Report - www.math.uaa.alaska.edu/~afkjm/PenAttention/files/PenCursorAttention14-binaries.zip

Report Overview

Submitted URL
www.math.uaa.alaska.edu/~afkjm/PenAttention/files/PenCursorAttention14-binaries.zip
IP
137.229.141.228
ASN
#7774 ALASKA
Submitted
2024-04-18 13:37:41
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.math.uaa.alaska.edu	unknown	unknown	2014-05-13	2023-09-09	453 B	189 kB	137.229.141.228

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
www.math.uaa.alaska.edu/~afkjm/PenAttention/files/PenCursorAttention14-binaries.zip
IP
137.229.141.228
ASN
#7774 ALASKA

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
189 kB (188651 bytes)
Hash
d512fecf2cb150cbbd13212c65304ba4
b566a66c0ff1bb67fc44594cf4571d97aa5d1c4e
70501b246e8299d3b48a4e49cd5568071d3076d17f8d5d737c8913863acc00e5

Archive (20)

Filename

Md5

File type

CursorAttention.exe

9484b695e00962332304466cde95c746

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

MouseHook.dll

1c56f1a455d4dedb5fe7f918b36b2406

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections

ReadMe.txt

6cb3de129e2125e5044a55b39e0ac4f9

ASCII text, with CRLF line terminators

RenameToCustomPen.png

9da4905feb5a1a1f2b66f43c363281ba

PNG image data, 162 x 162, 8-bit colormap, non-interlaced

Thumbs.db

f7ee794d2686821920c03b60f8e3acfe

Composite Document File V2 Document, Cannot read section info

CursorAttention.exe

df182172b6a3d0dca45014507c3f88be

PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows, 2 sections

MouseHook.dll

ef1a63c49b2a9fb8880d39f2aafeec8a

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

ReadMe.txt

6cb3de129e2125e5044a55b39e0ac4f9

ASCII text, with CRLF line terminators

RenameToCustomPen.png

9da4905feb5a1a1f2b66f43c363281ba

PNG image data, 162 x 162, 8-bit colormap, non-interlaced

Thumbs.db

579edb421a131e0dd5efa9d4c4f4a73f

Composite Document File V2 Document, Cannot read section info

MouseHook.dll

1c56f1a455d4dedb5fe7f918b36b2406

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections

PenAttention.exe

7c9051c963318ddd91a81ea0dca0d4ad

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

ReadMe.txt

ffcc66655bd1aaf4b54e5bb0ea8808c7

ASCII text, with CRLF line terminators

RenameToCustomPen.png

9da4905feb5a1a1f2b66f43c363281ba

PNG image data, 162 x 162, 8-bit colormap, non-interlaced

Thumbs.db

a6ba69dcf6606f571c1bd3b31c0668bd

Composite Document File V2 Document, Cannot read section info

MouseHook.dll

ef1a63c49b2a9fb8880d39f2aafeec8a

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

PenAttention.exe

c62c8d84b1b6badf45876eb279ad575c

PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows, 2 sections

ReadMe.txt

ffcc66655bd1aaf4b54e5bb0ea8808c7

ASCII text, with CRLF line terminators

RenameToCustomPen.png

9da4905feb5a1a1f2b66f43c363281ba

PNG image data, 162 x 162, 8-bit colormap, non-interlaced

Thumbs.db

f92c4a5bf0f8a08e724de88519981811

Composite Document File V2 Document, Cannot read section info

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/65

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

www.math.uaa.alaska.edu/~afkjm/PenAttention/files/PenCursorAttention14-binaries.zip

137.229.141.228

200 OK

189 kB

URL User Request GET HTTP/1.1
www.math.uaa.alaska.edu/~afkjm/PenAttention/files/PenCursorAttention14-binaries.zip
IP
137.229.141.228:80
ASN
#7774 ALASKA

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
189 kB (188651 bytes)
Hash
d512fecf2cb150cbbd13212c65304ba4
b566a66c0ff1bb67fc44594cf4571d97aa5d1c4e
70501b246e8299d3b48a4e49cd5568071d3076d17f8d5d737c8913863acc00e5

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/65

HTTP Headers

GET /~afkjm/PenAttention/files/PenCursorAttention14-binaries.zip HTTP/1.1
Host: www.math.uaa.alaska.edu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:37:16 GMT
Server: Apache/2.4.29 (Ubuntu)
X-Content-Type-Options: nosniff
Last-Modified: Sat, 25 Dec 2010 09:42:45 GMT
ETag: "2e0eb-49838ecc88f40"
Accept-Ranges: bytes
Content-Length: 188651
X-Frame-Options: sameorigin, sameorigin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/zip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (20)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers