download.documentfoundation.org/libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi
302 Found 432 B URL User Request GET HTTP/2 download.documentfoundation.org/libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi
IP
Certificate IssuerLet's Encrypt
Subjectdownload.documentfoundation.org
Fingerprint48:EE:82:F4:80:FB:71:12:4D:3D:87:E0:49:5F:E9:57:D6:42:41:F9
ValiditySun, 10 Mar 2024 02:07:10 GMT - Sat, 08 Jun 2024 02:07:09 GMT
File type HTML document, ASCII text
Hash b8cd602230aca70b7bbf9a8aaafe949c
3ec17116e3359410f6304c6912daf724cd56fc98
c38659be8ad8da0a57313477be3f94880e7e515af5607bb56b24ed0bc7c9bf21
GET /libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi HTTP/1.1
Host: download.documentfoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 16 Apr 2024 19:54:30 GMT
content-type: text/html; charset=iso-8859-1
content-length: 432
server: Apache
x-prefix: 91.90.40.0/21
x-as: 50304
x-mirrorbrain-mirror: faigner
x-mirrorbrain-realm: region
link: <http://download.documentfoundation.org/libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi.meta4>; rel=describedby; type="application/metalink4+xml", <http://download.documentfoundation.org/libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi.asc>; rel=describedby; type="application/pgp-signature", <http://download.documentfoundation.org/libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi.torrent>; rel=describedby; type="application/x-bittorrent", <https://mirror.faigner.de/tdf/libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi>; rel=duplicate; pri=1; geo=de, <https://ftp.fau.de/tdf/libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi>; rel=duplicate; pri=2; geo=de, <http://libreoffice-mirror.rbc.ru/pub/libreoffice/libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi>; rel=duplicate; pri=3; geo=ru, <https://tdf.bio.lmu.de/libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi>; rel=duplicate; pri=4; geo=de, <https://ftp.acc.umu.se/mirror/documentfoundation.org/libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi>; rel=duplicate; pri=5; geo=se
digest: MD5=cD5cuGI/5fNoR4+YVEEO/g==, SHA=kF2aJ/JDmAhRcZB1K3g/PNMtUxU=, SHA-256=RhbB/QPqH6eyzKG0VZXkh7V8QUAlPqmi1UVwApL3i5s=
location: https://mirror.faigner.de/tdf/libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi
X-Firefox-Spdy: h2
mirror.faigner.de/tdf/libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi
200 OK 3.7 MB URL User Request GET HTTP/1.1 mirror.faigner.de/tdf/libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi
IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subject*.faigner.de
FingerprintE1:DE:D3:7D:AF:81:B2:15:D2:CE:0D:28:10:59:AB:F5:AC:56:18:B7
ValidityTue, 19 Mar 2024 18:50:28 GMT - Mon, 17 Jun 2024 18:50:27 GMT
File type Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 0, Title: Installation database, Subject: LibreOffice 24.2, Author: The Document Foundation, Keywords: Install,MSI, Comments: LibreOffice, Name of Creating Application: Windows Installer, Security: 0, Template: x64;1033, Last Saved By: x64;1031, Revision Number: {E22C1A83-E469-459E-8C1A-7FF64851E248}24.2.2.2;{E22C1A83-E469-459E-8C1A-7FF64851E248}24.2.2.2;{56F769C8-29D9-4DA0-AAC5-6165D0180483}, Number of Pages: 200, Number of Characters: 32
Size 3.7 MB (3674112 bytes)
Hash 703e5cb8623fe5f368478f9854410efe
905d9a27f2439808517190752b783f3cd32d5315
4616c1fd03ea1fa7b2cca1b45595e487b57c4140253ea9a2d545700292f78b9b
Analyzer Verdict Alert YARAhub by abuse.ch malware meth_get_eip
GET /tdf/libreoffice/stable/24.2.2/win/x86_64/LibreOffice_24.2.2_Win_x86-64_helppack_de.msi HTTP/1.1
Host: mirror.faigner.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 16 Apr 2024 19:54:31 GMT
Content-Type: application/octet-stream
Content-Length: 3674112
Last-Modified: Mon, 25 Mar 2024 12:01:19 GMT
Connection: keep-alive
ETag: "6601678f-381000"
Accept-Ranges: bytes
89.238.68.185