Report - www.drivehq.com/web/brana/dude.zip

Report Overview

Submitted URL
www.drivehq.com/web/brana/dude.zip
IP
66.220.9.57
ASN
#6939 HURRICANE
Submitted
2024-05-06 00:29:09
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.drivehq.com	798939	2005-03-09	2015-01-07	2024-02-06	488 B	4.8 MB	66.220.9.57

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
www.drivehq.com/web/brana/dude.zip
IP
66.220.9.57
ASN
#6939 HURRICANE

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
4.8 MB (4780945 bytes)
Hash
b5097a4503129ce373097de2285fcd7c
0edf9b75f0e94b2dd81d9dbf1f255e163a703e9e
731df5d0b2e13710f71c4220b6ab384e55ae938b0f8c1da8ae4e5382498a76bf

Archive (3)

Filename

Md5

File type

DuDe.txt

74bf48e48b1159f10fd74fc8aaae04da

Non-ISO extended-ASCII text, with very long lines (435), with CRLF line terminators

InstallDuDe32.exe

bd4491da93375e17afba98228c6e51e6

PE32 executable (GUI) Intel 80386, for MS Windows, 8 sections

InstallDuDe64.exe

fd0d596e2ce4a9ed4e414700b207a89d

PE32 executable (GUI) Intel 80386, for MS Windows, 8 sections

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	www.drivehq.com/web/brana/dude.zip	66.220.9.57	200 OK	4.8 MB
URL User Request GET HTTP/1.1 www.drivehq.com/web/brana/dude.zip IP 66.220.9.57:443 ASN #6939 HURRICANE Certificate IssuerGlobalSign nv-sa Subject.drivehq.com FingerprintE8:37:3B:4C:4F:C9:F1:E4:63:98:79:CE:69:08:40:01:20:CE:7C:69 ValidityTue, 17 Oct 2023 23:01:13 GMT - Sun, 17 Nov 2024 23:01:12 GMT File type Zip archive data, at least v2.0 to extract, compression method=deflate Size 4.8 MB (4780945 bytes) Hash b5097a4503129ce373097de2285fcd7c 0edf9b75f0e94b2dd81d9dbf1f255e163a703e9e 731df5d0b2e13710f71c4220b6ab384e55ae938b0f8c1da8ae4e5382498a76bf HTTP Headers `GET /web/brana/dude.zip HTTP/1.1 Host: www.drivehq.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Cache-Control: private Content-Length: 4780945 Content-Type: application/x-zip-compressed Last-Modified: Tue, 24 Apr 2018 21:29:11 GMT Accept-Ranges: bytes ETag: 636601769517500000 Server: Microsoft-IIS/10.0 Access-Control-Allow-Origin: X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET Date: Mon, 06 May 2024 00:28:43 GMT`

www.drivehq.com/web/brana/dude.zip

66.220.9.57

200 OK

4.8 MB

URL User Request GET HTTP/1.1
www.drivehq.com/web/brana/dude.zip
IP
66.220.9.57:443
ASN
#6939 HURRICANE

Certificate
IssuerGlobalSign nv-sa
Subject*.drivehq.com
FingerprintE8:37:3B:4C:4F:C9:F1:E4:63:98:79:CE:69:08:40:01:20:CE:7C:69
ValidityTue, 17 Oct 2023 23:01:13 GMT - Sun, 17 Nov 2024 23:01:12 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
4.8 MB (4780945 bytes)
Hash
b5097a4503129ce373097de2285fcd7c
0edf9b75f0e94b2dd81d9dbf1f255e163a703e9e
731df5d0b2e13710f71c4220b6ab384e55ae938b0f8c1da8ae4e5382498a76bf

HTTP Headers

GET /web/brana/dude.zip HTTP/1.1
Host: www.drivehq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 4780945
Content-Type: application/x-zip-compressed
Last-Modified: Tue, 24 Apr 2018 21:29:11 GMT
Accept-Ranges: bytes
ETag: 636601769517500000
Server: Microsoft-IIS/10.0
Access-Control-Allow-Origin: *
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Mon, 06 May 2024 00:28:43 GMT

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (3)

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers