.121.3
#36459 GITHUB
Title
about:privatebrowsing

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Host Summary

HostRankRegisteredFirst SeenLast Seen
github.com
14232007-10-092016-07-13 12:28:222023-09-20 18:48:10
raw.githubusercontent.com
358022014-02-062014-03-01 08:08:082023-10-02 18:32:49

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules
SeverityIndicatorAlert
mediumraw.githubusercontent.com/S1lentHashhh/WinRing/main/WinRing0x64.sysDetects vulnerable driver mentioned in LOLDrivers project using VersionInfo values from the PE header - WinRing0x64.sys
mediumraw.githubusercontent.com/S1lentHashhh/WinRing/main/WinRing0x64.syssigned_sys_with_vulnerablity

OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


File detected

URL
raw.githubusercontent.com/S1lentHashhh/WinRing/main/WinRing0x64.sys
IP / ASN
185.199.110.133
#54113 FASTLY
File Overview
File TypePE32+ executable (native) x86-64, for MS Windows\012- data
Size14 kB (14544 bytes)
MD50c0195c48b6b8582fa6f6373032118da
SHA1d25340ae8e92a6d29f599fef426a2bc1b5217299

Detections

AnalyzerVerdictAlert
Public Nextron YARA rulesmalware
Detects vulnerable driver mentioned in LOLDrivers project using VersionInfo values from the PE header - WinRing0x64.sys
YARAhub by abuse.chmalware
signed_sys_with_vulnerablity
VirusTotalsuspicious
VirusTotal - Scan result 2/72

JavaScript (0)

HTTP Transactions (2)

URLIPResponseSize