Report - securitywonks.org/n2u/mirrorfiles/pebuilder3110a.zip

Report Overview

Visited public
2025-03-14 06:42:59
Tags
URL
securitywonks.org/n2u/mirrorfiles/pebuilder3110a.zip
Finishing URL
about:privatebrowsing
IP / ASN
170.249.236.236
#63410 PRIVATESYSTEMS
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
securitywonks.org	unknown	2003-03-21	2012-05-24	2024-01-19	520 B	3.4 MB	170.249.236.236

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
securitywonks.org/n2u/mirrorfiles/pebuilder3110a.zip
IP
170.249.236.236
ASN
#63410 PRIVATESYSTEMS

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
3.4 MB (3386435 bytes)
Hash
696ab118fe1fc92ad2093b48d543b274
5676d3c0c35e807ea6373095bbfb742db9d37bcd
e706e30bffcb4279e7906c2b3f044c10740cf9cb0c53d328597ded9604ad1f75

Archive (278)

Filename

Md5

File type

bartpe.bmp

6df6408706f78dadfe3ce8613d7a5b72

PC bitmap, Windows 3.x format, 800 x 600 x 16, image size 960002, resolution 7872 x 7872 px/m, cbSize 960056, bits offset 54

bartpe.exe

5bddd12446f54fd19b8774a2e577b2cc

PE32 executable (console) Intel 80386, for MS Windows, UPX compressed, 3 sections

bartpe.txt

7e96a3714566d0d08a7ae6007df3833b

ASCII text, with CRLF line terminators

cdrecord.exe

6208efaa961816faef35e1e72f9092de

PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed, 3 sections

changes.txt

00df0cadb134670e65dfb2e24bc99f4d

ASCII text, with CRLF line terminators

gnugpl.txt

b349f4d14f8e589f2587dc9b6d193f38

ASCII text, with CRLF, LF line terminators

mkisofs.exe

cc9d20cc7aca844a99f8e11e94a94d60

PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed, 3 sections

pe2usb.bin

97446d1f438d50362c4047c16dc60b59

DOS/MBR boot sector, code offset 0x3c+2, OEM-ID "MSDOS5.0", reserved sectors 2, root entries 512, sectors 63553 (volumes <=32 MB), Media descriptor 0xf8, sectors/FAT 247, sectors/track 63, heads 255, hidden sectors 63, serial number 0x3ed7ee02, unlabeled, FAT (16 bit)

pe2usb.cmd

4ff4e4df293650520a0599497b3ee899

DOS batch file, ASCII text, with CRLF line terminators

pe2usb.txt

6ce9130402fd48100c7921b36c032d91

ASCII text, with CRLF line terminators

pebuilder.bmp

36ae7fc72b69298c223fd7b512977b16

PC bitmap, Windows 3.x format, 400 x 224 x 16, image size 179202, resolution 7872 x 7872 px/m, cbSize 179256, bits offset 54

pebuilder.exe

6cedfbfcdd47d08ec90c06dd8fae554d

PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, 3 sections

pebuilder.inf

c47590383e889288b938fb07dc5dac8c

Windows setup INFormation

pebuilder.txt

b8e4899ecb4becffb1cd84724221f332

ASCII text, with CRLF line terminators

StarBurn.dll

b3bfb0ec29b632ff071d302400290d46

PE32 executable (DLL) (console) Intel 80386, for MS Windows, 3 sections

translations.txt

eb17749c3b375e483364d9d7dd4e2b66

ASCII text, with CRLF line terminators

Create a folder here and put the network drivers in it

d41d8cd98f00b204e9800998ecf8427e

Create a folder here and put the storage drivers in it

d41d8cd98f00b204e9800998ecf8427e

cmdlineoptions.htm

b099502c12ef742adb7f0f81958c0da3

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

drivers.htm

8a60eac6d8c8eee4dcf4dbba458ee429

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

index.htm

a7e340333d6524558a36aa4c6d66f5d6

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

main.htm

6b117c18745cb3fa85dbdd3289609749

HTML document, Non-ISO extended-ASCII text, with very long lines (314), with CRLF line terminators

options.htm

f6135164714746e8181da7cd3747256e

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

plugin.htm

467f49ec8fd5768ccece8b3d163ead31

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

pluginformat.htm

82c79d0ae35f33f43e868bf800370e0f

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

search.htm

ef85bab08fab55383f510a53244423d0

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

slipstream.htm

58a4760adfd1ff196cf5e824a40df727

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

support.htm

e4df4f12f5648611f4a6b4327dc4eac0

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

cmdlineoptions.htm

19d055c9daac12a5a998936ab6aaa211

HTML document, ISO-8859 text, with CRLF line terminators

drivers.htm

2a2edd0a18e2b7167b3ef5ee9e0a1c3a

HTML document, ASCII text, with CRLF line terminators

index.htm

c5fa04dee21860fe5170b6bdd7ca362a

HTML document, ASCII text, with CRLF line terminators

main.htm

d48f08d3c36b0c57081c104e8b8a6978

HTML document, ISO-8859 text, with CRLF line terminators

options.htm

5c362357abaa39d1a66ecaaf3364fcc1

HTML document, ISO-8859 text, with CRLF line terminators

plugin.htm

c903662dda5ea179c7b62b5ba4218c8a

HTML document, ASCII text, with CRLF line terminators

pluginformat.htm

e34a3b830f50b53e95ccb6fd7267bed1

HTML document, ISO-8859 text, with CRLF line terminators

search.htm

2b605adfe69eb99342c2908fe8055fed

HTML document, ASCII text, with CRLF line terminators

slipstream.htm

ae7d1f9efb9394ed4500118c9da26cf3

HTML document, ASCII text, with CRLF line terminators

support.htm

c107ea191ce0ecfc7dac88abc9bdc40b

HTML document, ASCII text, with CRLF line terminators

cmdlineoptions.htm

85378359d03e661bca6c8eff5607050c

HTML document, ASCII text, with CRLF line terminators

drivers.htm

1ffbe7799921cfe8d81d62075bea4a20

HTML document, ASCII text, with CRLF line terminators

index.htm

45e2803980e0507c13249727c1e61ee3

HTML document, ASCII text, with CRLF line terminators

main.htm

6ec2b92af12984dc3d98de1436dbe1e9

HTML document, ASCII text, with CRLF line terminators

options.htm

36828984bc9ec34fb5c7cacf9bbc4be7

HTML document, ASCII text, with CRLF line terminators

plugin.htm

234e8813b7b28fb07372569f73d621b7

HTML document, ASCII text, with CRLF line terminators

pluginformat.htm

8a7d0df0934a1c21be331e398d24c6b9

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

search.htm

9dd2fc86b82d0acaa8e7630f74b2535f

HTML document, ASCII text, with CRLF line terminators

slipstream.htm

035e3c6ea55029763a20d357733b7fbe

HTML document, ASCII text, with CRLF line terminators

support.htm

85623e9685e5d7f59045cc37580f3120

HTML document, ASCII text, with CRLF line terminators

cmdlineoptions.htm

dd3a3113224c1a749c7643c505cb996d

HTML document, ISO-8859 text, with CRLF line terminators

drivers.htm

bf93520abd34d69db0b4acd6b7b4347f

HTML document, ISO-8859 text, with CRLF line terminators

index.htm

86df78b320580ef6b95a4add902d8fc9

HTML document, ASCII text, with CRLF line terminators

main.htm

4687344353b91f3c78bde733325e5069

HTML document, ISO-8859 text, with CRLF line terminators

options.htm

0f27c12ceae3aa2ec524e4a41121efa1

HTML document, ISO-8859 text, with CRLF line terminators

plugin.htm

1d04bd6a29d3eb03b7452a4d974cdb9b

HTML document, ISO-8859 text, with CRLF line terminators

pluginformat.htm

58cf2d0f040b0f8d3a6f18e60c0f27ec

HTML document, ISO-8859 text, with CRLF line terminators

search.htm

ba219cd686e370b110e1009dcf0c8c44

HTML document, ASCII text, with CRLF line terminators

slipstream.htm

be6b90df8650e292d022e5fdf12a58d6

HTML document, ISO-8859 text, with CRLF line terminators

support.htm

f15e17c5b34234cc3f946a0774020ce2

HTML document, ASCII text, with CRLF line terminators

cmdlineoptions.htm

5b843c252e219d984d7c003bf200db3a

HTML document, Non-ISO extended-ASCII text, with CRLF, LF line terminators

drivers.htm

65bfbdcce76b8e4d80165656ccbdf09c

HTML document, Non-ISO extended-ASCII text, with very long lines (1340), with CRLF, LF line terminators

index.htm

904177d410a97d51dd5a1f7b48c8273c

HTML document, Non-ISO extended-ASCII text, with CRLF, LF line terminators

main.htm

42bbb0af5d5c85374654880d873ce157

HTML document, Non-ISO extended-ASCII text, with very long lines (1032), with CRLF, LF, NEL line terminators

options.htm

c3735bedaa0e822db3ef71d29685648a

HTML document, Non-ISO extended-ASCII text, with CRLF, LF, NEL line terminators

plugin.htm

7318e2b7db667181d405bfb5d555ec8d

HTML document, Non-ISO extended-ASCII text, with CRLF, LF, NEL line terminators

pluginformat.htm

e286f6e4a93a23e9eb52f8c7ca3cc681

HTML document, Non-ISO extended-ASCII text, with very long lines (532), with CRLF, LF, NEL line terminators

search.htm

24425a13143f156a1cdaf5a54307746e

HTML document, Non-ISO extended-ASCII text, with CRLF, LF line terminators

slipstream.htm

ee4125a5dc96c7b98d43d08bac6c6774

HTML document, Non-ISO extended-ASCII text, with CRLF, LF line terminators

support.htm

a1eba21aa407bc2529465de9a9c92740

HTML document, Non-ISO extended-ASCII text, with very long lines (415), with CRLF, LF line terminators

cmdlineoptions.htm

4657740039aaf12b85f4b8ed47c65c80

HTML document, ISO-8859 text, with CRLF line terminators

drivers.htm

43c692fbe73400a8f9ab649ebd408cc7

HTML document, ISO-8859 text, with very long lines (312), with CRLF line terminators

index.htm

f46db3cf9f6cf78d4e03261a50c240a3

HTML document, ISO-8859 text, with CRLF line terminators

main.htm

b4e07851102d75af1fb2dcd5170bd686

HTML document, ISO-8859 text, with very long lines (377), with CRLF line terminators

options.htm

466700b4b94d361871d766e7abf3e23e

HTML document, ISO-8859 text, with very long lines (324), with CRLF line terminators

plugin.htm

fb841ba23a5b768496dfe2c74528c547

HTML document, ISO-8859 text, with very long lines (303), with CRLF line terminators

pluginformat.htm

19f8800f882c430ed918cf3b00a71027

HTML document, ISO-8859 text, with CRLF line terminators

search.htm

bda140f53ac36b497ed8041222b55097

HTML document, ISO-8859 text, with CRLF line terminators

slipstream.htm

f0338014e84d5abbc2ad2b6186c762fd

HTML document, ISO-8859 text, with CRLF line terminators

support.htm

eb097ca468cf5fa126786bdefcd6af83

HTML document, ISO-8859 text, with CRLF line terminators

cmdlineoptions.htm

d306b7087dedeb5904d39a24de1ed22d

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

drivers.htm

9262ec6d25f07bdb95f6c42187d530d5

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

index.htm

26ee993ffcc3bb818986f6a6c20a4ece

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

main.htm

6c1d27aec91fc4e8a3fda03a55c29884

HTML document, Non-ISO extended-ASCII text, with very long lines (318), with CRLF line terminators

options.htm

c2a8f776659d9e0e07f23f59fefbf1d7

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

plugin.htm

dc52fd81b65e50b039c665fbff65f895

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

pluginformat.htm

45ce5dcef1eed9623e7ae71f7aff5d21

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

search.htm

b739f06233af3407371385c9c4c6e545

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

slipstream.htm

47ab782896ad3c476536e162ade4d4ea

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

support.htm

8097076864618e3ea3bb552b7b11b19f

HTML document, Non-ISO extended-ASCII text, with CRLF line terminators

arabic.lng

f4d52d87ecc3b909b91995f204e5dec1

ISO-8859 text

brazilian.lng

40fc4b1611fc1dfcaef166f483fe533f

Generic INItialization configuration [translation]

chinese_chs.lng

29bc82017901135c48b50f511bb017b7

Unicode text, UTF-16, little-endian text, with CRLF line terminators

chinese_traditional_bg5.lng

8cd34065ff79e143612cce2fe59705c7

Unicode text, UTF-16, little-endian text, with CRLF line terminators

czech.lng

1de27d6ec91741c54c6bc98063aa8237

Generic INItialization configuration [Translation]

dutch.lng

147449e2cbf33508634c6992eccf6d23

Generic INItialization configuration [Translation]

english.lng

64150effd7287fd290447e7b657f7508

Generic INItialization configuration [translation]

french.lng

057133b562fec3dafb61bc9fc0d4b33c

Generic INItialization configuration [Translation]

german.lng

ebfc199451999778a115c85d64200ebb

ISO-8859 text

greek.lng

21609562a3059727b00f83f4037de83a

Generic INItialization configuration [Translation]

italian.lng

86d38980fea9c3a3fdc8048ec3bd5da5

Generic INItialization configuration [Translation]

japanese.lng

32d2aea871723011951518b392366ac1

Generic INItialization configuration [Translation]

macedonian.lng

001025388603f8edeed3d05d434bf3f8

Generic INItialization configuration [Translation]

polish.lng

8e5ebf36565f1362e884cf83fa2decce

Generic INItialization configuration [Translation]

portuguese.lng

d648de870cd88b46a36ecc5792ac0600

Generic INItialization configuration [translation]

romanian.lng

cf84e4cb72791a9189ddec37e27940b5

Generic INItialization configuration [Translation]

russian.lng

aa44f29df42b3d351cecfaed6f86af42

Generic INItialization configuration [translation]

slovak.lng

a1e437344fb2ba8a3d9073ec47cb8470

Generic INItialization configuration [translation]

spanish.lng

444a6cead7945a2e65ac0349f906074f

Generic INItialization configuration [Translation]

turkish.lng

df0749e53863698d3fe0c122c4020165

Generic INItialization configuration [translation]

custom.htm

3ad7b52171cef5e263d8a4571ec9eac9

HTML document, ASCII text, with CRLF line terminators

custom.inf

f775bb2796772f850efbb7f7eb678d1b

Windows setup INFormation

a43.htm

72e7cabe9b1d955e0943bfdc3371f5f3

HTML document, ASCII text, with CRLF line terminators

a43.inf

ed2fe965e1562baa3d2f70bd83bbbed9

Windows setup INFormation

a43_nu2menu.xml

a2b6ee486e08f7af6f3782378de3895a

exported SGML document, ASCII text, with CRLF line terminators

a43.dat

31e258f40b0d17deba1852a8fd4799c7

PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, 3 sections

a43.exe

5be1cd5f9c4bbc0a7c7fd0404522ac3f

PE32 executable (GUI) Intel 80386, for MS Windows, 10 sections

a43.ini

06a3c2b54d19bd1e523f6728824d70ad

Generic INItialization configuration [A43FM]

a43help.txt

08b666c69e8238762d53d912ef80866d

ASCII text, with CRLF line terminators

changes.txt

a4c03499cc7047986c6b64c6b614ba3a

ASCII text, with CRLF line terminators

install.txt

c3c1d73a9bc44e6375178ddbc1760933

ISO-8859 text, with CRLF line terminators

unrar.dll

8adf46c2b6c5d4fb3c2947628375f55e

PE32 executable (DLL) (console) Intel 80386, for MS Windows, UPX compressed, 3 sections

adawarese.cmd

080145e91ce12c55653685480971bedf

DOS batch file, ASCII text, with CRLF line terminators

adawarese.htm

dc5b5dffdd2669158501b15711bf049b

HTML document, ASCII text, with CRLF line terminators

adawarese.inf

a0f88d789ed29c713b72a2c3498d0f54

Windows setup INFormation

adawarese_nu2menu.xml

d50dedb9254a4ccde4f2b123044b8533

exported SGML document, ASCII text, with CRLF line terminators

info.txt

917b94e7ace85f4f2e66445ec02fa8bb

ASCII text, with CRLF line terminators

put adawarese files here

d41d8cd98f00b204e9800998ecf8427e

aspi.htm

1ca5724adbc7835c4eeb0c9b236348af

HTML document, ASCII text, with CRLF line terminators

aspi.inf

5e84731ca6a40e046e9b4f017c4b2513

Windows setup INFormation

aspi_nu2menu.xml

9c63f8976521dd5aca7da9f1209728e1

exported SGML document, ASCII text, with CRLF line terminators

put aspi files here

d41d8cd98f00b204e9800998ecf8427e

autorun.cmd

ce844b9f927786a8858d86a961e2fdc4

DOS batch file, ASCII text, with CRLF line terminators

autorun.htm

16e86da977aad0a93632df96762fe8db

HTML document, ASCII text, with CRLF line terminators

autorun.inf

13d8d12848b7b6c38bc79f51637db75b

Microsoft Windows Autorun file Windows setup INFormation

autorun_nu2menu.xml

757401c05c525180ea3c9f258ede2cdf

exported SGML document, ASCII text, with CRLF line terminators

debugrun.cmd

c6b6aa744a8bd8b3841b31495fd1779a

DOS batch file, ASCII text, with CRLF line terminators

keydown.exe

4623960a249081254f0bf711e0ee3653

PE32 executable (console) Intel 80386, for MS Windows, PECompact2 compressed, 2 sections

bartpe.htm

d584d43a3be9938274d2fb8def2ace0a

HTML document, ASCII text, with CRLF line terminators

bartpe.inf

fb9c2fc32a6815e29177df2150bcb27e

Windows setup INFormation

bartpe_nu2menu.xml

bc72a81ff24e155188c6fbdf229a63af

exported SGML document, ASCII text, with CRLF line terminators

msclient.cmd

70c9ef39205a44a370fd4fd1b6377dee

DOS batch file, ASCII text, with CRLF line terminators

msclisrv.cmd

087ae424a56e8689f736f03f096ae1d7

DOS batch file, ASCII text, with CRLF line terminators

msserver.cmd

e463952ff1efda1e6ae8adbed48bfea6

DOS batch file, ASCII text, with CRLF line terminators

netconfig.exe

d7fdc2745b24c7325f98f22bafd2121d

PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, 3 sections

netconfig.txt

d41fef6232649b3d17beda9baca14762

ASCII text, with CRLF line terminators

run.cmd

d97b3c4d02efee4e4cd0348e4c2cec75

DOS batch file, ASCII text, with CRLF line terminators

autorun_bginfo.cmd

4bce9b5b34629dc2f9fccba1ec252732

DOS batch file, ASCII text, with CRLF line terminators

bginfo.bgi

73e0436a7af752d0e6f864842fc93336

data

bginfo.cmd

e01d6dae38e59227dd8562faefc2fb52

DOS batch file, ASCII text, with CRLF line terminators

bginfo.htm

dee6fe73c325aaa8bc22f4eb2d624ac1

HTML document, ASCII text, with very long lines (766), with CRLF line terminators

bginfo.inf

8b70da146adc5e9d08add6ee22f4b746

Microsoft Windows Autorun file Windows setup INFormation

bginfo_nu2menu.xml

05fcea2c9a61b0146e16b2ae260d63f9

exported SGML document, ASCII text, with CRLF line terminators

bootfix.htm

2d8fbcbaf43cb0a1343f6e42d08e77af

HTML document, ASCII text, with CRLF line terminators

bootfix.inf

51e59b6ae70a79c51381497e7cdde0e0

Windows setup INFormation

bst5.exe

af3770c622ce5c1b1fcb83b6b276b6bb

PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, 3 sections

bst5.htm

abed08e98d7aed0e4ed48e056cb2c2e5

HTML document, ASCII text, with CRLF line terminators

bst5.inf

ac95f75bee98cc0e3cde79ae3f1a947c

Windows setup INFormation

bst5.txt

dd5d97cf2175f4a146375272ab3e321d

ASCII text, with CRLF line terminators

bst5_nu2menu.xml

d2d863cdef34397943da15806ed32062

exported SGML document, ASCII text, with CRLF line terminators

bstfelic.txt

1814f80d44efb23881c5d005b5d146c8

ASCII text, with CRLF line terminators

bstpelic.txt

5487e4e6069aad9993e968258fcae1a5

ASCII text, with CRLF line terminators

chkdsk.cmd

0b4af7495f8a3877ad4258cdd43d4135

DOS batch file, ASCII text, with CRLF line terminators

chkdsk.htm

e5999195281384d1964d1e8d56029ef7

HTML document, ASCII text, with CRLF line terminators

chkdsk.inf

bbffc38f4c57d787166e59e8283939eb

Windows setup INFormation

chkdsk_nu2menu.xml

5d4ddee9c696e55d54799ac85a6db985

exported SGML document, ASCII text, with CRLF line terminators

dcomlaunch.inf

8af69aa88311b4e06f945cce20281596

Windows setup INFormation

deepburner.cmd

9dbaa19a38dabd20dde54fbe1f3e3fcc

DOS batch file, ASCII text, with CRLF line terminators

deepburner.htm

8620a0d399751ca26c59bfd5a9e6f05d

HTML document, ASCII text, with CRLF line terminators

deepburner.inf

3895b510721f5c4a6653d89149a2de37

Windows setup INFormation

deepburner_nu2menu.xml

a650e9fbe74770bee74dd606860888a8

ASCII text, with CRLF line terminators

put the files here

d41d8cd98f00b204e9800998ecf8427e

Dospe.htm

1310af940d0b6e709373a24f87b4b5a2

HTML document, ASCII text, with CRLF line terminators

Dospe.inf

8f04a8f8ee007cf4dde56e9c7726a5ea

Windows setup INFormation

dskcmd.htm

985f7dbb11654ed305a45d949c685eec

HTML document, ASCII text, with CRLF line terminators

dskcmd.inf

fb4715fef1a77c6dd177ac43a265916e

Windows setup INFormation

dskcmd_nu2menu.xml

0aa98531618da352df95e7f734ea89c2

exported SGML document, ASCII text, with CRLF line terminators

erd2002.htm

b2f13374b59a7ef83a19b673aee7c61f

HTML document, ASCII text, with CRLF line terminators

erd2002.inf

79cf363fae6cd83d687049e268aed7ff

Windows setup INFormation

erd2002_nu2menu.xml

4bf04ca73d0f133993b536b648f478b3

exported SGML document, ASCII text, with CRLF line terminators

ghost.htm

0c1ae3b15c3214881f22fdf8cf2c53dd

HTML document, ASCII text, with CRLF line terminators

ghost.inf

49ebc9ffe50d9356932428739e1e9d3b

Windows setup INFormation

ghost_nu2menu.xml

431082e21043731724fc6c07b33886fc

exported SGML document, ASCII text, with CRLF line terminators

switches.txt

69d4a27c04554814d1257d1d167fa291

ASCII text, with CRLF line terminators

put ghost files here

d41d8cd98f00b204e9800998ecf8427e

irfanview.htm

397a5752231706c7b691c31e840302fe

HTML document, ASCII text, with CRLF line terminators

irfanview.inf

300bfadc7c3d0377a0d05d91f91775df

Windows setup INFormation

irfanview_nu2menu.xml

c6400af83e6dbe3dfd33400c2b9d952d

exported SGML document, ASCII text, with CRLF line terminators

put the files here

d41d8cd98f00b204e9800998ecf8427e

keyboard.exe

cb149008c501a856373c9b3f2a152804

PE32 executable (console) Intel 80386, for MS Windows, 8 sections

keyboard.htm

1b472f606e29603580322ac7916e90b6

HTML document, ISO-8859 text, with CRLF line terminators

keyboard.inf

2dfcf1ecec5bedadf1ce08cd1fca11fb

Windows setup INFormation

keyboard_nu2menu.xml

0bc447cb3c2fb301e17e0d728b8dd28b

exported SGML document, ASCII text, with CRLF line terminators

changes.txt

d5a0f6f1f49a5014f31e6d546ce266d0

ASCII text, with CRLF line terminators

mcafee.htm

a5d9761bfd38bbdf712f2cde885d2cea

HTML document, ASCII text, with CRLF line terminators

mcafee.inf

7a1f3d3b94dad90946cab2ea5987c4c3

Windows setup INFormation

mcafee_nu2menu.xml

078ed480a037acd55719e36da31f3af5

exported SGML document, ASCII text, with CRLF line terminators

scangui.exe

efa48362b11192f40ac3dad4f2af1fed

PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, 3 sections

scangui.txt

4321cdfd14af7a885f1371d616ef34ee

ASCII text, with CRLF line terminators

put superdat file here

d41d8cd98f00b204e9800998ecf8427e

mstsc.htm

097d77880d6297032859918c52413081

HTML document, ASCII text, with CRLF line terminators

mstsc.inf

e246fbe030dbda252a8de55617e666c0

Windows setup INFormation

mstsc_nu2menu.xml

3af9445ddc0459fed9f770e104d0880c

exported SGML document, ASCII text, with CRLF line terminators

nero.cmd

5e82a9f33b5afec0f77793adf70f989b

DOS batch file, ASCII text, with CRLF line terminators

penero.htm

2f04f165e728de228a09a9a877ba4f39

HTML document, ASCII text, with CRLF line terminators

penero.inf

4150cd224e373fcdd284f960107aac06

Windows setup INFormation

penero_nu2menu.xml

912967bb7e69b9e014666f8e7c9923d8

exported SGML document, ASCII text, with CRLF line terminators

put nero files here

d41d8cd98f00b204e9800998ecf8427e

autorun-inf.txt

9e1648822d148735762b7cfc972c60bc

Microsoft Windows Autorun file

nu2go.bmp

55d27b135ffa698385c9a5a7866123ea

PC bitmap, Windows 3.x format, 91 x 31 x 24, image size 8558, resolution 7872 x 7872 px/m, cbSize 8612, bits offset 54

nu2menu.exe

171f0f8d05c090600b3633b9dcdc4732

PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, 3 sections

nu2menu.htm

6c959cbbe0f976cae10244f1863c34ba

HTML document, ASCII text, with CRLF line terminators

nu2menu.inf

64421365c5afdcf84caa2bd8fd5addf4

Microsoft Windows Autorun file Windows setup INFormation

nu2menu.lic

c7a99954a8d4ab784849442f4f102483

ASCII text, with CRLF line terminators

nu2menu.xml

d8dbb71e1651ed77934aed19f06621fd

XML 1.0 document, ASCII text, with CRLF line terminators

nu2menumsg.exe

109eeccb4b5a0630d26aac62862db421

PE32 executable (console) Intel 80386, for MS Windows, UPX compressed, 3 sections

sample-menu.xml

4b96fff77b20b740bee44b1c1ccbab50

XML 1.0 document, ASCII text, with CRLF line terminators

setres.exe

b93a94dfa32197f21d95c6a3fad9dc17

PE32 executable (console) Intel 80386, for MS Windows, 3 sections

mkbt.exe

567f04b813e55d9b3295279972ed7636

PE32 executable (console) Intel 80386, for MS Windows, UPX compressed, 3 sections

nt2peldr.exe

8fb8e6049ade2c2e9915406a383d904c

PE32 executable (console) Intel 80386, for MS Windows, UPX compressed, 3 sections

peinst.cmd

a09d79bbfd24508820eb3951f585d532

DOS batch file, ASCII text, with CRLF line terminators

peinst.htm

79d9b03185375f399e9f4c4ecb5392b2

HTML document, ASCII text, with CRLF line terminators

peinst.inf

f399f05c0fb06be4b912325043f32a09

Windows setup INFormation

peinst.txt

2029412855ba5a59bdfdbb48bb5441b9

ASCII text, with CRLF line terminators

peinst_nu2menu.xml

06348fd534c9e04751b98ab6b0ebcc96

ASCII text, with CRLF line terminators

autorun-penetcfg.inf

316bb38e0e59f3ea94c939fa7dfb1b36

Microsoft Windows Autorun file Windows setup INFormation

autorun0penetcfg.cmd

9bf353bc1f5df08e5049f38f8e6336d5

DOS batch file, ASCII text, with CRLF line terminators

License.txt

439bc07e2cabdb73333270e5a5de010f

ASCII text, with CRLF line terminators

penetcfg-dhcp.ini

867a62826299f92365275043499c9625

Generic INItialization configuration [NetID]

penetcfg-static.ini

279333da28641a1a2a34346168f41a53

Generic INItialization configuration [NetID]

penetcfg.exe

f429c60207f314f398d9261712e03a88

PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, 3 sections

penetcfg.htm

e31efe1e5f92189a2cf633075cbd1970

HTML document, ASCII text, with CRLF line terminators

penetcfg.inf

0c73b3359f273483c0ee8af37945261d

Windows setup INFormation

penetcfg.ini

bd067e2f7e05b94ed651a116f9b480aa

Generic INItialization configuration [NetProfiles]

penetcfg_nu2menu.xml

43de7d5153d2967da079f159fb903844

exported SGML document, ASCII text, with CRLF line terminators

readme.txt

03fd530ff31a8649a8c66c22e33feae0

ISO-8859 text, with very long lines (478), with CRLF line terminators

putty.htm

d2010c21254112571590d7a3706d76eb

HTML document, ASCII text, with CRLF line terminators

putty.inf

8668021f750220dc273db5d65edfefaf

Windows setup INFormation

putty_nu2menu.xml

8af70e2bb720b6bbeedcbedde5d5c0d8

exported SGML document, ASCII text, with CRLF line terminators

ramdisk.htm

738916c50a512b712e023ff666332619

HTML document, ASCII text, with CRLF line terminators

ramdisk.inf

3645cdbe3990087967ff0f784cbb87c5

Windows setup INFormation

ramdmenu.xml

3ae70a4f0f3ed598b7b7fa4bbf18553e

exported SGML document, ASCII text, with CRLF line terminators

ramdriv.sys

4f7979d1da4d41dcb402930ce88b35b4

PE32 executable (native) Intel 80386, for MS Windows, 7 sections

sermouse.htm

f5a01a9f9c6027566e9f18b943f6d5f4

HTML document, ASCII text, with CRLF line terminators

sermouse.inf

51134a410776f083f20c4927c0877e98

Windows setup INFormation

snapshot.exe

b58b710327e17fd7d7b49368d7c1a08e

PE32 executable (console) Intel 80386, for MS Windows, UPX compressed, 3 sections

snapshot.htm

26831efa49f5729b7e72610668df56a7

HTML document, ASCII text, with CRLF line terminators

snapshot.inf

ccf26de9a10bc3fb32e98bda5ea4ed8b

Windows setup INFormation

snapshot.xml

857cc493326ac03fea997a0ab5a70d3b

ASCII text, with CRLF line terminators

license.txt

e487d5bfadb9355b626a369c2ef09ef6

Non-ISO extended-ASCII text, with very long lines (855), with CRLF line terminators

readme.txt

2bc3c374f227ffc6f1bae5bb12ae9026

ASCII text, with CRLF line terminators

starwind.conf

f8a31933945167f2dc483ddcd3a6a962

ASCII text, with CRLF line terminators

StarWind.htm

c9f82f77771227714eb9b4752978efe0

HTML document, ASCII text, with CRLF line terminators

StarWind.inf

18bddd9e52b9e6b8f758dc138c757001

Windows setup INFormation

StarWind_GUI.cmd

840a583863724f455fcb2f24873f730c

DOS batch file, ASCII text, with CRLF line terminators

StarWind_Install.cmd

11e3bb8009a0d85a9ca90463f98c1518

DOS batch file, ASCII text, with CRLF line terminators

StarWind_nu2menu.xml

ac897f4d6ebaed056bf7c3be6bcb5483

exported SGML document, ASCII text, with CRLF line terminators

StarWind_Start.cmd

dec2bc5b6ebd7e79621129fd06ab3367

DOS batch file, ASCII text, with CRLF line terminators

StarWindService.exe

242d75d1817e43efbb0499225bdcd44e

PE32 executable (console) Intel 80386, for MS Windows, 3 sections

stinger.htm

c45072b4169376f22091d949b36167ff

HTML document, ASCII text, with CRLF line terminators

stinger.inf

b55c23d1a967825a32bc738809c5e5fa

Windows setup INFormation

stinger_nu2menu.xml

f46395a2e0fb4a2ee84217a40571e0ef

exported SGML document, ASCII text, with CRLF line terminators

totalcmd.htm

cd6712966dc103ff853812bffb06b96f

HTML document, ASCII text, with CRLF line terminators

totalcmd.inf

7e0b3648e35015cfbc1cca8922bfb030

Windows setup INFormation

totalcmd_nu2menu.xml

03623e1150a2d86523f4470af9086d8b

exported SGML document, ASCII text, with CRLF line terminators

wincmd.ini

3d87355c5ab78dbeb8ffc1f8e03e81ab

Generic INItialization configuration [SearchName]

put totalcmd files here

d41d8cd98f00b204e9800998ecf8427e

ultravnc.cmd

913b1d56aa8ea22fb33a2a29ed489a1a

DOS batch file, ASCII text, with CRLF line terminators

ultravnc.htm

001351b56737c617b79cc6b06b1a08b6

HTML document, ASCII text, with CRLF line terminators

ultravnc.inf

ba6b3353de0d1967939eb401eece69af

Windows setup INFormation

ultravnc_nu2menu.xml

548a168fd7a9acc9bce502af0e45bdc7

exported SGML document, ISO-8859 text, with CRLF line terminators

vncsettings.reg

fb0cb3b8e59aa941402b1fc04d841bba

Windows Registry little-endian text (Win2K or above)

copy ultravnc files here

d41d8cd98f00b204e9800998ecf8427e

nu2shell.exe

97491c804aff6a856349f7aa4dcd5d03

PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, 3 sections

nu2shell.inf

82b769cd7f98122d26a7a712b755553a

Windows setup INFormation

nu2shell.txt

03e01d3e88b73fc3622a259395fe2670

ASCII text, with CRLF line terminators

nu2shellcfg.exe

dae8c0c7bb670a1d838c87f2ae04c7ab

PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, 3 sections

nu2shell_nu2menu.xml

5b2460359719cc5aaaae628d878fce17

ASCII text, with CRLF line terminators

reboot.cmd

e3e8c967a31e36876c6c4bfd9a88d723

ASCII text, with CRLF line terminators

shutdown.cmd

ecc9524d993da6305cd2c03b87344ef8

ASCII text, with CRLF line terminators

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Detects imphash often found in malware samples (Maximum 0,25% hits with search for 'imphash:x p:0' on Virustotal) = 99,75% hits
VirusTotal	suspicious	VirusTotal - Scan result 2/64

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

GET securitywonks.org/n2u/mirrorfiles/pebuilder3110a.zip

170.249.236.236

200 OK

3.4 MB

URL User Request GET
securitywonks.org/n2u/mirrorfiles/pebuilder3110a.zip
IP
170.249.236.236:443
ASN
#63410 PRIVATESYSTEMS

Certificate
IssuerLet's Encrypt
Subjectmail.securitywonks.org
Fingerprint36:6F:C5:48:9E:A3:CF:DB:F6:33:87:F9:C3:37:E4:2B:25:B2:8B:ED
ValidityMon, 10 Mar 2025 04:09:22 GMT - Sun, 08 Jun 2025 04:09:21 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
3.4 MB (3386435 bytes)
Hash
696ab118fe1fc92ad2093b48d543b274
5676d3c0c35e807ea6373095bbfb742db9d37bcd
e706e30bffcb4279e7906c2b3f044c10740cf9cb0c53d328597ded9604ad1f75

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 2/64

HTTP Headers

GET /n2u/mirrorfiles/pebuilder3110a.zip HTTP/1.1
Host: securitywonks.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/zip
last-modified: Fri, 17 Feb 2006 12:07:10 GMT
accept-ranges: bytes
content-length: 3386435
date: Fri, 14 Mar 2025 06:42:36 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (278)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers