Report Overview
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
horiondllarchive.netlify.app | unknown | 2018-05-08 | 2023-12-20 | 2023-12-20 | 509 B | 592 kB | 3.70.101.28 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
Files detected
URL
horiondllarchive.netlify.app/misc/injector/injector.zip
IP
3.70.101.28
ASN
#16509 AMAZON-02
File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
592 kB (591843 bytes)
Hash
388a49f911e4d9f20026c74af5ff5ac2
763307cecda0da009b26f17b1fb94ce2f1caa24e
Archive (4)
Filename | Md5 | File type | ||||||
---|---|---|---|---|---|---|---|---|
HorionInjector.exe | fb3652cc3a387c107714440829ac7264
| PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows, 2 sections | ||||||
MetroSet UI.dll | 0cc770f74e150736473fb09956b150ef
| PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections | ||||||
Newtonsoft.Json.dll | 16bdb13a1dfbfb5516b73314bc78ffff
| PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections | ||||||
System.Runtime.CompilerServices.Unsafe.dll | 7db46eeaf6156830500d4e5deda518f0
| PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
Detections
Analyzer | Verdict | Alert |
---|---|---|
Public Nextron YARA rules | malware | Detects ConfuserEx packed file |
Public Nextron YARA rules | malware | Detects ConfuserEx packed file |
Public Nextron YARA rules | malware | Detects ConfuserEx packed file |
Public Nextron YARA rules | malware | Detects ConfuserEx packed file |
VirusTotal | suspicious |
JavaScript (0)
No Javascripts found
No Javascripts found
No Javascripts found
HTTP Transactions (1)
URL | IP | Response | Size | |||||||
---|---|---|---|---|---|---|---|---|---|---|
horiondllarchive.netlify.app/misc/injector/injector.zip | 3.70.101.28 | 592 kB | ||||||||
Detections
HTTP Headers
| ||||||||||