Report - soft.samlab.ws/drivers/CardReader_Realtek_RTS5227

Report Overview

Submitted URL
soft.samlab.ws/drivers/CardReader_Realtek_RTS5227_10.0.22631.21370.7z
IP
185.26.122.80
ASN
#62082 Hostland LTD
Submitted
2024-04-19 00:07:14
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
soft.samlab.ws	unknown	2005-06-30	2023-12-03	2024-04-15	523 B	12 MB	185.26.122.80

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
soft.samlab.ws/drivers/CardReader_Realtek_RTS5227_10.0.22631.21370.7z
IP
185.26.122.80
ASN
#62082 Hostland LTD

File type
7-zip archive data, version 0.4
Size
12 MB (12396723 bytes)
Hash
b88c4d3403d3be668f13137549f89c88
9abbb120c4f2584c0ba94af36e2f4cb58946c4ec
557f6ba0a0111ee99f856be9402d095c7b1fd95e65a77f2d367690b130f77a8c

Archive (227)

Filename

Md5

File type

0x0402.ini

6f82f2efc4a5da513e0222f47fb5fc2d

Unicode text, UTF-16, little-endian text, with very long lines (332), with CRLF line terminators

0x0403.ini

04b3d8be6e6f17f13a3be3f24e3ac1b0

Unicode text, UTF-16, little-endian text, with very long lines (340), with CRLF line terminators

0x0404.ini

ec1f8f71fa21c49bc96a17c81ad51598

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0405.ini

9fb56981dd06830b30cd9cadf54270d6

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0406.ini

7c6ad5705b8c076697c1ca0eb6229f6f

Unicode text, UTF-16, little-endian text, with very long lines (316), with CRLF line terminators

0x0407.ini

9a62da6c523506355c1bf1b30db73edd

Unicode text, UTF-16, little-endian text, with very long lines (324), with CRLF line terminators

0x0408.ini

c7a740c71fb3779c8ae2626729a44389

Unicode text, UTF-16, little-endian text, with very long lines (389), with CRLF line terminators

0x0409.ini

be345d0260ae12c5f2f337b17e07c217

Unicode text, UTF-16, little-endian text, with very long lines (308), with CRLF line terminators

0x040a.ini

e872c54c58eef055bc791d3eead093c3

Unicode text, UTF-16, little-endian text, with very long lines (308), with CRLF line terminators

0x040b.ini

48dd00b7d72fb37f937db5714bf8a725

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x040c.ini

35989450c8121207917f04d1ebe4ca2a

Unicode text, UTF-16, little-endian text, with very long lines (317), with CRLF line terminators

0x040e.ini

a143f6d5ac3832b025c9d04855a790fd

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0410.ini

f89fc24fce7b72a6c9a6e1f9e7b22d8a

Unicode text, UTF-16, little-endian text, with very long lines (304), with CRLF line terminators

0x0411.ini

6ebbb5d67423d8d85f1688b561bf5304

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0412.ini

73e70a6b9354e80237c8e2b3170830a0

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0413.ini

dc1c05a9fce06cf659c20aed317dd417

Unicode text, UTF-16, little-endian text, with very long lines (324), with CRLF line terminators

0x0414.ini

e526541768a0b9a3618a2894a8e2447e

Unicode text, UTF-16, little-endian text, with very long lines (327), with CRLF line terminators

0x0415.ini

3a87540523d5a3a31bdf99d89e3b7eec

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0416.ini

76740d1a6e424e9803e3808205b32003

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0418.ini

21b6308422fac36fadd143bc7166d082

Unicode text, UTF-16, little-endian text, with very long lines (339), with CRLF line terminators

0x0419.ini

d12957cbc8d709ddacb854ccb7e09bea

Unicode text, UTF-16, little-endian text, with very long lines (365), with CRLF line terminators

0x041a.ini

fb6a3f20ce97f400dbf455f7a1c204f0

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x041b.ini

0bee9dd7762e406f7a2396788a00d2c9

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x041d.ini

93369d4b2cce8b9de7c55e8e5fcedc30

Unicode text, UTF-16, little-endian text, with very long lines (343), with CRLF line terminators

0x041e.ini

8ffded15081f4deb72f57fa5d2311930

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x041f.ini

a27cbe2097f5b565ef28aa45ede705d8

Unicode text, UTF-16, little-endian text, with very long lines (306), with CRLF line terminators

0x0421.ini

71d320ad6f04473c8e9e6bb8d524d882

Unicode text, UTF-16, little-endian text, with very long lines (374), with CRLF line terminators

0x0424.ini

7231ba1301dba9e30ea0872f7cf0bbb0

Unicode text, UTF-16, little-endian text, with very long lines (342), with CRLF line terminators

0x042d.ini

7899609e5715a75703315c90b5587a47

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0804.ini

3d94ea458231bb249e464a3246e47d39

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0816.ini

778d180bc04720f5bbff25e3d750bbda

Unicode text, UTF-16, little-endian text, with very long lines (323), with CRLF line terminators

0x0c0c.ini

62888396ed6fa3cacd828b6819a2cedf

Unicode text, UTF-16, little-endian text, with very long lines (323), with CRLF line terminators

0x0c1a.ini

86c914540b0c3fed955c8720679d981a

Unicode text, UTF-16, little-endian text, with very long lines (329), with CRLF line terminators

data1.cab

5dd3c1e34ddaedb5aba9abcbcc3ba56a

InstallShield CAB, version 0x4000834

data1.hdr

1bad01894ce6bc7a13055fd851b11b92

InstallShield setup header, version 0x4000834, descriptor size 0x779f

data2.cab

af4eb884b6c7286957f0f15e15f7ec30

InstallShield CAB, version 0x4000834

RtsCrExtPr.inf

93197367a41fd6688bd10b2352716965

Windows setup INFormation

rtscrextpr32.cat

c2d6a2fe0845579447b05610880d9a0d

DER Encoded PKCS#7 Signed Data

RtsPer.inf

e8ae1fab02e9b1ee9be0c2f17192a14b

Windows setup INFormation

rtsper32.cat

b12be4a775e46e10cb80a8cebd4d5e76

DER Encoded PKCS#7 Signed Data

RtsCrExtPr.inf

6633d6c15acfa236e8e4faae3d821cad

Windows setup INFormation

rtscrextpr64.cat

73516ce11b831e7c94807dbe0138365a

DER Encoded PKCS#7 Signed Data

RtsPer.inf

18098d67f1c1c6474548abad025fda43

Windows setup INFormation

rtsper64.cat

590f7fa751555b4ca4fa036676942bdf

DER Encoded PKCS#7 Signed Data

layout.bin

6b382488405ffbcc0a242080d2b35ae8

data

pkgconf.ini

0efe6a6998b4c3a2d60c44ca64521790

Generic INItialization configuration [RTSUSTOR_DEVLIST]

readme.txt

4218820eb3881542ff4ce722991a65fe

ASCII text, with CRLF, CR line terminators

setup.ini

8894e3e7c2b014dd7361ce991f8cd4de

Unicode text, UTF-16, little-endian text, with CRLF line terminators

setup.inx

0922ed775e8c0930ce18aacd00179a56

data

setup.iss

b4b107d49d836b42e2c6a7d0753f9bf2

Generic INItialization configuration [File Transfer]

SilentInstall.bat

15c354419c025e6939416607625e1725

ASCII text, with no line terminators

u2setup.iss

fcfd9d2afea35248a8128cc1b1b6d934

Generic INItialization configuration [File Transfer]

u3setup.iss

7010795fb4f487ae9c4ac7c7169ecdf2

Generic INItialization configuration [File Transfer]

usetup.iss

3824ae51ab3f4954ec60d6a8ce286b40

Generic INItialization configuration [File Transfer]

Display.ico

aa1430c6b82255759552373c3870e9ed

MS Windows icon resource - 4 icons, 256x256, 32 bits/pixel, 48x48, 32 bits/pixel

www.station-drivers.com.ico

944d8f383e996f6dc0ee8f49f9b1c346

MS Windows icon resource - 1 icon, 32x32

www.DriverOff.net.url

1c2e46fb1475403ef1fdaa0c524cfa0b

MS Windows 95 Internet shortcut text (URL=<http://driveroff.net>), ASCII text, with CRLF line terminators

www.SamLab.ws.url

0e1dd474d5e67962ab4d3fbc81e33aa3

MS Windows 95 Internet shortcut text (URL=<http://samlab.ws>), ASCII text, with CRLF line terminators

0x0402.ini

6f82f2efc4a5da513e0222f47fb5fc2d

Unicode text, UTF-16, little-endian text, with very long lines (332), with CRLF line terminators

0x0403.ini

04b3d8be6e6f17f13a3be3f24e3ac1b0

Unicode text, UTF-16, little-endian text, with very long lines (340), with CRLF line terminators

0x0404.ini

ec1f8f71fa21c49bc96a17c81ad51598

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0405.ini

9fb56981dd06830b30cd9cadf54270d6

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0406.ini

7c6ad5705b8c076697c1ca0eb6229f6f

Unicode text, UTF-16, little-endian text, with very long lines (316), with CRLF line terminators

0x0407.ini

9a62da6c523506355c1bf1b30db73edd

Unicode text, UTF-16, little-endian text, with very long lines (324), with CRLF line terminators

0x0408.ini

c7a740c71fb3779c8ae2626729a44389

Unicode text, UTF-16, little-endian text, with very long lines (389), with CRLF line terminators

0x0409.ini

be345d0260ae12c5f2f337b17e07c217

Unicode text, UTF-16, little-endian text, with very long lines (308), with CRLF line terminators

0x040a.ini

e872c54c58eef055bc791d3eead093c3

Unicode text, UTF-16, little-endian text, with very long lines (308), with CRLF line terminators

0x040b.ini

48dd00b7d72fb37f937db5714bf8a725

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x040c.ini

35989450c8121207917f04d1ebe4ca2a

Unicode text, UTF-16, little-endian text, with very long lines (317), with CRLF line terminators

0x040e.ini

a143f6d5ac3832b025c9d04855a790fd

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0410.ini

f89fc24fce7b72a6c9a6e1f9e7b22d8a

Unicode text, UTF-16, little-endian text, with very long lines (304), with CRLF line terminators

0x0411.ini

6ebbb5d67423d8d85f1688b561bf5304

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0412.ini

73e70a6b9354e80237c8e2b3170830a0

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0413.ini

dc1c05a9fce06cf659c20aed317dd417

Unicode text, UTF-16, little-endian text, with very long lines (324), with CRLF line terminators

0x0414.ini

e526541768a0b9a3618a2894a8e2447e

Unicode text, UTF-16, little-endian text, with very long lines (327), with CRLF line terminators

0x0415.ini

3a87540523d5a3a31bdf99d89e3b7eec

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0416.ini

76740d1a6e424e9803e3808205b32003

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0418.ini

21b6308422fac36fadd143bc7166d082

Unicode text, UTF-16, little-endian text, with very long lines (339), with CRLF line terminators

0x0419.ini

d12957cbc8d709ddacb854ccb7e09bea

Unicode text, UTF-16, little-endian text, with very long lines (365), with CRLF line terminators

0x041a.ini

fb6a3f20ce97f400dbf455f7a1c204f0

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x041b.ini

0bee9dd7762e406f7a2396788a00d2c9

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x041d.ini

93369d4b2cce8b9de7c55e8e5fcedc30

Unicode text, UTF-16, little-endian text, with very long lines (343), with CRLF line terminators

0x041e.ini

8ffded15081f4deb72f57fa5d2311930

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x041f.ini

a27cbe2097f5b565ef28aa45ede705d8

Unicode text, UTF-16, little-endian text, with very long lines (306), with CRLF line terminators

0x0421.ini

71d320ad6f04473c8e9e6bb8d524d882

Unicode text, UTF-16, little-endian text, with very long lines (374), with CRLF line terminators

0x0424.ini

7231ba1301dba9e30ea0872f7cf0bbb0

Unicode text, UTF-16, little-endian text, with very long lines (342), with CRLF line terminators

0x042d.ini

7899609e5715a75703315c90b5587a47

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0804.ini

3d94ea458231bb249e464a3246e47d39

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0816.ini

778d180bc04720f5bbff25e3d750bbda

Unicode text, UTF-16, little-endian text, with very long lines (323), with CRLF line terminators

0x0c0c.ini

62888396ed6fa3cacd828b6819a2cedf

Unicode text, UTF-16, little-endian text, with very long lines (323), with CRLF line terminators

0x0c1a.ini

86c914540b0c3fed955c8720679d981a

Unicode text, UTF-16, little-endian text, with very long lines (329), with CRLF line terminators

config.ini

f24e0a763bf6003d21221ed75e525ba2

Generic INItialization configuration [IconMan Config]

data1.cab

32fd6be53e7c099d76b42c9534a0bc96

InstallShield CAB, version 0x4000834

data1.hdr

779ef03ef75ab604ce2321e8d7be24a4

InstallShield setup header, version 0x4000834, descriptor size 0x779f

data2.cab

9dc5368fd4aeace4542c27878eda7e80

InstallShield CAB, version 0x4000834

RtsPer.inf

8ebffc9ef7cbdd8f10189af169154e17

Windows setup INFormation

rtsper32.cat

7b99617afd9aa73c4ffcc91af2371936

DER Encoded PKCS#7 Signed Data

RtsPer.inf

787c028fa5ceb6c514e28abf77eb3d60

Windows setup INFormation

rtsper64.cat

99b28ed4d646523db76fd3e7d11f75ba

DER Encoded PKCS#7 Signed Data

layout.bin

f8687aadc9885c5252157b82c12d5686

data

pkgconf.ini

a292fb53aa8365ab651f31da32bdc62d

Generic INItialization configuration [RTSUSTOR_DEVLIST]

readme.txt

7f5bcf46bccec1b1aa131fc1ac0755a2

ASCII text, with CRLF, CR line terminators

setup.ini

ab029b3f314714faa34515a5ab1f006f

Unicode text, UTF-16, little-endian text, with CRLF line terminators

setup.inx

e1b572c4e6b7eb6ff71eea6a06cf20e1

data

setup.iss

b4b107d49d836b42e2c6a7d0753f9bf2

Generic INItialization configuration [File Transfer]

SilentInstall.bat

15c354419c025e6939416607625e1725

ASCII text, with no line terminators

u2setup.iss

fcfd9d2afea35248a8128cc1b1b6d934

Generic INItialization configuration [File Transfer]

u3setup.iss

7010795fb4f487ae9c4ac7c7169ecdf2

Generic INItialization configuration [File Transfer]

usetup.iss

3824ae51ab3f4954ec60d6a8ce286b40

Generic INItialization configuration [File Transfer]

Display.ico

aa1430c6b82255759552373c3870e9ed

MS Windows icon resource - 4 icons, 256x256, 32 bits/pixel, 48x48, 32 bits/pixel

www.DriverOff.net.url

1c2e46fb1475403ef1fdaa0c524cfa0b

MS Windows 95 Internet shortcut text (URL=<http://driveroff.net>), ASCII text, with CRLF line terminators

www.SamLab.ws.url

0e1dd474d5e67962ab4d3fbc81e33aa3

MS Windows 95 Internet shortcut text (URL=<http://samlab.ws>), ASCII text, with CRLF line terminators

0x0402.ini

6f82f2efc4a5da513e0222f47fb5fc2d

Unicode text, UTF-16, little-endian text, with very long lines (332), with CRLF line terminators

0x0403.ini

04b3d8be6e6f17f13a3be3f24e3ac1b0

Unicode text, UTF-16, little-endian text, with very long lines (340), with CRLF line terminators

0x0404.ini

ec1f8f71fa21c49bc96a17c81ad51598

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0405.ini

9fb56981dd06830b30cd9cadf54270d6

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0406.ini

7c6ad5705b8c076697c1ca0eb6229f6f

Unicode text, UTF-16, little-endian text, with very long lines (316), with CRLF line terminators

0x0407.ini

9a62da6c523506355c1bf1b30db73edd

Unicode text, UTF-16, little-endian text, with very long lines (324), with CRLF line terminators

0x0408.ini

c7a740c71fb3779c8ae2626729a44389

Unicode text, UTF-16, little-endian text, with very long lines (389), with CRLF line terminators

0x0409.ini

be345d0260ae12c5f2f337b17e07c217

Unicode text, UTF-16, little-endian text, with very long lines (308), with CRLF line terminators

0x040a.ini

e872c54c58eef055bc791d3eead093c3

Unicode text, UTF-16, little-endian text, with very long lines (308), with CRLF line terminators

0x040b.ini

48dd00b7d72fb37f937db5714bf8a725

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x040c.ini

35989450c8121207917f04d1ebe4ca2a

Unicode text, UTF-16, little-endian text, with very long lines (317), with CRLF line terminators

0x040e.ini

a143f6d5ac3832b025c9d04855a790fd

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0410.ini

f89fc24fce7b72a6c9a6e1f9e7b22d8a

Unicode text, UTF-16, little-endian text, with very long lines (304), with CRLF line terminators

0x0411.ini

6ebbb5d67423d8d85f1688b561bf5304

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0412.ini

73e70a6b9354e80237c8e2b3170830a0

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0413.ini

dc1c05a9fce06cf659c20aed317dd417

Unicode text, UTF-16, little-endian text, with very long lines (324), with CRLF line terminators

0x0414.ini

e526541768a0b9a3618a2894a8e2447e

Unicode text, UTF-16, little-endian text, with very long lines (327), with CRLF line terminators

0x0415.ini

3a87540523d5a3a31bdf99d89e3b7eec

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0416.ini

76740d1a6e424e9803e3808205b32003

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0418.ini

21b6308422fac36fadd143bc7166d082

Unicode text, UTF-16, little-endian text, with very long lines (339), with CRLF line terminators

0x0419.ini

d12957cbc8d709ddacb854ccb7e09bea

Unicode text, UTF-16, little-endian text, with very long lines (365), with CRLF line terminators

0x041a.ini

fb6a3f20ce97f400dbf455f7a1c204f0

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x041b.ini

0bee9dd7762e406f7a2396788a00d2c9

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x041d.ini

93369d4b2cce8b9de7c55e8e5fcedc30

Unicode text, UTF-16, little-endian text, with very long lines (343), with CRLF line terminators

0x041e.ini

8ffded15081f4deb72f57fa5d2311930

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x041f.ini

a27cbe2097f5b565ef28aa45ede705d8

Unicode text, UTF-16, little-endian text, with very long lines (306), with CRLF line terminators

0x0421.ini

71d320ad6f04473c8e9e6bb8d524d882

Unicode text, UTF-16, little-endian text, with very long lines (374), with CRLF line terminators

0x0424.ini

7231ba1301dba9e30ea0872f7cf0bbb0

Unicode text, UTF-16, little-endian text, with very long lines (342), with CRLF line terminators

0x042d.ini

7899609e5715a75703315c90b5587a47

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0804.ini

3d94ea458231bb249e464a3246e47d39

Unicode text, UTF-16, little-endian text, with CRLF line terminators

0x0816.ini

778d180bc04720f5bbff25e3d750bbda

Unicode text, UTF-16, little-endian text, with very long lines (323), with CRLF line terminators

0x0c0c.ini

62888396ed6fa3cacd828b6819a2cedf

Unicode text, UTF-16, little-endian text, with very long lines (323), with CRLF line terminators

0x0c1a.ini

86c914540b0c3fed955c8720679d981a

Unicode text, UTF-16, little-endian text, with very long lines (329), with CRLF line terminators

config.ini

f24e0a763bf6003d21221ed75e525ba2

Generic INItialization configuration [IconMan Config]

data1.cab

651732403905b2c0951b2bf58c0efd50

InstallShield CAB, version 0x4000834

data1.hdr

950f57ef75cd68c4f40a129d82325595

InstallShield setup header, version 0x4000834, descriptor size 0x779f

data2.cab

b22ca4871e56e6a2a44a9424e43d6cd2

InstallShield CAB, version 0x4000834

rtsbastor32.cat

0b57227e8dde21f01ace3ed2c15c431f

DER Encoded PKCS#7 Signed Data

RtsBaStorX.inf

2e14ae43b79e8303b647dcffcaa33674

Windows setup INFormation

rtsp2stor32.cat

b3513dd87b3d43f6f6a9634cede84b0d

DER Encoded PKCS#7 Signed Data

RtsP2StorX.inf

490d6708b798f5081ed53a57699db49f

Windows setup INFormation

rtsper32.cat

b1f9507a3b9277037b7a6d2dcda43ac3

DER Encoded PKCS#7 Signed Data

RtsPerX.inf

6f0ec84748b742941f4df49f1857f9c2

Windows setup INFormation

rtspstor32.cat

03d93de551add9ca94703f418d9e6510

DER Encoded PKCS#7 Signed Data

RtsPStorX.inf

a992f7a17e45b4a7108bd1c58076035d

Windows setup INFormation

rtsuer32.cat

4a2816425d328bfcb828c4c43d402cc1

DER Encoded PKCS#7 Signed Data

RtsUerX.inf

4333fa7fe109eba65ab128ebbbb105e8

Windows setup INFormation

rtsbastor64.cat

0b725704ea4afb15d8cbe3dabf54984a

DER Encoded PKCS#7 Signed Data

RtsBaStorX.inf

50fe21b9f3a91d9a7b0e77455d5eee99

Windows setup INFormation

rtsp2stor64.cat

b0bbff746f463debc0dcb272bf0bae0d

DER Encoded PKCS#7 Signed Data

RtsP2StorX.inf

0b1981dee19fe9afb4ebdf7a33910c20

Windows setup INFormation

rtsper64.cat

e9885e96aa6def6e939b3d80c36d3b22

DER Encoded PKCS#7 Signed Data

RtsPerX.inf

a5028e35375e67b5fd11505675ffc3d9

Windows setup INFormation

rtspstor64.cat

867cc426b2416484bd1f968cefcc7566

DER Encoded PKCS#7 Signed Data

RtsPStorX.inf

03d0699c3493b77791391c1c466d4595

Windows setup INFormation

rtsuer64.cat

f00af782e356502d8a54a0252fbdf9c4

DER Encoded PKCS#7 Signed Data

RtsUerX.inf

59bb9c9ecf2cb84ae1ff711735fbcc65

Windows setup INFormation

layout.bin

2c3366bed4777ccbff39f965ff067245

data

pkgconf.ini

a8004888b2f1aef5a2311a3699ba4bba

Generic INItialization configuration [RTSUSTOR_DEVLIST]

readme.txt

c0e3235f05afd1c40238d05ab316fe39

ASCII text, with CRLF, CR line terminators

setup.ini

1c7e79205a814ec4fbd7dec99a83e366

Unicode text, UTF-16, little-endian text, with CRLF line terminators

setup.inx

c97968b36fb4fa773d75f301760d656a

data

setup.isn

70c64eecbb4f86de7829c50000fcd18e

data

setup.iss

b4b107d49d836b42e2c6a7d0753f9bf2

Generic INItialization configuration [File Transfer]

SilentInstall.bat

15c354419c025e6939416607625e1725

ASCII text, with no line terminators

SP72318.cva

bbed21dab469199b9cf45f192426284b

Unicode text, UTF-8 (with BOM) text, with very long lines (324), with CRLF line terminators

u2setup.iss

fcfd9d2afea35248a8128cc1b1b6d934

Generic INItialization configuration [File Transfer]

u3setup.iss

7010795fb4f487ae9c4ac7c7169ecdf2

Generic INItialization configuration [File Transfer]

usetup.iss

3824ae51ab3f4954ec60d6a8ce286b40

Generic INItialization configuration [File Transfer]

Display.ico

aa1430c6b82255759552373c3870e9ed

MS Windows icon resource - 4 icons, 256x256, 32 bits/pixel, 48x48, 32 bits/pixel

www.DriverOff.net.url

1c2e46fb1475403ef1fdaa0c524cfa0b

MS Windows 95 Internet shortcut text (URL=<http://driveroff.net>), ASCII text, with CRLF line terminators

www.SamLab.ws.url

0e1dd474d5e67962ab4d3fbc81e33aa3

MS Windows 95 Internet shortcut text (URL=<http://samlab.ws>), ASCII text, with CRLF line terminators

www.DriverOff.net.url

1c2e46fb1475403ef1fdaa0c524cfa0b

MS Windows 95 Internet shortcut text (URL=<http://driveroff.net>), ASCII text, with CRLF line terminators

www.SamLab.ws.url

0e1dd474d5e67962ab4d3fbc81e33aa3

MS Windows 95 Internet shortcut text (URL=<http://samlab.ws>), ASCII text, with CRLF line terminators

RsCRIcon.dll

7105234ae523dd27adcc9ab9e473e115

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 2 sections

RtsPer.sys

e70a892ff50f0fb19ffac4dfcf82385e

PE32 executable (native) Intel 80386, for MS Windows, 7 sections

RsCRIcon.dll

bc3dec6fe3a1fe1470351d79a961fce4

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 2 sections

RtsPer.sys

5422f5567ea36c896e9594e971b3ce58

PE32+ executable (native) x86-64, for MS Windows, 8 sections

ISSetup.dll

cf60c8d6c5a3a40a9f3c29195fb2c0d9

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, PECompact2 compressed, 3 sections

setup.exe

63aa12a363da1be4af5782f267ddf787

PE32 executable (GUI) Intel 80386, for MS Windows, 4 sections

Rmb.exe

8b23fb9dd8cdf72b7c8a598fe9e1336c

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

SetEHCIKey.exe

a199bb131aa3d1e387e99ed774cdaa54

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

RsCRIcon.dll

b9c67a5e397dc4f66796a7b07e8feaeb

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 2 sections

RtsPer.sys

26c258e46c5561ee4e3d67eb8de174b1

PE32 executable (native) Intel 80386, for MS Windows, 7 sections

RsCRIcon.dll

dc140aa2f4ba7f749bb5aed6ef25480c

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 2 sections

RtsPer.sys

0297c71a6567b6ab79202f0ea5793c24

PE32+ executable (native) x86-64, for MS Windows, 8 sections

ISSetup.dll

a17a7931b3524d05253c5aa3d06fd364

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, PECompact2 compressed, 3 sections

setup.exe

f0e454dbcea967dc638d9871ce0f44e6

PE32 executable (GUI) Intel 80386, for MS Windows, 4 sections

revcon32.exe

04f1988ddae69887b17aadbd676c642d

PE32 executable (console) Intel 80386, for MS Windows, 4 sections

revcon64.exe

abd6c51076b59e5698d7332574b41f84

PE32+ executable (console) x86-64, for MS Windows, 5 sections

Rmb.exe

8b23fb9dd8cdf72b7c8a598fe9e1336c

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

SDRTCPRM.dll

b280c40f4c33935d20056bfec3a18d8a

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

SetEHCIKey.exe

c4256c917214d9ccc968395ed63dc830

PE32 executable (GUI) Intel 80386, for MS Windows, 4 sections

RealtekVerinfo.dll

5d4bd30a9821d81500f3b69b3d22943e

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

RsCRIcon.dll

152893cbdcfdac9ceca7b5ed9a570a0d

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 2 sections

RtCRX.dll

0ef79e9218603a4c4af8dd7a2455c79f

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

RtsBaStor.sys

bbe0012e943b729d154e196a0c7e102f

PE32 executable (native) Intel 80386, for MS Windows, 7 sections

RtsP2Stor.sys

4cecb18b4289ce425a529eae9fe40379

PE32 executable (native) Intel 80386, for MS Windows, 7 sections

RtsPer.sys

8daeb39024e561065f6b84782db08edf

PE32 executable (native) Intel 80386, for MS Windows, 7 sections

RtsPStor.sys

44afbf604c390cdb8a3c2d76585b0f3c

PE32 executable (native) Intel 80386, for MS Windows, 7 sections

RtsUer.sys

53b5bd5eb3ec0aa0d0597402983ffb13

PE32 executable (native) Intel 80386, for MS Windows, 7 sections

SDRTCPRM.dll

b280c40f4c33935d20056bfec3a18d8a

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

RealtekVerinfo.dll

ea7a16295158fa858708957258ba46d5

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

RsCRIcon.dll

316a9e7e0eeea57050e19732ce5941e1

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 2 sections

RtCRX64.dll

eabd549516bf670a684743eee6a1ada9

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

RtsBaStor.sys

461c35388886bac13e51e3d27172e141

PE32+ executable (native) x86-64, for MS Windows, 8 sections

RtsP2Stor.sys

c855516ca01e9bf861b014b7a26a4c04

PE32+ executable (native) x86-64, for MS Windows, 8 sections

RtsPer.sys

feab5d20ece485d6c0bd9fc9846f32b8

PE32+ executable (native) x86-64, for MS Windows, 8 sections

RtsPStor.sys

14a3277092a1702be1f2a89e5394349a

PE32+ executable (native) x86-64, for MS Windows, 8 sections

RtsUer.sys

ab959f26fbb851a9d31e2f229db3fa1a

PE32+ executable (native) x86-64, for MS Windows, 8 sections

SDRTCPRM.dll

b280c40f4c33935d20056bfec3a18d8a

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

ISSetup.dll

a17a7931b3524d05253c5aa3d06fd364

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, PECompact2 compressed, 3 sections

setup.exe

f0e454dbcea967dc638d9871ce0f44e6

PE32 executable (GUI) Intel 80386, for MS Windows, 4 sections

revcon32.exe

04f1988ddae69887b17aadbd676c642d

PE32 executable (console) Intel 80386, for MS Windows, 4 sections

revcon64.exe

abd6c51076b59e5698d7332574b41f84

PE32+ executable (console) x86-64, for MS Windows, 5 sections

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	signed_sys_with_vulnerablity
YARAhub by abuse.ch	malware	signed_sys_with_vulnerablity
YARAhub by abuse.ch	malware	signed_sys_with_vulnerablity
YARAhub by abuse.ch	malware	signed_sys_with_vulnerablity
YARAhub by abuse.ch	malware	signed_sys_with_vulnerablity
YARAhub by abuse.ch	malware	signed_sys_with_vulnerablity
YARAhub by abuse.ch	malware	signed_sys_with_vulnerablity
YARAhub by abuse.ch	malware	signed_sys_with_vulnerablity
YARAhub by abuse.ch	malware	signed_sys_with_vulnerablity
YARAhub by abuse.ch	malware	signed_sys_with_vulnerablity
YARAhub by abuse.ch	malware	signed_sys_with_vulnerablity
YARAhub by abuse.ch	malware	signed_sys_with_vulnerablity

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	soft.samlab.ws/drivers/CardReader_Realtek_RTS5227_10.0.22631.21370.7z	185.26.122.80	200 OK	12 MB
URL User Request GET HTTP/2 soft.samlab.ws/drivers/CardReader_Realtek_RTS5227_10.0.22631.21370.7z IP 185.26.122.80:443 ASN #62082 Hostland LTD Certificate IssuerLet's Encrypt Subject.soft.samlab.ws Fingerprint54:18:BE:C6:E9:F5:11:65:22:FD:A0:CF:A8:AD:3A:A3:F2:9F:CF:30 ValiditySat, 10 Feb 2024 04:32:09 GMT - Fri, 10 May 2024 04:32:08 GMT File type 7-zip archive data, version 0.4 Size 12 MB (12396723 bytes) Hash b88c4d3403d3be668f13137549f89c88 9abbb120c4f2584c0ba94af36e2f4cb58946c4ec 557f6ba0a0111ee99f856be9402d095c7b1fd95e65a77f2d367690b130f77a8c HTTP Headers GET /drivers/CardReader_Realtek_RTS5227_10.0.22631.21370.7z HTTP/1.1 Host: soft.samlab.ws User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 19 Apr 2024 00:06:27 GMT content-type: application/x-7z-compressed content-length: 12396723 last-modified: Thu, 04 Apr 2024 12:10:55 GMT etag: "bd28b3-615443b325af6" accept-ranges: bytes strict-transport-security: max-age=31536000 X-Firefox-Spdy: h2`

soft.samlab.ws/drivers/CardReader_Realtek_RTS5227_10.0.22631.21370.7z

185.26.122.80

200 OK

12 MB

URL User Request GET HTTP/2
soft.samlab.ws/drivers/CardReader_Realtek_RTS5227_10.0.22631.21370.7z
IP
185.26.122.80:443
ASN
#62082 Hostland LTD

Certificate
IssuerLet's Encrypt
Subject*.soft.samlab.ws
Fingerprint54:18:BE:C6:E9:F5:11:65:22:FD:A0:CF:A8:AD:3A:A3:F2:9F:CF:30
ValiditySat, 10 Feb 2024 04:32:09 GMT - Fri, 10 May 2024 04:32:08 GMT

File type
7-zip archive data, version 0.4
Size
12 MB (12396723 bytes)
Hash
b88c4d3403d3be668f13137549f89c88
9abbb120c4f2584c0ba94af36e2f4cb58946c4ec
557f6ba0a0111ee99f856be9402d095c7b1fd95e65a77f2d367690b130f77a8c

HTTP Headers

GET /drivers/CardReader_Realtek_RTS5227_10.0.22631.21370.7z HTTP/1.1
Host: soft.samlab.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 00:06:27 GMT
content-type: application/x-7z-compressed
content-length: 12396723
last-modified: Thu, 04 Apr 2024 12:10:55 GMT
etag: "bd28b3-615443b325af6"
accept-ranges: bytes
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (227)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers