Report Overview
Submitted URL
www.sordum.org/files/download/webcam-on-off/WebcamOnOff.zip
IP
185.146.22.240
ASN
#55293 A2HOSTING
Submitted
2024-04-23 15:27:49
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
www.sordum.org | unknown | 2013-01-30 | 2013-02-02 | 2024-04-16 | 513 B | 490 kB | 185.146.22.240 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
Files detected
URL
www.sordum.org/files/download/webcam-on-off/WebcamOnOff.zip
IP
185.146.22.240
ASN
#55293 A2HOSTING
File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
489 kB (489411 bytes)
Hash
4228dc5e72b5ac9d74e1323eb6a39dd9
ef8e3e6a403e2e7ea988b3eeedd6bb4a1020985d
Archive (3)
Filename | Md5 | File type | ||||||
---|---|---|---|---|---|---|---|---|
Read_me.txt | 58868fcbfe9bc6fc215d874ca511b242 | Non-ISO extended-ASCII text, with CRLF line terminators | ||||||
WebCam.exe | 50101cfc4c03273f830cec74e2babdec
| PE32 executable (GUI) Intel 80386, for MS Windows, 4 sections | ||||||
WebCam.ini | 0682cc3ec77c88a098e8fec15d0ed3e9 | Unicode text, UTF-16, little-endian text, with CRLF line terminators |
Detections
Analyzer | Verdict | Alert |
---|---|---|
YARAhub by abuse.ch | malware | meth_get_eip |
Public InfoSec YARA rules | malware | Identifies compiled AutoIT script (as EXE). |
JavaScript (0)
HTTP Transactions (1)
URL | IP | Response | Size | |
---|---|---|---|---|
www.sordum.org/files/download/webcam-on-off/WebcamOnOff.zip | 185.146.22.240 | 200 OK | 489 kB | |
HTTP Headers
| ||||