Report - classic.cubey.cc/upload/cubey

Report Overview

Submitted URL
classic.cubey.cc/upload/cubey_classic.zip
IP
104.21.54.104
ASN
#13335 CLOUDFLARENET
Submitted
2024-03-29 10:32:48
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
classic.cubey.cc	unknown	unknown	No data	No data	495 B	4.9 MB	104.21.54.104

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
classic.cubey.cc/upload/cubey_classic.zip
IP
104.21.54.104
ASN
#13335 CLOUDFLARENET

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
4.9 MB (4872992 bytes)
Hash
b76c930bf163909d18b27fafaed439b3
c058deb056e544c076eeb9570d52895b87c96e74
572ac6a7cc3ae731fe119a1ed973b28c952e3d96696a9379b8d8916d070e2a6c

Archive (7)

Filename

Md5

File type

collect.ogg

9e65fad49fe3d3d6c6bd376ea8521892

Ogg data, Vorbis audio, mono, 44100 Hz, ~80000 bps

Cubey's Adventures.exe

dc5acd46a54833fbe2c8ef509cb434c8

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

D3DX9_43.dll

86e39e9161c3d930d93822f1563c280d

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 4 sections

data.win

e9816f6d0e17bc61bdb7fa3928116330

IFF data

death.ogg

fba7dd15695dfb108bf27cbe3dc0ebec

Ogg data, Vorbis audio, mono, 44100 Hz, ~80000 bps

game_start.ogg

615f6336badffccfb8aeee6b38384a28

Ogg data, Vorbis audio, mono, 44100 Hz, ~80000 bps

options.ini

2df58ec2596157ad960d275e8ea1bb3e

Windows WIN.INI

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_stackstrings

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	classic.cubey.cc/upload/cubey_classic.zip	104.21.54.104	200 OK	4.9 MB
URL User Request GET HTTP/2 classic.cubey.cc/upload/cubey_classic.zip IP 104.21.54.104:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectcubey.cc Fingerprint1D:DE:8D:4E:74:7C:A8:AB:76:3D:A4:E0:0B:0A:82:99:23:D4:68:D7 ValiditySat, 10 Feb 2024 18:39:31 GMT - Fri, 10 May 2024 18:39:30 GMT File type Zip archive data, at least v2.0 to extract, compression method=deflate Size 4.9 MB (4872992 bytes) Hash b76c930bf163909d18b27fafaed439b3 c058deb056e544c076eeb9570d52895b87c96e74 572ac6a7cc3ae731fe119a1ed973b28c952e3d96696a9379b8d8916d070e2a6c HTTP Headers `GET /upload/cubey_classic.zip HTTP/1.1 Host: classic.cubey.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 29 Mar 2024 10:32:21 GMT content-type: application/zip content-length: 4872992 last-modified: Thu, 02 Mar 2023 17:40:36 GMT etag: "6400df94-4a5b20" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PGgMnFPmHf6DspkeYyU5610BsKjYggm3QoZBC%2BoWcBp4xRoebEKEyfdGJ0PcMyWloJGYQzaWobbRYkVhF1Dc6J8VHiUTRZItfvDbUJ7XdroGhmPR2CgBFU2t4K3bt4dqN%2B4U"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 86bf320f991456b1-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

classic.cubey.cc/upload/cubey_classic.zip

104.21.54.104

200 OK

4.9 MB

URL User Request GET HTTP/2
classic.cubey.cc/upload/cubey_classic.zip
IP
104.21.54.104:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectcubey.cc
Fingerprint1D:DE:8D:4E:74:7C:A8:AB:76:3D:A4:E0:0B:0A:82:99:23:D4:68:D7
ValiditySat, 10 Feb 2024 18:39:31 GMT - Fri, 10 May 2024 18:39:30 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
4.9 MB (4872992 bytes)
Hash
b76c930bf163909d18b27fafaed439b3
c058deb056e544c076eeb9570d52895b87c96e74
572ac6a7cc3ae731fe119a1ed973b28c952e3d96696a9379b8d8916d070e2a6c

HTTP Headers

GET /upload/cubey_classic.zip HTTP/1.1
Host: classic.cubey.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 10:32:21 GMT
content-type: application/zip
content-length: 4872992
last-modified: Thu, 02 Mar 2023 17:40:36 GMT
etag: "6400df94-4a5b20"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PGgMnFPmHf6DspkeYyU5610BsKjYggm3QoZBC%2BoWcBp4xRoebEKEyfdGJ0PcMyWloJGYQzaWobbRYkVhF1Dc6J8VHiUTRZItfvDbUJ7XdroGhmPR2CgBFU2t4K3bt4dqN%2B4U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf320f991456b1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (7)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers