Report - www.security-explorations.com/materials/se-2012-01-61.zip

Report Overview

Submitted URL
www.security-explorations.com/materials/se-2012-01-61.zip
IP
199.36.158.100
ASN
#54113 FASTLY
Submitted
2024-04-26 10:17:50
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.security-explorations.com	unknown	2006-12-26	2012-09-05	2024-03-18	511 B	541 B	199.36.158.100
security-explorations.com	unknown	2006-12-26	2012-09-03	2024-03-13	507 B	13 kB	199.36.158.100

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
security-explorations.com/materials/se-2012-01-61.zip
IP
199.36.158.100
ASN
#54113 FASTLY

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
12 kB (12389 bytes)
Hash
20bba156cce10c748197f01aa843007c
c7463b3ff912ab847f3049b94a03c0044bd660ec
559e069e8e21403969d39e91ef7870a8188ceab1e35f6b2dbd2091e6986f2127

Archive (11)

Filename

Md5

File type

BlackBox.class

568460e59903014704dd328685fd9e65

compiled Java class data, version 51.0 (Java 1.7)

BlackBox.java

402896a19597668dd0b617a0b48697eb

ASCII text, with CRLF line terminators

build.bat

2e28cf3098d990bd97234e1ca511ae1a

DOS batch file, ASCII text, with CRLF line terminators

DummyIf.class

cae4356d8d03b26abd7b73cf95547e9e

compiled Java class data, version 51.0 (Java 1.7)

DummyIf.java

897337c5d27a291d5742f001bc329cfe

ASCII text, with CRLF line terminators

Exploit.class

ab6b7acd96a46e19dbee7336548e2aba

compiled Java class data, version 51.0 (Java 1.7)

Exploit.java

59e196cc7ccc7356581b14b9075924e6

ASCII text, with CRLF line terminators

index.html

29177656f128a3ea1792b77f1adbe252

HTML document, ASCII text, with CRLF line terminators

Vuln61.class

2d2ff6a2bff672c4393b026075edf9c1

compiled Java class data, version 51.0 (Java 1.7)

Vuln61.java

dea0ce5f7f4a341ad8ca0d75dcbda246

ASCII text, with CRLF line terminators

license.txt.pgp

344f92e2e3959561bb583cbf580b3626

PGP signed message

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 26/59

JavaScript (0)

HTTP Transactions (2)

URL IP Response Size

www.security-explorations.com/materials/se-2012-01-61.zip

199.36.158.100

301 Moved Permanently

76 B

URL User Request GET HTTP/2
www.security-explorations.com/materials/se-2012-01-61.zip
IP
199.36.158.100:443
ASN
#54113 FASTLY

Certificate
IssuerGoogle Trust Services LLC
Subjectwww.vin-check.app
FingerprintA4:A7:5C:4B:A0:28:15:A4:78:18:38:0A:DD:23:B7:67:1F:F3:62:8F
ValidityWed, 10 Apr 2024 01:31:13 GMT - Tue, 09 Jul 2024 02:27:54 GMT

File type
ASCII text, with no line terminators
Size
76 B (76 bytes)
Hash
102b785f32868f1424110bd3c6a140f1
f0d94500b2181c1881c04a8f0ee89dd42b66455d
73c530f3713cde2a5c2e4e70fabd797f5733f634b06cf52102015a0558d129d5

HTTP Headers

GET /materials/se-2012-01-61.zip HTTP/1.1
Host: www.security-explorations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
location: https://security-explorations.com/materials/se-2012-01-61.zip
content-type: text/plain; charset=utf-8
accept-ranges: bytes
date: Fri, 26 Apr 2024 10:17:22 GMT
x-served-by: cache-hel1410023-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714126643.792448,VS0,VE47
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 76
X-Firefox-Spdy: h2

security-explorations.com/materials/se-2012-01-61.zip

199.36.158.100

200 OK

12 kB

URL User Request GET HTTP/2
security-explorations.com/materials/se-2012-01-61.zip
IP
199.36.158.100:443
ASN
#54113 FASTLY

Certificate
IssuerGoogle Trust Services LLC
Subjecttamaya.kagiya.work
Fingerprint64:9A:AC:A3:19:DB:E1:79:A8:50:C5:C9:3B:D5:BD:A7:77:C7:D6:39
ValiditySun, 03 Mar 2024 18:00:53 GMT - Sat, 01 Jun 2024 18:57:47 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
12 kB (12389 bytes)
Hash
20bba156cce10c748197f01aa843007c
c7463b3ff912ab847f3049b94a03c0044bd660ec
559e069e8e21403969d39e91ef7870a8188ceab1e35f6b2dbd2091e6986f2127

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 26/59

HTTP Headers

GET /materials/se-2012-01-61.zip HTTP/1.1
Host: security-explorations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: application/zip
etag: "37d7936059c88a31dfe4842b170030d74ccb6c35742dd6a392cad9518a9c21ca-br"
last-modified: Fri, 26 Apr 2024 06:36:21 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Fri, 26 Apr 2024 10:17:23 GMT
x-served-by: cache-hel1410033-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714126643.988385,VS0,VE161
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 12389
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (11)

Detections

JavaScript (0)

HTTP Transactions (2)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers