Report Overview
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
45.95.168.50 | unknown | unknown | 2022-07-18 | 2024-04-11 | 396 B | 764 kB | 45.95.168.50 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Timestamp | Severity | Source IP | Destination IP | Alert |
---|---|---|---|---|
2024-04-18 11:10:17 | medium | Client IP | 45.95.168.50 |
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
Scan Date | Severity | Indicator | Alert |
---|---|---|---|
2024-04-18 | medium | 45.95.168.50 | Sinkholed |
ThreatFox
No alerts detected
Files detected
URL
45.95.168.50/patch1757.zip
IP
45.95.168.50
ASN
#211619 MAXKO d.o.o.
File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
763 kB (763271 bytes)
Hash
327c9d4237b446857fcf82471ff1a712
e0280625bd4ae72da8979f1513abf6c95ae0a407
Archive (11)
Filename | Md5 | File type | ||||||
---|---|---|---|---|---|---|---|---|
maxko.dll | 7d8b3fd42e0df08eec86f73a3caba8b3
| PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections | ||||||
Server.ini | b215ec07d3965c44247a4e3bf40ab912 | Windows setup INFormation | ||||||
Item_Ext_0_us.tbl | 3add7b62390c78522752570a4ea8b302 | data | ||||||
Item_Ext_10_us.tbl | d505422e0dbe56dc4074547f3ea27246 | data | ||||||
Item_Ext_12_us.tbl | ee4905c69ecf89fdca50c857d884abb5 | data | ||||||
Item_Ext_13_us.tbl | 0484ee849b09a1c1ebe8d11d369632dd | data | ||||||
Item_Ext_1_us.tbl | faff9a973cd8b304e7eef4d1a93ba307 | data | ||||||
Item_Ext_23_us.tbl | b87baed12b7f4dce9e62ee4e40b1e16a | data | ||||||
Item_Ext_2_us.tbl | bcc8cd5d2d2bf2e019b15a5b97c31f60 | data | ||||||
Item_Ext_5_us.tbl | 906b4450df5291e750d7b523d21b56b4 | data | ||||||
item_org_us.tbl | f9b1b7c4292f9d81e081164df30c0c13 | data |
Detections
Analyzer | Verdict | Alert |
---|---|---|
YARAhub by abuse.ch | malware | files - file ~tmp01925d3f.exe |
JavaScript (0)
No Javascripts found
No Javascripts found
No Javascripts found
HTTP Transactions (1)
URL | IP | Response | Size | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
45.95.168.50/patch1757.zip | 45.95.168.50 | 763 kB | ||||||||||||||
Detections
HTTP Headers
| ||||||||||||||||