Report - download.maxko.org/patch1762.zip

Report Overview

Submitted URL
download.maxko.org/patch1762.zip
IP
45.95.168.50
ASN
#211619 MAXKO d.o.o.
Submitted
2024-05-04 15:01:13
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
download.maxko.org	unknown	2010-01-16	2019-02-24	2024-01-09	402 B	795 kB	45.95.168.50

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
download.maxko.org/patch1762.zip
IP
45.95.168.50
ASN
#211619 MAXKO d.o.o.

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
795 kB (794933 bytes)
Hash
28cd5ad122f4c6b681a64de9ddf71157
5140ceaa792d679ef48bb545b85896ca9d6d8b28
6050ab33b6e17e03cef164a51d95d729b3045c82c4742a98d19d4eb0d99c65fc

Archive (19)

Filename

Md5

File type

1_2940_10_0.dxt

6a5a6e9ed0cbc5dd35256040d563dbe0

data

1_2940_10_0.n3cplug

f0eb1cad44ea6a3f60e8a69ffba44112

Matlab v4 mat-file (little endian) �#y>`��0�A=�}? , rows 1769238101, columns 1684368500

1_2940_10_0.n3pmesh

11ac517e3b15271ccf7cc2af439a2c7b

data

1_2940_10_0.n3shape

a3a0975c06777e8db471d3270633fbee

data

itemicon_1_6944_20_0.dxt

187d583dd96d0239ed86d7ad729b7b8d

data

itemicon_1_8111_00_0.dxt

bb65584a671b4140d3c97fcfd8de991a

data

itemicon_1_8111_10_0.DXT

fbb9f9f1b536c1cbc89da10c04745dd2

data

itemicon_1_8111_20_0.DXT

1dec6efca8c022d4a5b6fe58c44efde0

data

itemicon_1_8111_30_0.DXT

e23f9ec0670913bdaa6566ded3ed96c7

data

maxko.dll

3b0a6c08941675d8921cc5d64f7371ed

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

Server.ini

e1b49ed1504f649f5ad935ebf5349a75

Windows setup INFormation

Item_Ext_0_us.tbl

346155a3aee720ecaca03ef970799508

data

Item_Ext_12_us.tbl

59cab91f546f75c6db9f8ec5f8ea85ee

data

Item_Ext_18_us.tbl

e8140e0489269f750351c4cf0baa642a

data

Item_Ext_1_us.tbl

3b596b3537cd2a29f8c0fd41ec1e14d0

data

Item_Ext_20_us.tbl

056b06fb573cbc0d0ce5f9b2067ca9f8

data

Item_Ext_2_us.tbl

00b8f618eb9a3a129708a6443a17b017

data

Item_Ext_5_us.tbl

4848b6cd3be6678ae30a9656796c0fb1

data

Item_org_us.tbl

058484861ca44fcaca1c91e9161ad20f

data

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	download.maxko.org/patch1762.zip	45.95.168.50	200 OK	795 kB
URL User Request GET HTTP/1.1 download.maxko.org/patch1762.zip IP 45.95.168.50:80 ASN #211619 MAXKO d.o.o. File type Zip archive data, at least v1.0 to extract, compression method=store Size 795 kB (794933 bytes) Hash 28cd5ad122f4c6b681a64de9ddf71157 5140ceaa792d679ef48bb545b85896ca9d6d8b28 6050ab33b6e17e03cef164a51d95d729b3045c82c4742a98d19d4eb0d99c65fc HTTP Headers `GET /patch1762.zip HTTP/1.1 Host: download.maxko.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sat, 04 May 2024 15:01:07 GMT Server: Apache/2.4.47 (Win64) OpenSSL/1.1.1k PHP/7.4.19 Last-Modified: Tue, 05 Oct 2021 15:33:11 GMT ETag: "c2135-5cd9cbf469afc" Accept-Ranges: bytes Content-Length: 794933 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/zip`

download.maxko.org/patch1762.zip

45.95.168.50

200 OK

795 kB

URL User Request GET HTTP/1.1
download.maxko.org/patch1762.zip
IP
45.95.168.50:80
ASN
#211619 MAXKO d.o.o.

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
795 kB (794933 bytes)
Hash
28cd5ad122f4c6b681a64de9ddf71157
5140ceaa792d679ef48bb545b85896ca9d6d8b28
6050ab33b6e17e03cef164a51d95d729b3045c82c4742a98d19d4eb0d99c65fc

HTTP Headers

GET /patch1762.zip HTTP/1.1
Host: download.maxko.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 15:01:07 GMT
Server: Apache/2.4.47 (Win64) OpenSSL/1.1.1k PHP/7.4.19
Last-Modified: Tue, 05 Oct 2021 15:33:11 GMT
ETag: "c2135-5cd9cbf469afc"
Accept-Ranges: bytes
Content-Length: 794933
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/zip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (19)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers