Report - www.scrapebox.com/dofollowtest.zip

Report Overview

Submitted URL
www.scrapebox.com/dofollowtest.zip
IP
185.169.253.149
ASN
#206264 Amarutu Technology Ltd
Submitted
2024-04-23 10:13:13
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
3

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.scrapebox.com	unknown	2009-10-07	2012-08-08	2024-04-15	488 B	870 kB	185.169.253.149

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

Files detected

URL
www.scrapebox.com/dofollowtest.zip
IP
185.169.253.149
ASN
#206264 Amarutu Technology Ltd

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
870 kB (869460 bytes)
Hash
8691f685fc073e38c51e24fe6f025762
5a384908aa91a099e8881afdce5de4329fe56c33
63758a11c3c5828f50199082c67382481f5f74ca21966ccac1cc82e9edec75c0

Archive (1)

Filename

Md5

File type

dofollowtest.exe

3a5033593d0870eceb7a6e0dbe159ba8

PE32 executable (GUI) Intel 80386, for MS Windows, PECompact2 compressed, 2 sections

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	pe_packer_pecompact2
VirusTotal	suspicious	VirusTotal - Scan result 1/60

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

www.scrapebox.com/dofollowtest.zip

185.169.253.149

200 OK

870 kB

URL User Request GET HTTP/1.1
www.scrapebox.com/dofollowtest.zip
IP
185.169.253.149:443
ASN
#206264 Amarutu Technology Ltd

Certificate
IssuercPanel, Inc.
Subjectscrapebox.com
FingerprintEC:4C:6B:14:4F:57:3F:14:8A:3D:60:65:0C:AE:F9:88:0B:FE:97:27
ValidityTue, 12 Mar 2024 00:00:00 GMT - Mon, 10 Jun 2024 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
870 kB (869460 bytes)
Hash
8691f685fc073e38c51e24fe6f025762
5a384908aa91a099e8881afdce5de4329fe56c33
63758a11c3c5828f50199082c67382481f5f74ca21966ccac1cc82e9edec75c0

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/60

HTTP Headers

GET /dofollowtest.zip HTTP/1.1
Host: www.scrapebox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 10:12:48 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2011 11:29:27 GMT
Accept-Ranges: bytes
Content-Length: 869460
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/zip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (1)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers