Report - wild-break.co.za/ggg%20(1).zip

Report Overview

Submitted URL
wild-break.co.za/ggg%20(1).zip
IP
41.185.64.66
ASN
#36943 ZA-1-Grid
Submitted
2024-04-16 16:26:31
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
wild-break.co.za	unknown	2004-09-10	2017-06-22	2024-03-17	484 B	652 kB	41.185.64.66

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
wild-break.co.za/ggg%20(1).zip
IP
41.185.64.66
ASN
#36943 ZA-1-Grid

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
652 kB (651571 bytes)
Hash
2de95709c06f668d6762b55a3ddfd993
c2893b8b157c5bebbeccd9eba59fab8a0ab9697a
f5c5ba95a03e27e21c065fdc45251c355f5e0a99be89870f65535e0e27c491e2

Archive (39)

Modified	Filename	Size	Md5	File type
2020-05-06 21:28	2-factor_verification.php	57 kB	5be2e29aaec522e0f75a08cfd41e02ee	HTML document, ASCII text, with very long lines (32765), with CRLF line terminators
2020-05-06 21:28	2-factor_verification_confirm.php	57 kB	de5d3d8d28ed0790ff8cb5ac0c129722	HTML document, ASCII text, with very long lines (32765), with CRLF line terminators
2020-05-06 21:28	emailverification.php	61 kB	ab854fd0133f64deb5efc95991df1dd1	HTML document, ASCII text, with very long lines (32765), with CRLF line terminators
2021-04-14 06:41	index.php	290 kB	8336bfa1488e93954f6052f229e99648	HTML document, ASCII text, with very long lines (65536), with no line terminators
2020-03-20 21:51	18f0-8531-7eef-aaa3.png	79 kB	917a021db3ce68930b5eb4ba77333208	PNG image data, 418 x 250, 8-bit/color RGB, non-interlaced
2020-09-22 07:20	612463178895044	155 kB	acb24cf8a26ff1503461e6add27290a6	JavaScript source, ASCII text, with very long lines (38496)
2020-09-22 07:20	adsct	31 B	872bb1fc2f7775cd82f45d110bbc384e	ASCII text, with no line terminators
2020-09-22 07:20	css	2.3 kB	cbbf12906bb47b9d46682d66989e3496	ASCII text
2020-05-06 20:51	css.txt	2.2 kB	acbfd53b3985fc68f6b339ec8cd2c6ab	ASCII text
2020-09-22 07:20	icon	568 B	3f692875b46cbdd6aa5fa1ff1c7fa363	ASCII text
2020-05-06 20:51	icon.txt	568 B	54f68d8ef85920d1358b15e7d827e73d	ASCII text
2020-09-22 07:20	iframe_api	810 B	c7d98973bef2a4889437d71a826b485c	CSV text
2020-05-06 20:51	iframe_api.txt	859 B	f292b6c08392f4cf45e4b6d4157787ab	JavaScript source, ASCII text, with very long lines (858)
2020-09-22 07:20	ill_email.svg	6.8 kB	be31c1998be6d9e284406e965028d82a	SVG Scalable Vector Graphics image
2020-09-22 07:20	j.php	9.9 kB	f650140b2e5042b5092d633bc4bf5a76	JavaScript source, ASCII text, with very long lines (5603)
2020-09-22 07:20	js	124 kB	ea693326162a34e4135204329fd7ae81	JavaScript source, ASCII text, with very long lines (2150)
2020-09-22 07:20	js(1)	93 kB	aae68ec1c288ad75d4e0a55aa103bb1a	JavaScript source, ASCII text, with very long lines (2150)
2019-06-01 04:57	key.svg	7.3 kB	726e0d1e34361d817a95429140497641	SVG Scalable Vector Graphics image
2020-09-22 07:20	luno-logo.svg	1.1 kB	1d282e5bc1cae341604a4cfa56901cee	SVG Scalable Vector Graphics image
2019-05-30 01:36	pleasewait2.gif	4.5 kB	5bdff07fc72b8ee7aca4422e6fd0ff9e	GIF image data, version 89a, 280 x 100
2020-09-22 07:20	social-apple-white.svg	691 B	0a07edcd0b0db8f464b1363755dc08fe	SVG Scalable Vector Graphics image
2020-09-22 07:20	social-facebook-white.svg	350 B	fcf41ff6566a0052b84f69d4bb0c91a8	SVG Scalable Vector Graphics image
2020-05-06 20:51	social-facebook.png	276 B	b36f74e00986ae59ed2c5a5197bc4eed	PNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced
2020-05-06 20:51	social-google.png	545 B	e95af1d184f36c284d27292e76f46dc3	PNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced
2020-09-22 07:20	social-google.svg	802 B	7bd78e63c4e4cf2e256861e4296eafaf	SVG Scalable Vector Graphics image
2020-09-22 07:20	store-apple-alt.svg	8.9 kB	a2390161ebce28ce0f3a8f80d13aafcf	SVG Scalable Vector Graphics image
2020-09-22 07:20	store-google-alt.svg	5.7 kB	ace1470f1f6ed4d3dd8693af000652eb	SVG Scalable Vector Graphics image
2020-09-22 07:20	styles.css	294 kB	1bc0cc13ce402ccfb177a0547eaa1bc2	ASCII text, with very long lines (65536), with no line terminators
2019-08-08 08:13	validated.gif	269 kB	779b9dc3928c2dbc304bcf6702bef6df	GIF image data, version 89a, 800 x 600
2020-09-22 07:20	website.css	166 kB	967732e55a663b0851ef9bd18aa80f4d	ASCII text, with very long lines (65536), with no line terminators
2020-05-06 20:51	www-widgetapi.js	26 kB	5091a4eb887934dbd84db701cf1be8dc	JavaScript source, ASCII text, with very long lines (785)
2020-05-06 20:51	www-widgetapi.txt	26 kB	5091a4eb887934dbd84db701cf1be8dc	JavaScript source, ASCII text, with very long lines (785)
2020-05-06 21:28	validating.php	54 kB	01090c0798ab55829e23105bbcd5dc0b	HTML document, ASCII text, with very long lines (32765), with CRLF line terminators
2020-05-06 21:28	validating_confirmation.php	54 kB	4d809539b817b7ff83c8df514ec2f4f6	HTML document, ASCII text, with very long lines (32765), with CRLF line terminators
2021-12-22 17:28	ver1.php	2.3 kB	9a46eeedfe8d2ac7aea9e8ffedae3021	PHP script, ASCII text, with CRLF line terminators
2021-12-22 17:28	ver2.php	1.8 kB	24b79ee4dad4bfd339c95cc8c7827f09	PHP script, ASCII text, with CRLF line terminators
2021-12-22 17:28	ver3.php	2.3 kB	1d439fca3e4a9a5c8648cf63ef36fa40	PHP script, ASCII text, with CRLF line terminators
2021-12-22 17:28	ver4.php	1.9 kB	5f2ec8337d6b050aca20f2f04650013e	PHP script, ASCII text, with CRLF line terminators
2020-05-06 21:28	verification1.php	54 kB	2fcdfea9d8dfa661ef8834675e1623c2	HTML document, ASCII text, with very long lines (32765), with CRLF line terminators

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 20/63

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

wild-break.co.za/ggg%20(1).zip

41.185.64.66

200 OK

652 kB

URL User Request GET HTTP/1.1
wild-break.co.za/ggg%20(1).zip
IP
41.185.64.66:443
ASN
#36943 ZA-1-Grid

Certificate
IssuercPanel, Inc.
Subjectwild-break.co.za
Fingerprint0A:1F:16:E5:00:02:48:DE:37:C3:0A:0B:6C:46:E9:77:C9:F0:38:59
ValidityFri, 08 Mar 2024 00:00:00 GMT - Thu, 06 Jun 2024 23:59:59 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
652 kB (651571 bytes)
Hash
2de95709c06f668d6762b55a3ddfd993
c2893b8b157c5bebbeccd9eba59fab8a0ab9697a
f5c5ba95a03e27e21c065fdc45251c355f5e0a99be89870f65535e0e27c491e2

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 20/63

HTTP Headers

GET /ggg%20(1).zip HTTP/1.1
Host: wild-break.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:26:05 GMT
Server: Apache
Last-Modified: Mon, 27 Dec 2021 16:51:38 GMT
Accept-Ranges: bytes
Content-Length: 651571
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/zip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (39)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers