Report Overview

  1. Submitted URL

    s7.upfiles.download/2023/11/03/03/QdoCc9H91J6SlB4GJXQtqINrEQ78ANzXxTfAkwSJ.zip?name=Battle+Axe+Overlord+v1.27.zip&ip=35.187.132.231&md5=DZwy04hmmW0u8fdI2iKS9A&expires=1713991906

  2. IP

    65.109.85.71

    ASN

    #24940 Hetzner Online GmbH

  3. Submitted

    2024-04-24 08:52:33

    Access

    public

  4. Website Title

    about:privatebrowsing

  5. Final URL

    about:privatebrowsing

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  2. urlquery

    0

  3. Network Intrusion Detection

    0

  4. Threat Detection Systems

    1

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
s7.upfiles.downloadunknown2021-05-172022-12-162024-04-17

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


Files detected

  1. URL

    s7.upfiles.download/2023/11/03/03/QdoCc9H91J6SlB4GJXQtqINrEQ78ANzXxTfAkwSJ.zip?name=Battle+Axe+Overlord+v1.27.zip&ip=35.187.132.231&md5=DZwy04hmmW0u8fdI2iKS9A&expires=1713991906

  2. IP

    65.109.85.71

  3. ASN

    #24940 Hetzner Online GmbH

  1. File type

    Zip archive data, at least v1.0 to extract, compression method=store

    Size

    921 kB (921010 bytes)

  2. Hash

    d72889c1843c50512702f0fe13fb83ff

    294170690009663f012b6cf46d2f58ecc8255135

  1. Archive (55)

    2. FilenameMd5File type
    Add Keys.reg
    0638bda5960806871b478ea5a9884d6d
    		Windows Registry little-endian text (Win2K or above)
    I Công Nghệ - Nơi chia sẻ phần mềm game cực chuẩn.html
    93cbf84354f9a1cacb4e1a6697ed6e08
    		HTML document, Unicode text, UTF-8 text, with very long lines (11924), with CRLF, LF line terminators
    IGG Tech - Software Free Download Full Installer Step by Step - Page 2.html
    6879bb5f2eed45dbb823f5f408e4e70f
    		HTML document, ASCII text, with very long lines (11909), with CRLF, LF line terminators
    install-as-admin.zip
    4af672f0eff80996375a39b3bc2bb226
    		Zip archive data, at least v2.0 to extract, compression method=deflate
    overlord.svg
    2a04d8fe12912e439d50915ba4120da3
    		SVG Scalable Vector Graphics image
    .debug
    3bd4cb3ab44e2013bcc5b7e0f6f47c4e
    		XML 1.0 document, ASCII text
    prefs.json
    d83030ce5deeff2a4b60a1d628bdf9af
    		JSON text data
    normalize.css
    3ac97cd4f3bff16bb219931401695433
    		ASCII text, with very long lines (2012)
    Overlord.css
    e5d6ea7314ef58ec78d6489685ae58bd
    		ASCII text, with very long lines (7184), with no line terminators
    protip.min.css
    79ca61d1b3b4f11345805064aa322303
    		ASCII text, with very long lines (65536), with no line terminators
    type.css
    5503dc36a0d6fd313ccbc26ca48225fd
    		ASCII text, with no line terminators
    manifest.xml
    76d4d4a57e18c2de48f8bbee69a30024
    		XML 1.0 document, ASCII text
    SourceCodePro-Black.ttf
    fc9fc376af1a7cd77db8619a07eb4e6b
    		TrueType Font data, digitally signed, 19 tables, 1st "BASE", 38 names, Macintosh, Copyright 2010, 2012 Adobe Systems Incorporated. All Rights Reserved.Source Code Pro BlackRegula
    SourceCodePro-Bold.ttf
    5a0856eb52623ae94b09dbbf31a27b95
    		TrueType Font data, digitally signed, 19 tables, 1st "BASE", 34 names, Macintosh, Copyright 2010, 2012 Adobe Systems Incorporated. All Rights Reserved.Source Code ProBold1.017;AD
    SourceCodePro-ExtraLight.ttf
    dc178a6f43ff583922d683081b78d01e
    		TrueType Font data, digitally signed, 19 tables, 1st "BASE", 38 names, Macintosh, Copyright 2010, 2012 Adobe Systems Incorporated. All Rights Reserved.Source Code Pro ExtraLightR
    SourceCodePro-Light.ttf
    4ea7ca3086635b4d34ef762e3fdc38be
    		TrueType Font data, digitally signed, 19 tables, 1st "BASE", 38 names, Macintosh, Copyright 2010, 2012 Adobe Systems Incorporated. All Rights Reserved.Source Code Pro LightRegula
    SourceCodePro-Medium.ttf
    0cdb648acad69b0d773a4fd6be7e5737
    		TrueType Font data, digitally signed, 19 tables, 1st "BASE", 38 names, Macintosh, Copyright 2010, 2012 Adobe Systems Incorporated. All Rights Reserved.Source Code Pro MediumRegul
    SourceCodePro-Regular.ttf
    43bb4cbf1d0ecfdb1309e4cb67264f35
    		TrueType Font data, digitally signed, 19 tables, 1st "BASE", 34 names, Macintosh, Copyright 2010, 2012 Adobe Systems Incorporated. All Rights Reserved.Source Code ProRegular1.017
    SourceCodePro-Semibold.ttf
    1ca52b8bb78764f68000367fd39216b4
    		TrueType Font data, digitally signed, 19 tables, 1st "BASE", 38 names, Macintosh, Copyright 2010, 2012 Adobe Systems Incorporated. All Rights Reserved.Source Code Pro SemiboldReg
    sourcesanspro-regular-webfont.ttf
    2c33650bf75aa6c5148cc2fb219e77b8
    		TrueType Font data, 20 tables, 1st "BASE", 15 names, Microsoft, language 0x409, Straight lSource Sans ProRegular1.040;ADBE;SourceSansPro-Regular;ADOBESource Sans Pro RegularVer
    index.html
    503983935b558c48c687acc259136c0d
    		HTML document, ASCII text, with very long lines (1605)
    modal.html
    d359dd4e58b5511a8ad06a3b69082134
    		HTML document, Unicode text, UTF-8 text, with very long lines (5646)
    iconDarkThemeHover.png
    f97bbe330c90d3dba49350d7610bee7b
    		PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced
    iconDarkThemeHover@2x.png
    315eddd8dbf93738997f5913b0f693f6
    		PNG image data, 46 x 46, 8-bit/color RGBA, non-interlaced
    iconDarkThemeHover_2x.png
    315eddd8dbf93738997f5913b0f693f6
    		PNG image data, 46 x 46, 8-bit/color RGBA, non-interlaced
    iconDarkThemeNormal.png
    ea975964cabc1f02fcef8865b3e68c52
    		PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced
    iconDarkThemeNormal@2x.png
    0c8593b49a8addff9a68c7b50274b1f5
    		PNG image data, 46 x 46, 8-bit/color RGBA, non-interlaced
    iconDarkThemeNormal_2x.png
    0c8593b49a8addff9a68c7b50274b1f5
    		PNG image data, 46 x 46, 8-bit/color RGBA, non-interlaced
    iconLightThemeHover.png
    f97bbe330c90d3dba49350d7610bee7b
    		PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced
    iconLightThemeHover@2x.png
    315eddd8dbf93738997f5913b0f693f6
    		PNG image data, 46 x 46, 8-bit/color RGBA, non-interlaced
    iconLightThemeHover_2x.png
    315eddd8dbf93738997f5913b0f693f6
    		PNG image data, 46 x 46, 8-bit/color RGBA, non-interlaced
    iconLightThemeNormal.png
    81f85744d4a2b2d404f3ab33d19fa08e
    		PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced
    iconLightThemeNormal@2x.png
    fb5559e93b3335b2790390ac302f9c1f
    		PNG image data, 46 x 46, 8-bit/color RGBA, non-interlaced
    iconLightThemeNormal_2x.png
    fb5559e93b3335b2790390ac302f9c1f
    		PNG image data, 46 x 46, 8-bit/color RGBA, non-interlaced
    app.js
    ec003e48cdcb7cbe3b3e8ce98747de19
    		ASCII text, with very long lines (1562), with no line terminators
    analytics.js
    8916ead392464ee0a7d667cfd22dc960
    		ASCII text, with very long lines (1649), with no line terminators
    angular-animate.min.js
    ef83c719e47c91dc569c5eed984a4008
    		JavaScript source, ASCII text, with very long lines (24551), with no line terminators
    angular.js
    5469d18baab78423b923184cd9f59246
    		JavaScript source, ASCII text, with very long lines (65536), with no line terminators
    axios.js
    7bbd014e6f3cfb7121ffc12bba64d641
    		JavaScript source, ASCII text, with very long lines (31172), with no line terminators
    contextMenu.js
    c6a0d7df87cbded4ee42faebfd0c54a1
    		JavaScript source, ASCII text, with very long lines (3889), with no line terminators
    CSInterface.js
    67a66865ac2c99b517ab00bf9ed89175
    		JavaScript source, ASCII text, with very long lines (8364), with no line terminators
    firebase.js
    73df2b8bcb161b35651ea18afaa242ae
    		JavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
    jquery.js
    c3880043d6a5cbbf01f2d584e6463fe0
    		JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
    modal.js
    a574b70342dff1b90503bb9ec932d3f8
    		JavaScript source, ASCII text, with very long lines (5946), with no line terminators
    ocLazyLoad.min.js
    27e7b304d3bfb6c761891ec8ded15a8b
    		JavaScript source, ASCII text, with very long lines (15092), with no line terminators
    promise.min.js
    0ef7501cdb338ee52250a4e3a6c14316
    		JavaScript source, ASCII text, with very long lines (2813), with no line terminators
    protip.min.js
    64b48850c9493baf2cde25ef49e4c249
    		JavaScript source, ASCII text, with very long lines (33039), with no line terminators
    Vulcan.js
    41affe5cad2e214e71af921c73b83d45
    		JavaScript source, ASCII text, with very long lines (6026), with no line terminators
    modal.js
    0d35770287006f5aa4d4be4e810ac93f
    		ASCII text, with very long lines (404), with no line terminators
    Overlord-modal.js
    8347d75642db22f2e941c3655b975005
    		JavaScript source, ASCII text, with very long lines (3450), with no line terminators
    Overlord.js
    bfe838ecd32588f0390cbfc14f1afd8b
    		JavaScript source, ASCII text, with very long lines (12448), with no line terminators
    Overlord.jsx
    aa93918a38cea145b10f0bec9df61c5f
    		ASCII text
    signatures.xml
    6485c4e4b706a191c1fcb9fba49b5e04
    		ASCII text, with very long lines (9158)
    mimetype
    c08502997fc819570b793f6e81ce0495
    		ASCII text, with no line terminators
    readme.txt
    35fe79dabb9df162167e4508467c1b8c
    		ISO-8859 text, with CRLF line terminators

    Detections

    AnalyzerVerdictAlert
    VirusTotalmalicious
    VirusTotal - Scan result 17/65

JavaScript (0)

HTTP Transactions (1)

URLIPResponseSize
s7.upfiles.download/2023/11/03/03/QdoCc9H91J6SlB4GJXQtqINrEQ78ANzXxTfAkwSJ.zip?name=Battle+Axe+Overlord+v1.27.zip&ip=35.187.132.231&md5=DZwy04hmmW0u8fdI2iKS9A&expires=1713991906
65.109.85.71200 OK921 kB