Report - z-oleg.com/avz4.zip

Report Overview

Submitted URL
z-oleg.com/avz4.zip
IP
31.31.198.188
ASN
#197695 Domain names registrar REG.RU, Ltd
Submitted
2024-04-19 23:38:53
Access
public
Website Title
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
z-oleg.com	unknown	2004-04-29	2012-06-04	2024-04-17	473 B	10 MB	31.31.198.188

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
z-oleg.com/avz4.zip
IP
31.31.198.188
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
10 MB (10112832 bytes)
Hash
736146ec6bc2e95fc295b0462fdd68f7
9b5a57365e836ac55b512f8eb237ed548e85456b
a7e935ab86aebcf9f16496055a490f9f58f1ef76761aa0366420f49b209d9c6e

Archive (72)

Filename

Md5

File type

avz.exe

dc6a72db5a580de52a06760341661c4e

PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, 3 sections

avz.url

d171a4511c0dc52b0519e01679047aff

Generic INItialization configuration [InternetShortcut]

avz_en.chm

f6e8f1252c9b14cdc5a69f7c24f3248a

MS Windows HtmlHelp Data

avz_ru.chm

15d27bc96d9c2e194361410bada530a1

MS Windows HtmlHelp Data

backup.avz

a07752dd10c0bf0e96f14ff082b1607c

data

bt.avz

bf76f37c0884c1dd41d3341b7f20b2ed

data

esc.avz

5e7d7d23f8403f8832f6987d5dec79d1

data

exc.avz

e34a137ea974072118c0eed90a0fcc11

data

extract.avz

c8d2e54d80476b97d7e2657c5872a007

data

keylogger.avz

70771a6ca7a4dceda293764eeeae0ff6

data

krnldrv.avz

879d9f0c538055ec3925348a023bd4f9

data

lang_en.avz

abf98425d9295ed02eb8daa95bdd0b07

data

lang_ru.avz

6ece3633dc9b30063c13085ddc84de55

data

main.avz

57910065c3a1e16edd99d1133e022629

data

main001.avz

32ef49aa5a7197320a498f6fa667136b

data

main002.avz

6d7f3914f7042a725e561b3d2e582b65

data

main003.avz

722a5ccae7b0ae654d26e09f80d52ecb

data

main004.avz

3fbf753f26b7a70958fcfe8df41fd88b

data

main005.avz

e9106002aaf44fe56a2833e22817d365

data

main006.avz

cb12d471bc0aad52cbe81bdda86d2c90

data

main007.avz

10eb799cef5647cf4434514d0ed09c97

data

main008.avz

160af50afc404cb31923fe2a29d52abd

data

main009.avz

29edb69c14ca47627a91ff3eab54f4fd

data

main010.avz

39a7825b89631cee8ca25553bf2c143a

data

main011.avz

730561cdaffc9499bcd158a690765f11

data

main012.avz

b778050d8ad026eb4936b4e03e55d7df

data

main013.avz

df9622b5fd88319d5e9252ae3f100ba7

data

main014.avz

a533b4fdf8617a74a0c8eb0c3b3e0e4e

data

main015.avz

2ff084cad4fba37861fde0c5ec4c29ab

data

main016.avz

824b000dcd23302e086c39a6982ab4c3

data

main017.avz

f67ffc548a58d8bc4f6fc9de9159c709

data

main018.avz

ede9d7c92dcb644ee40ce16a08359b66

data

main019.avz

8d97445c5a9b3bf25d2b960e5c3e7aae

data

main020.avz

e3407c775b84820c790e4ba5c3b941dd

data

main021.avz

c49b8ec40643fc5db2fea7da1efe3c62

data

main022.avz

3fd6f566d6baccc9cff0ccc4f5089f59

data

main023.avz

627f1b83dad40192722489dfaff4b09d

data

main024.avz

c5faeded0d81cf2788823f36febbe151

data

main025.avz

4046e17f3bc53ca1e507a5ad69439058

data

main026.avz

3f94cd7690472cee14ffa0378c825187

data

main027.avz

76df38ed88c02b7af27d9620d381b9ed

data

main028.avz

b73bb9eb01dcb5a08ee9d6a5246d8157

data

main029.avz

7834506d1737640018140ee00948f183

data

net.avz

4b493d981e875aa941a1af8e75cd96d0

data

neural.avz

3b1fcea8cb148ac340d41f4d037b7845

data

neurald.avz

3b7ed6a995c33b6554572a324d4660a8

data

neurale.avz

ae23eb8cab61d9d137c64e853348c7d3

data

neuralm.avz

6e91f1700d1627158c324ad56acba25e

data

par.avz

cb99d69808dcbdab6bb618c00e5d2455

data

ports.avz

cccded756a3e62f42e20cc18b77bd5c9

data

prt.avz

d937e17df4f519d6b8fb5bba2fb8e0e2

data

repair.avz

a0dfd28f0314b9cac545b7001506fae5

data

rootkit.avz

5b28f2c64440f83bd95fc4ad3c747648

data

scripts.avz

b3062f53d1384a4f174fa9dd4839f565

data

scu.avz

3af36300307c9cce0a5e0fbcdb5d3d37

data

signf001.avz

1e1f740a402e8766e5ae5673629ab0ed

data

signf002.avz

ae15c6220fda22637b62ba22d508fc52

data

signf003.avz

de3d62003a6e226704d39f01defb97c2

data

signf004.avz

c147e95386542f85689bd363216bbd10

data

signf005.avz

786f26e558dd9bdbdccb5a7765cee121

data

signf006.avz

820d4e047e00a9bacb74250ba51a2f45

data

signf007.avz

904d6d252ab537c194ac386521c5109f

data

signf008.avz

a15f7c4a01544e78fd6ec4b242ae8d03

data

signf009.avz

19204e13bf9097761c273c0cf3c97a2d

data

signfusr.avz

b5e40064e2a3bd72b0ee4e49e07db645

data

syscheck.avz

df6e2498b01be89d09ee52a7f6b7edc8

data

sysipu.avz

6eb039f9c6f30be5ba465774427b7371

data

tsw.avz

519dfac1c87ad5af8c426824b8453c1e

data

tsw-auto.avz

2ea85360217feb5f14ee82f198f52507

data

update.avz

592864fda31d0515713c41d605ba6a83

data

vse_ru.avz

241cb8ef45ecb95a89b97fde2120ab2d

data

version.txt

e286441254addae02226d0002bb91086

ISO-8859 text, with CRLF line terminators

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 4/65

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

z-oleg.com/avz4.zip

31.31.198.188

10 MB

URL
z-oleg.com/avz4.zip
IP
31.31.198.188:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
10 MB (10112832 bytes)
Hash
736146ec6bc2e95fc295b0462fdd68f7
9b5a57365e836ac55b512f8eb237ed548e85456b
a7e935ab86aebcf9f16496055a490f9f58f1ef76761aa0366420f49b209d9c6e

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 4/65

HTTP Headers

GET /avz4.zip HTTP/1.1
Host: z-oleg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 23:38:18 GMT
content-type: application/zip
content-length: 10112832
last-modified: Fri, 15 Jan 2010 07:53:10 GMT
accept-ranges: bytes
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (72)

Detections

JavaScript (0)

HTTP Transactions (1)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers