Report Overview
Visitedpublic
2025-02-12 00:20:13
Tags
Submit Tags
URL
files.catbox.moe/jklbnz.bin
Finishing URL
about:privatebrowsing
IP / ASN
108.181.20.39
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
files.catbox.moe 1 alert(s) on this Host | 174913 | 2015-04-06 | 2015-06-29 | 2025-02-05 | 493 B | 10 MB | 108.181.20.39 |
Related reports
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2025-02-12 | medium | files.catbox.moe/jklbnz.bin | Mofongo loader maps and executes a payload in a hollowed msedge process |
OpenPhish
No alerts detected
PhishTank
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
files.catbox.moe/jklbnz.bin
IP / ASN
108.181.20.39
File Overview
File TypePE32+ executable (console) x86-64, for MS Windows, 8 sections
Size10 MB (10250240 bytes)
MD5ba55f8443dfe8ed82f40af690cdc3c55
SHA1dd52af94bfadf98502bf9e2afa769652161ae0a3
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | Mofongo loader maps and executes a payload in a hollowed msedge process |
JavaScript (0)
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|