Report - 114.141.49.115:82/aplikasi/Desktop%20Apps/RKM%20Apps.zip

Report Overview

Visited public
2025-04-26 06:37:43
Tags
URL
114.141.49.115:82/aplikasi/Desktop%20Apps/RKM%20Apps.zip
Finishing URL
about:privatebrowsing
IP / ASN
114.141.49.115
#38771 PT Cyberplus Media Pratama
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
114.141.49.115	unknown	unknown	No data	No data	440 B	3.3 MB	114.141.49.115

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-04-26 06:37:08	medium	Client IP	114.141.49.115	ET INFO Dotted Quad Host ZIP Request
2025-04-26 06:37:08	low	114.141.49.115	Client IP	ET HUNTING SUSPICIOUS .LNK File Inside of Zip

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-26	medium	114.141.49.115	Sinkholed

ThreatFox

No alerts detected

Files detected

URL
114.141.49.115:82/aplikasi/Desktop%20Apps/RKM%20Apps.zip
IP
114.141.49.115
ASN
#38771 PT Cyberplus Media Pratama

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
3.3 MB (3273451 bytes)
Hash
029741127c423c0f61cfe806c02e1537
8dbed8cff2ebc9ea31c41986500c88ba845dca0c
b23ec4099d7e903f411f41559dbf3855bf2f3497fce1d94397438bc7de3c45f2

Archive (217)

Filename

Md5

File type

RKM Apps.lnk

f26a0ae3d16ef888c731378f6933757b

MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Icon number=0, Unicoded, HasExpIcon "%SystemDrive%\vDos\RKMIcon.ico", MachineID it-pc, EnableTargetMetadata, Archive, ctime=Fri Feb 19 01:48:02 2021, atime=Fri Feb 19 01:48:02 2021, mtime=Fri Feb 19 02:22:09 2021, length=141, window=normal, IDListSize 0x00c9, Root folder "20D04FE0-3AEA-1069-A2D8-08002B30309D", Volume "C:\", LocalBasePath "C:\vDos\Go.bat"

BTRIEVE.TRN

73f4d45431d9a909b546145422474486

data

MAIN01.DAT

138d484df0eb2f6b1bb19f1be903ffdc

data

ACS_PC.ENG

b1dc3baefb69ee8049f575f7b94ba957

ASCII text, with CRLF line terminators

ACT_ALT.ENG

0cea6e24e7334d72d10b586d704f0dc8

CSV ASCII text

ACT_STD.ENG

49e869c6bfb415f452d3cd44916b99a0

CSV ASCII text

AIAICJAG

c47b041eacd1e35e4b1cc5e23d8cc1a2

DIY-Thermocam raw data (Lepton 2.x), scale 22530-0, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 0.000000, slope 536870912.000000

AKAECDGC

b380c47dc4aec0e04934e2f98638c34b

data

ALIMP.LOG

6249239c80ad7df8c96f0501a2bccd6c

ASCII text, with CRLF line terminators

ARJ.EXE

1ed0f4116df191a8b98aa5b6b9dc874d

MS-DOS executable, MZ for MS-DOS

BATCHRDY.DAT

b402109fd05a8aec6d38f036575e92a6

data

BREQUEST.EXE

44c5a8bc57bf66844843cf44a5ba9cf4

MS-DOS executable, MZ for MS-DOS

BTRIEVE.EXE

d3135bee4aafb4262c4823ebdebb064a

MS-DOS executable, MZ for MS-DOS

BTRIEVE.TRN

53e979547d8c2ea86560ac45de08ae25

data

BTRIEVEP.EXE

287a767c60e13542bc863853972963ad

MS-DOS executable, MZ for MS-DOS

BTSTOP.EXE

b92e180bd15de65d8a53d460842b7a9f

MS-DOS executable, MZ for MS-DOS

BTUTIL.EXE

0812477b111268f9123de77bcbfa88a7

MS-DOS executable, MZ for MS-DOS

CAIMP.LOG

d26a63640d0ef14fe506e81fb8433870

ASCII text, with CRLF line terminators

CEZPBFLA

4c49436020eeda2efcfd2120fdf90664

data

CFIG386.EXE

55cd5c83fcbea7b448d6ab724b88dae5

MS-DOS executable, MZ for MS-DOS

CLR_GUI.ENG

b370b685a0daac8b3035dd992344f568

CSV ASCII text

CLR_LCD.ENG

d8c97934e92f47d42dcfa1ec3a08b005

CSV ASCII text

CLR_STD.BAK

06b04772660c9474d3898af119579954

CSV ASCII text

CLR_STD.ENG

6b8536d1b9604ad3bea6e5e505809561

CSV ASCII text

COBCK072.DAT

3d416966232a2558d51f3361bee4471d

data

DDEEHJNO

b17fe3cc777ba2f9f70294fc148d8ef5

data

DFAKPENJ.DAT

cefa637ff4273b7bbbeb24bff3393c0e

data

DOC_EXT.ENG

08bb9b47237e07d6c1b05de72c1c8b9c

data

DOC_STD.ENG

3a129aae31398bf299101166922e6987

data

DSTDCO.DAT

162c2a716d595779b55f3265ce17dfc8

data

EPSON.ATR

b19cf3e37b57cf9b830154b4960bd6ef

ASCII text, with CRLF line terminators

GBIMP.LOG

42d93cabfa512e0214d227559f0bfe50

ASCII text, with CRLF line terminators

GIJTOGPZ

e477da61b3a6727a0b00f3336be4a0a3

data

GRAFIK.DAT

683052afe4067da6bf2de127a33930ce

data

HFAKPENJ.DAT

d3d1b5a9e9c4021104ae348a1f338144

data

INIMP.LOG

58e91ff7e9f11ee7427f7967c842e0c7

ASCII text, with CRLF line terminators

KALENDER

8675c0f61c748f0753e268d946a1d7fe

ISO-8859 text, with CRLF line terminators

KLR.DAT

c31cd069f03aeb1e5090eb6979ed8753

data

LAP.PIUT02

b94f80b968133ea6cfe702a976599505

Zip archive data, at least v2.0 to extract, compression method=deflate

LHKXOELQ

520fe8fcd774db07a3d23d2f7c2faec5

data

LJ3.ATR

9c9dfcaa9a104f39e2d7ffdf25e64c2d

ASCII text, with CRLF line terminators

LZCLTPLG

b059d9710365c942519f3ef2fbef16f1

data

m.bat

58e5053184f173ea1f500bd4fce58c6f

ASCII text, with CRLF line terminators

MAGIC.BAT

9c3fe427c0ae54d8eadec40e44a655cd

DOS batch file, ASCII text, with CRLF line terminators

MAGIC.INI

1f8b5e9f873941d7a0c9d52d5b439d8a

ASCII text, with CRLF line terminators

MG56.BAT

9c3fe427c0ae54d8eadec40e44a655cd

DOS batch file, ASCII text, with CRLF line terminators

MGBTRV.EXE

42e5e2c48b2cdefd771cabf4853f1200

MS-DOS executable, MZ for MS-DOS

MGBTRV6.EXE

54c78acef887dad08af6b3e20c498d36

MS-DOS executable, MZ for MS-DOS

MGCONST.ENG

ba7f07a6551b7a8e052602551a3110b5

data

MGCONSTW.ENG

ce9d0ebc26639afd0ddd1f1db4dac69e

data

MGERROR.COM

1e263cb89d05085103d8c09353ded88c

DOS executable (COM), start instruction 0xe90f0900 00000000

MGGEN.EXE

28c7a73142c798afc8f79ee1d4f4eb41

MS-DOS executable, MZ for MS-DOS, MZ for MS-DOS

MGGEN386.EXE

7494ece7c2f6b9f337f02e5ca00d72e7

MS-DOS executable, MZ for MS-DOS

MGHELP.ENG

d5b2148f966517aa841d1b43227340e8

ASCII text, with CRLF line terminators

MGLOCK.DAT

d41d8cd98f00b204e9800998ecf8427e

MGLOGO.EXE

06e306293a347b2883713f15fe73c5a1

MS-DOS executable, MZ for MS-DOS

MGLOGO.PIC

81a15036b2bbf763b78bc722e7b1e3e9

data

MGSTOP.EXE

b145e6dc9e6c6ef80abedc961cea715d

MS-DOS executable, MZ for MS-DOS

MGSWAP.COM

0c2f0a1a607e0bbbf988e2eb5ce4074d

DOS executable (COM), start instruction 0xe9880800 00000000

MSCOST.DAT

6aa757b5dfdf0fd0dd247be918c4f01c

data

MSDEBTOR.DAT

214637716d98156f3dfae1763a52b1ab

data

NAGIC.INI

a52ed8a64bd9fe3d4c104ed302e2b9f2

ASCII text, with CRLF line terminators

NHSRVOS2.EXE

1f3ffe8604447a3d06efbb15b834f8b7

MS-DOS executable, NE for OS/2 1.x (0.0) (EXE)

ONIMP.LOG

3f617f39690da496a29eaf1ad6a3a628

ASCII text, with CRLF line terminators

PKUNZIP.EXE

506907f429aa0c67b7c440f9d3690f13

MS-DOS executable, MZ for MS-DOS Self-extracting PKZIP archive

PKZIP.EXE

e5a48751250ffa94a8cf2ecaf8073098

MS-DOS executable, MZ for MS-DOS Self-extracting PKZIP archive

POIMP.LOG

c19ad4ed6aa259c108582a9a529fab1b

ASCII text, with CRLF line terminators

PRN_PC.ENG

8c0a8482734610278a5dc1d0005c2bf9

ASCII text, with CRLF line terminators

PRN_STD.ENG

34ad97faab4d9a7614138383d044f7ff

ASCII text, with CRLF line terminators

PRNFIL

5e6d77b9b8c995bc3737709dcc1194f8

data

PUIMP.LOG

b4a8a419eb378955f0eae3e4f23636ef

ASCII text, with CRLF line terminators

RBBCK263.DAT

e4e6652e4fc69fea412dbece9fa9d065

data

RBIMP.LOG

f687bcba98cbf922669ac5dc84f308b7

ASCII text, with CRLF line terminators

README.386

6c89aae7886486e67ef27c2d00c39a90

ISO-8859 text, with CRLF line terminators

README.DOS

3a9ccffcc057e1fd2f25e115fce521f4

data

RKIMP.LOG

ff4337ded443339ef5a32eb833f92255

ASCII text, with CRLF line terminators

RKRPR.DAT

d1fe05f92cc879d32a21791ebde4fe59

data

RPIMP.LOG

cd977e747d59445d7ea27247488b63a7

ASCII text, with CRLF line terminators

RZIMP.LOG

c46448028957d6e2e52dfb322b49da56

ASCII text, with CRLF line terminators

SAP2FILE.EXE

10f24eda35b93e3696e9a63ed1f02989

MS-DOS executable, MZ for MS-DOS

STR_PC.ENG

d21db04088c93c460d001c7792ace441

magic text file for file(1) cmd, ASCII text, with CRLF line terminators

SUMMARY.DAT

846cddf27d3fd96abcacc87b824277c8

data

SUPPLIER.DAT

8b7e55d4b35794f350c5805252eed727

data

TBLAREA.DAT

bb7ea65c9f7931f51862e824b97654c7

data

TBLDEPT.DAT

3ccf810f8941b49c1f969bae45cc5ee5

data

TBLN.DAT

24f723739fcb44c44c6fbeeec5be6bc3

data

TEMPNOM.TMP

a0e4c82b53f2cbb35e8d11908f686804

data

TEPCODED.TMP

93f1ed725aabc64d47d95785f88b948a

data

Thumbs.db

aa99f9b0bd1aaa63cb787fc0ed5cdc2c

Composite Document File V2 Document, Cannot read section info

TMPRPT.AC

01ff83152c24c77cfc9275904d5f58d1

data

TMPRPT.CA

0ebf8c47e777660b0c03b92fa7aecfad

data

TOMBOL.F1

fd091623be463b0b24d43a63eb100d2c

ASCII text, with CRLF line terminators

TRINDT.DAT

786bdb9ab60f6ac582e0e80de1c9e57e

data

TRINHD.DAT

7dafe86c476adc301686b7a14cb42521

data

TROUTDT.DAT

786bdb9ab60f6ac582e0e80de1c9e57e

data

TROUTHD.DAT

7e1fc04a286fdcc09d3b8788bc7ec5b6

data

URUT.DAT

94fe336b15b90fb699c1d8fe677a92e0

data

users.bdg

66abcd745dc41e32a3ef909fd4e64c54

data

USERS.DAT

a5266ba9e3d21161742c579bd86414ce

data

USR_STD.ENG

fb7e17d021d469578ee5b97de294e660

data

VIEW.COM

d129dc8cf20fa1d889652c9a6adb365a

DOS executable (COM), start instruction 0xe9960041 5454523d

a988152b58d3d1d9e82f38a41e2ef856

ISO-8859 text, with CRLF line terminators

XXCTL.DAT

3f9e772479ea21b9353e5b5668fb5835

data

XXFIL001.DAT

d5f776696edd23d02543c2dd9bf3ae80

data

YLIMP.LOG

5b240249129b0b5a441519ee55fddcd5

ASCII text, with CRLF line terminators

8187af3db28b8ad7eec1143dc8eca82d

ISO-8859 text, with CRLF line terminators

RKCTL.DAT

7a1d0e5f97111256864fbd45feed9e12

data

RKMDLI.APP

a687fb34084121392c467b37867f014b

data

auto.bat

6b78ea9cdc5325a58e4718cabd7889bf

ASCII text, with CRLF line terminators

autoexec.txt

9f24302557a107076f1389d46e016691

ASCII text, with CRLF line terminators

config.txt

eec37d8e1483e405e93ef04dcb3645b9

Non-ISO extended-ASCII text, with CRLF line terminators

BUDGET.D01

0228786cb3eeb7756a23d65076879141

data

BUDGET.D02

475ee7aeefeabcf8d8b7396c1b696016

data

BUDGET.D03

ef8342f132a6557f7ec8bc2a70da2e16

data

BUDGET.D04

7db2f71df014ac9e1b5af9783c9d821a

data

BUDGET.D05

8b6467875705c2a25b4e0643897e56b6

data

BUDGET.D06

1033de0736abe5da4854e8b83c61e1ce

data

BUDGET.D07

d524ebd8f178d803e0c5fde4963650d2

data

BUDGET.D08

03c938efe32fc410cd4e652a7b47ae2a

data

BUDGET.D09

e8fecb6cd1e63f022066c3bd1f0abfbc

data

BUDGET.IND

9ccfa89b209481ffdc6cc3c13bbaa819

data

BUDGET.STR

081657bcfffafb0579d3255b72a7bb53

Corel PlanPerfect macro, v1.3

BUDGET.TXX

ba61e064ad1e5c130c99bfbc5f2c4cb7

data

CHECKING.D01

bdcb0f4a57af9f3ef30160f4e7a642ee

data

CHECKING.D02

6c9041a947a453c4b643d0917c3ef6be

data

CHECKING.D03

0852e171a3a40c29446aed8bcb03cca6

data

CHECKING.D04

7f2b34ceae72d9a0f033901428fa63e7

data

CHECKING.D05

d85778415f46e9fcf61a60601ab37795

data

CHECKING.D06

a71db178c97afbb2d48a52e4df8989a1

data

CHECKING.IND

78fa337feeb5bf5233f5a906afee00bc

data

CHECKING.STR

8da958a9190460e3fd10ac1b24abbd70

Corel PlanPerfect macro, v1.3

CHECKING.TXX

d942d6199849b5a659e9526d5e0d25e0

data

CONTACTS.D01

2fd56c0905dafdbf492587b8097a5458

data

CONTACTS.D02

9e7c12747f34e1f4149aaac10d2e17d5

data

CONTACTS.D03

1fe67d6f2ebd394f9baeb42ac87c2879

data

CONTACTS.D04

925a99634843572328aff867d51dafe0

data

CONTACTS.D05

8d5069b0c9e0d6f5f9c47ce9d5962ea4

data

CONTACTS.D06

c6db40ed78530c94007d00cc19937c8b

data

CONTACTS.D07

9cc3c669d461b8f495b1af0440a5d7b5

data

CONTACTS.IND

640c8125c328a070d5fce5c903143ef3

data

CONTACTS.STR

c8dec4cf1b6353d94a5534cc938fa17e

Corel PlanPerfect macro, v1.3

CONTACTS.TXX

24cc3131b4cc9b903980cf867cfb140d

data

DP.SYS

b5cf162bc5f2c5137643695cfa2fa977

data

DP26YI.EXE

19b1f0877322c49f6e743e4aecd543cf

MS-DOS executable, MZ for MS-DOS

DPTUTOR.EXE

b9b990c57ce5438ac29b8a49fbec130a

MS-DOS executable, MZ for MS-DOS

DPTUTOR.SYS

e38c90238362bd4075380ec427695b92

data

HALVA.WKB

3fba67e4ee7ead91d9ad3e4922de0c52

WordPerfect document, v5.0

LESSON.INT

14ad60ddc1b96b39cfc834036f26449a

data

LESSON.INX

4de6d73726c9b851019daa77eabf36ec

data

LESSON.NAV

c4ce40f0cec3b3dc4b9f49e4a89c17b4

data

LESSON.NEW

52de0224975a92cc8bbbc8924ef0c1c1

data

LESSON.REL

9362ea1b43778eb7f3cb6d3c00f95327

data

MAILING.01

0da765199abf98b119dfb26e37eeda12

data

MAILING.02

f526e0958b53c9dc0eb9324be60d5cef

data

MAILING.03

7dde67b69739091af948ef2c5c583e03

data

MAILING.04

12be4d67439d3b874d127022044c405f

data

MAILING.05

dde03649b86768fc1ee513db1bce662d

data

MAILING.06

95c92ccc910ab5e049761a6b67cebc29

data

MAILING.07

b2ac8ffbf5bfa960f750d0df2af9d1ee

data

MAILING.IND

3c2bc4206e149b4b1e3e591e68ee8465

data

MAILING.STR

58d8feda6fcd9942628079a782e75913

Corel PlanPerfect macro, v1.3

MAILING.TXX

80c87d40cd1a0b3ea05caeeb9e2a7e6b

data

MEMBERS.D01

bc4200ad13d6fa1912cdfe787b380787

data

MEMBERS.D02

dfc596e4c78f7850a446871958b32090

data

MEMBERS.D03

fdeac77d8eac2dd615bb5bcbd907e37b

data

MEMBERS.D04

419412a09766981deaaa11daa69e471a

data

MEMBERS.D05

a993e94925906ed4add5d6de6c759794

data

MEMBERS.D06

731f710a52918a01b53148f22018f068

data

MEMBERS.D07

731b79c4a4b0111e04c11718ea78d782

data

MEMBERS.D08

51cded1c3031382bed52566f85ad3a0d

data

MEMBERS.IND

6ce33664225f6dd28934709f7a8adb00

data

MEMBERS.STR

9286170519467fc1edef2e37e080a8bd

Corel PlanPerfect macro, v1.3

MEMBERS.TXT

9b9c302080fbaebe7087d64ece051528

ASCII text, with CRLF line terminators

MEMBERS.TXX

7ba4420d361448a0e2beb9bc06a8570f

data

MERGE.IMP

e1385921d3ab8301799d86dd2a147a3f

WordPerfect document, v5.0

README.APP

75b1bc3064daecb53e78cf2bc08d3054

ISO-8859 text, with CRLF line terminators

README.BUD

5a48ec3f6c78181e1e3bd906943af6b7

ASCII text, with CRLF line terminators

README.CHK

9ce69f6780ded48ab2b95a037b4463bb

data

README.CON

5749de116e4025c6e401f11972d6b5c1

ASCII text, with CRLF line terminators

README.MAI

30f969a2dabad92be65961f8ba9aedfe

data

README.MEM

127c55d466fc37b5722ae47dd15f548d

data

README.STA

d13cb15c3c58c9a4f6d67b82bca613ec

data

README.TIM

581158596d6a37e8cc5f6888bc2f55c7

data

STAR.D01

1297e71cdd4cf55e12e58d657f9ecad3

data

STAR.D02

8fa0bba6c5cb7357863eb861c5518e8f

data

STAR.D03

6e11a704a1a84f610bb0e1ffe56d784d

data

STAR.D04

994cee729f6affd4c868ae419373b735

data

STAR.D05

d6a6d9db55966b44296c8e6d441352b1

data

STAR.D06

2b13dc16c5f4cea8d90da0ea73a34b11

data

STAR.D07

a63e475c216460a3ed3d081188f944a8

data

STAR.D08

48e59c06dfeed3538d7db953ffe1d761

data

STAR.D09

cac8b067225ea4b6dd7501f56f9d41a6

data

STAR.D10

08b466fd054d44a363b2a022d777a28d

data

STAR.D11

5d82767045dc46d2f4e37f44ed15132d

data

STAR.IND

3d63b3e9738811d7922ab84311637494

data

STAR.STR

72b51a2d74492a88bf63c4e833948759

Corel PlanPerfect macro, v1.3

STAR.TXX

df52c97eecd7c6e3d9c8da7c506f34e3

data

startDP.bat

f578e543a6103666d26275d23092a442

DOS batch file, ASCII text, with CRLF line terminators, with escape sequences

TIMEBILL.D01

c1ee9422206501cb341d1e1a2482e9bd

data

TIMEBILL.D02

87ff2241ae3993de0d4af37a2d1a8d66

data

TIMEBILL.D03

1f55ccf80f6fc439df5ea3b797e92ca9

data

TIMEBILL.D04

0f2c89ed3f0de1e58b408843ce3a9ae6

data

TIMEBILL.D05

bf1fa93466ccf7c099156ccfae022fc1

data

TIMEBILL.D06

4b4481f4f5709349ee2b0da3c12d6381

data

TIMEBILL.D07

f53ba3bd6ada0e5ad088eadf319e74f5

data

TIMEBILL.D08

48e59c06dfeed3538d7db953ffe1d761

data

TIMEBILL.D09

eeb051e6e517148292e4de1c4da576ca

data

TIMEBILL.D10

b18c7915ac7c21a2b297a5e9eb92b846

data

TIMEBILL.IND

20d9d2e018d32afd5f073e9a8b8c9407

data

TIMEBILL.STR

bee1dba9bae2a460c48e34e10f9ff666

Corel PlanPerfect macro, v1.3

TIMEBILL.TXX

1ba2e048600f6ed6801c93496b262d11

data

ErrNoConn.vbs

bbd3a0a228589ce5d9b573133ba601f5

ASCII text, with no line terminators

GETID.bat

d4e0559f59179335d661669cbb006c06

ASCII text, with CRLF line terminators

Go.bat

b9cb6c32cade693633d6e5bde3141ffc

ASCII text, with CRLF line terminators

RKMIcon.ico

37f2c86a1026e8ff01505ae094e5ed54

MS Windows icon resource - 6 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel

unzip.vbs

dc7faaf0e440f655dc5b82e0b2466c8a

ASCII text, with CRLF line terminators

vDos.exe

fd999ee1a969107dec935a53693ac4e3

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

Detections

Analyzer	Verdict	Alert
Public InfoSec YARA rules	malware	Identifies scripting artefacts in shortcut (LNK) files.
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

114.141.49.115:82/aplikasi/Desktop%20Apps/RKM%20Apps.zip

114.141.49.115

200 OK

3.3 MB

URL User Request GET
114.141.49.115:82/aplikasi/Desktop%20Apps/RKM%20Apps.zip
IP
114.141.49.115:82
ASN
#38771 PT Cyberplus Media Pratama

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
3.3 MB (3273451 bytes)
Hash
029741127c423c0f61cfe806c02e1537
8dbed8cff2ebc9ea31c41986500c88ba845dca0c
b23ec4099d7e903f411f41559dbf3855bf2f3497fce1d94397438bc7de3c45f2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /aplikasi/Desktop%20Apps/RKM%20Apps.zip HTTP/1.1
Host: 114.141.49.115:82
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Apr 2025 06:37:08 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.4.14
Last-Modified: Tue, 06 Apr 2021 08:57:41 GMT
ETag: "31f2eb-5bf4a01be1672"
Accept-Ranges: bytes
Content-Length: 3273451
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/zip

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (217)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET

IP

ASN

File type

Size

Hash

Detections

HTTP Headers