| get.viddly.net/windows/v5/builds/5.0.480/ViddlySetup.exe |  172.67.69.150 | 200 OK | 45 MB |
URL User Request GET HTTP/3get.viddly.net/windows/v5/builds/5.0.480/ViddlySetup.exe IP172.67.69.150:443
CertificateIssuerGoogle Trust Services LLC Subjectviddly.net Fingerprint43:80:98:23:B2:0C:A2:48:34:7E:9B:13:38:A5:1F:0C:08:7A:55:5A ValidityMon, 18 Mar 2024 00:11:00 GMT - Sun, 16 Jun 2024 00:10:59 GMT
File typePE32 executable (GUI) Intel 80386, for MS Windows, 10 sections Size45 MB (45141864 bytes) Hash5f80aa6e3a85564204c59e0004f780d6 4821dd01b4625cbe94af93d2c54eb2aca64a5a43 f3820579aa36ff1a7450e03397accd01d37d9db4d3207558818e2568ebb17b84
| Analyzer | Verdict | Alert |
|---|
| VirusTotal | suspicious | |
GET /windows/v5/builds/5.0.480/ViddlySetup.exe HTTP/1.1
Host: get.viddly.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:29:23 GMT
content-type: application/octet-stream
content-length: 45141864
last-modified: Mon, 01 Apr 2024 12:12:21 GMT
etag: "660aa4a5-2b0cf68"
access-control-allow-origin: *
access-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS
access-control-allow-headers: Content-Type, Authorization
cache-control: max-age=31536000
cf-cache-status: HIT
age: 57845
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BG1rCNPJRYyDQt3T61net4twVFTRRzXSEPDhCiz%2BNCvV1MeeJRs92KY5a%2BSM31bMKQkUeRN%2FncGoRbve1kcqH%2FUEnIZZpoy2pFy22vtS92gOHAg8xYgkW8%2BsPcgj%2Fl9%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
dmode: off
server: cloudflare
cf-ray: 876d3e40a888b524-OSL
alt-svc: h3=":443"; ma=86400
|
| get.viddly.net/ViddlySetup.exe | 172.67.69.150 | 302 Found | 45 MB |
URL User Request GET HTTP/2get.viddly.net/ViddlySetup.exe IP172.67.69.150:443
CertificateIssuerGoogle Trust Services LLC Subjectviddly.net Fingerprint43:80:98:23:B2:0C:A2:48:34:7E:9B:13:38:A5:1F:0C:08:7A:55:5A ValidityMon, 18 Mar 2024 00:11:00 GMT - Sun, 16 Jun 2024 00:10:59 GMT
Size45 MB (45141864 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ViddlySetup.exe HTTP/1.1
Host: get.viddly.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 19 Apr 2024 13:29:23 GMT
content-type: text/html; charset=UTF-8
location: https://get.viddly.net/index.php
access-control-allow-origin: *
access-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS
access-control-allow-headers: Content-Type, Authorization
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hwvmv1sqwVYBMZKDZn5F20L5ioMQlmhubaZWexOnRBmxOUT236brhsRqiun6fFcVdGjl%2Bp6SnUTlWiajnAB6kSOj%2BI4qQrQ9CmvXXPpHoPut9792NxLDoW4T2Y4Q0lW1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
dmode: off
server: cloudflare
cf-ray: 876d3e3e796a569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
URL User Request GET HTTP/2IP172.67.69.150:443
CertificateIssuerGoogle Trust Services LLC Subjectviddly.net Fingerprint43:80:98:23:B2:0C:A2:48:34:7E:9B:13:38:A5:1F:0C:08:7A:55:5A ValidityMon, 18 Mar 2024 00:11:00 GMT - Sun, 16 Jun 2024 00:10:59 GMT
Size45 MB (45141864 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /index.php HTTP/1.1
Host: get.viddly.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 19 Apr 2024 13:29:23 GMT
content-type: text/html; charset=UTF-8
location: https://get.viddly.net/windows/v5/builds/5.0.480/ViddlySetup.exe
access-control-allow-origin: *
access-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS
access-control-allow-headers: Content-Type, Authorization
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0qXwvfWA6s1JeGJigH96h78tyxveGzseqf%2Ffxij3w5E7nwBdj2KdlX3rv8fuOG0i620bxfcf0wW77lRdkIowDTcK0ILVXBw%2BLpIV1hYqV9Qq7%2Bg8SnaMY23H6NrGhubh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
dmode: off
server: cloudflare
cf-ray: 876d3e3f9a81569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
104.26.2.92