Report - www.albumplayer.ru/AP2101

Report Overview

Submitted URL
www.albumplayer.ru/AP2101_x64.zip
IP
141.8.194.242
ASN
#35278 Sprinthost.ru LLC
Submitted
2024-04-16 14:23:15
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
11

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.albumplayer.ru	unknown	2012-09-06	2015-12-15	2024-02-24	487 B	2.2 MB	141.8.194.242

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
www.albumplayer.ru/AP2101_x64.zip
IP
141.8.194.242
ASN
#35278 Sprinthost.ru LLC

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
2.2 MB (2193342 bytes)
Hash
7261d11e7bde93569a1caf7957f562ff
cc3a215e314f43f7a52d20807d4935dd13e0a897
305013428c0f4cace97fb7f79417fa4849c75065b74c03846752390eb35b769d

Archive (58)

Filename

Md5

File type

ap2config.exe

18f3eaad514e044ce60e0c1a7aa82cca

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

ap2decoder.exe

5336ccac8db24f5a6fcb9218a567cb7a

PE32+ executable (GUI) x86-64, for MS Windows, 5 sections

ap2gdiplus.dll

ed7afbb3b7eed50430c32b8b095efd5b

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

APlayer.exe

d99586b95a93e337dbce2fd8994a10b3

PE32+ executable (GUI) x86-64, for MS Windows, 5 sections

APlayer.fir

1bd4c1cfba93b44bfe192fce89d8c69c

ASCII text, with CRLF line terminators

aplayer.ini

37aed2240a82a60a2158dcb58ce27103

Generic INItialization configuration [FLAC]

approxy.exe

82cb2f57eebc547326ceeee888df692a

PE32 executable (GUI) Intel 80386, for MS Windows, 4 sections

approxy64.exe

07f8889a3a5b9a5a08126b5bcca58dfc

PE32+ executable (GUI) x86-64, for MS Windows, 5 sections

bass.dll

82dbc53c4e057ad941eb73aba212956e

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

basscd.dll

f3cdc1200be1878699b5f2ce95fbc3b1

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

bassopus.dll

f48e3fe4108736583771a61b461484bf

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

basswma.dll

eb2e1cba9f72560350e41a7f7ddf2657

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

bass_aac.dll

2c4daaeb74c12f800a58d17ccac34057

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

bass_mpc.dll

22e0a452a406f788383792b0d55bc735

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

ap2decoder.exe

5f5e6967079412857fc25c726488532f

PE32+ executable (GUI) x86-64, for MS Windows, 5 sections

asio_cfg_ru.txt

63577c15e16509396161efbce281ce3b

Unicode text, UTF-16, little-endian text, with CRLF line terminators

asio_x64_config.exe

15f7b07d89a2ba1ef3c6c6c78fb1fa1e

PE32+ executable (GUI) x86-64, for MS Windows, 5 sections

ap2gdiplus-htpc.dll

73dd866a4471c4899862c256ed4bb0be

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

aplayer-HTPC.txt

d4757a94f19d0e7c28b525d844950139

Unicode text, UTF-16, little-endian text, with CRLF line terminators

APlayer.exe

f003054fa2581912bc4e0d37868c4cb7

PE32+ executable (GUI) x86-64, for MS Windows, 5 sections

ap2decoder.exe

53bbb2d32738bd1caff3e85a44b0038a

PE32+ executable (GUI) x86-64, for MS Windows, 5 sections

ks_cfg_ru.txt

5107f1f50179e1e570b6ec4f86fea73d

Unicode text, UTF-16, little-endian text, with CRLF line terminators

ks_x64_config.exe

dd33726ca1614b86fe55311fd736b5b2

PE32+ executable (GUI) x86-64, for MS Windows, 5 sections

ap2decoder.exe

c9af65cd5c4ce85a85bfbd3426d5cc4e

PE32+ executable (GUI) x86-64, for MS Windows, 5 sections

wasapi_cfg_ru.txt

85747968eaa3ff1c01968d65bb413f1e

Unicode text, UTF-16, little-endian text, with CRLF line terminators

wasapi_x64_config.exe

8139b552a79a0bf76c79d59127f00f41

PE32+ executable (GUI) x86-64, for MS Windows, 5 sections

30kHz_641.txt

5adf0f572db0c930266b9a4c6095cd2a

ASCII text

40kHz_641.txt

338f9ee56551f2da055b9042c03b8f0d

ASCII text

50kHz_641.txt

25d8517db8bf545a74205841576501a7

ASCII text

60kHz_641.txt

8bf2354c2faece4de048a384d5ff7ba6

ASCII text

in_aiff.dll

5de7ca1973c18893aadc4388fe2800bd

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_alac.dll

84474b06ff0cd2fdc542008e3119b6dc

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_ape.dll

545e9e85e3d1931c2ac8c487a0ddd917

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_cda.dll

9f0a5e641f895692a23635a1a283c1d7

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_dvda.dll

e4e538d3c7d2439900fb5f402e7c6649

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

in_dvda_x64.dll

60ce2994e3df2f98cca87540870d29e0

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_flac.dll

2326b8845e7243e536632b6aa1f1988b

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_mp3.dll

f5e45cfb1d776e6b074b190b1bcca669

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_mp4.dll

5bcbd45b35977136225943eb7ea69d99

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_mpc.dll

b2a32f8f2e20e266c6c36896a73e0d46

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_ogg.dll

28fe80688bd2411d2b4102a0ad945afc

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_opus.dll

5f8ac9b1d9ef87fcab30b9bfc0aa1fb8

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_sacd.dll

8a347b94cbc592697ee7bed6d7bdaf87

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

in_sacd_x64.dll

d22494e601bf3183889a3a9d91345a3e

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_tak_x64.dll

4ddf4a8f5ef622d6913e97677519c529

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_wave.dll

4a5f6c600126d641ada382864e230024

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_wma.dll

778a5b9e9403c1f092cdf99115eb59f9

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

in_wv.dat

a512f8ffb2c1bb775a9779ec60b699cb

data

in_wv.dll

3bb5720c4f6060fff8f3c6c1fe76724d

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

libmpg123-0.dll

2745af59b587dede509587202480482c

PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows, 12 sections

out_asio.dll

25ea8152eadb02de175c7b552fe2b0dc

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

out_ks.dll

2810f28018d4562aa36c6707e4ccb4a6

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

out_wdm.dll

a7460edbd9dadd7b826a20b8f03079b9

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

plugin.ini

edc922cde77a2815f860b5e072b267f9

Generic INItialization configuration [OutWDM]

readme_ru.txt

2646e56970ac8b28a7ce5a148794423a

Unicode text, UTF-16, little-endian text, with CRLF line terminators

shared.dll

389665d7b90d175bc1202770962fb029

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections

tak_deco_lib.dll

c0befabef9c73e9e523a9daba349c7e8

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections

in_tak.dll

da2170939ce2315b57055bc91aeaa398

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 2/62

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

www.albumplayer.ru/AP2101_x64.zip

141.8.194.242

200 OK

2.2 MB

URL User Request GET HTTP/2
www.albumplayer.ru/AP2101_x64.zip
IP
141.8.194.242:443
ASN
#35278 Sprinthost.ru LLC

Certificate
IssuerLet's Encrypt
Subject*.albumplayer.ru
FingerprintDE:9B:98:C3:47:F5:09:57:E5:30:F5:1E:DB:CA:64:03:EA:37:C5:4E
ValidityTue, 26 Mar 2024 21:26:59 GMT - Mon, 24 Jun 2024 21:26:58 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
2.2 MB (2193342 bytes)
Hash
7261d11e7bde93569a1caf7957f562ff
cc3a215e314f43f7a52d20807d4935dd13e0a897
305013428c0f4cace97fb7f79417fa4849c75065b74c03846752390eb35b769d

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 2/62

HTTP Headers

GET /AP2101_x64.zip HTTP/1.1
Host: www.albumplayer.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Tue, 16 Apr 2024 14:22:48 GMT
content-type: application/zip
content-length: 2193342
last-modified: Sat, 10 Jan 2015 08:45:49 GMT
etag: "2177be-50c484cc96940"
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (58)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers