Report Overview
Visitedpublic
2024-12-12 08:39:24
Tags
Submit Tags
URL
www.zelanus.com/wp-content/uploads/anydesk.exe
Finishing URL
about:privatebrowsing
IP / ASN
37.235.32.229
#43160 Avatel Telecom, SA
Title
about:privatebrowsing

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Host Summary

HostRankRegisteredFirst SeenLast Seen
www.zelanus.com
unknownunknownNo dataNo data

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules
SeverityIndicatorAlert
mediumwww.zelanus.com/wp-content/uploads/anydesk.exeOld_Code__Signature_AnyDesk_Feb2024
mediumwww.zelanus.com/wp-content/uploads/anydesk.exeDetect pe file that no import table

OpenPhish

No alerts detected


PhishTank

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


File detected

URL
www.zelanus.com/wp-content/uploads/anydesk.exe
IP / ASN
37.235.32.229
#43160 Avatel Telecom, SA
File Overview
File TypePE32 executable (GUI) Intel 80386, for MS Windows, 6 sections
Size5.0 MB (4993864 bytes)
MD5ecae8b9c820ce255108f6050c26c37a1
SHA142333349841ddcec2b5c073abc0cae651bb03e5f

Detections

AnalyzerVerdictAlert
YARAhub by abuse.chmalware
Old_Code__Signature_AnyDesk_Feb2024
YARAhub by abuse.chmalware
Detect pe file that no import table

JavaScript (0)

HTTP Transactions (1)

URLIPResponseSize