Report - member.ipmu.jp/yuji.tachikawa/spires/zips/spires

Report Overview

Submitted URL
member.ipmu.jp/yuji.tachikawa/spires/zips/spires_1.4.9.zip
IP
157.82.236.62
ASN
#2501 The University of Tokyo
Submitted
2024-04-18 11:40:01
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
member.ipmu.jp	731065	2007-11-04	2017-02-16	2023-05-20	512 B	744 kB	157.82.236.62

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
member.ipmu.jp/yuji.tachikawa/spires/zips/spires_1.4.9.zip
IP
157.82.236.62
ASN
#2501 The University of Tokyo

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
743 kB (743234 bytes)
Hash
52e67c51ef0f0325fc4121daa306db3a
b2f6c0b7a9357efb18f192edf28c64cbf9d56e52
041347d4023ee3c141aa139ce1584ed47e97bd921352173f392abb65c4586fad

Archive (81)

Filename

Md5

File type

CodeResources

7f967310ed24c905389499930372ee34

XML 1.0 document, ASCII text

Headers

86c63de7bd8775780ac77380b5c049c4

ASCII text, with no line terminators

Resources

e58c4cf10cc7c8ef7d7167ccb641aeb4

ASCII text, with no line terminators

Sparkle

078cd5564ff6fd5418ddc4d9179fca8c

ASCII text, with no line terminators

Sparkle.strings

c8310a6a61c3da7348afe30fc822121b

Unicode text, UTF-16, big-endian text, with very long lines (368)

classes.nib

fb99a49b19c34f97f77a81e5eecbb184

XML 1.0 document, ASCII text

info.nib

95c17a87b57873d9888a97231d0c18e1

XML 1.0 document, ASCII text

keyedobjects.nib

ee303bb6f990b556dcd84060df93c07f

Apple binary property list

classes.nib

c137beae670f04fa9f87968d627d2a23

XML 1.0 document, ASCII text

info.nib

cd718d7588fcdb442eb2f25edb0ffe6c

XML 1.0 document, ASCII text

keyedobjects.nib

9ec4d1f38e1016863838664f8a537cd6

Apple binary property list

classes.nib

b9c3d0c2670efd8f5e1fba7c969ab20f

XML 1.0 document, ASCII text

info.nib

c43fc1c5b5710ba09288aba30cc91e6f

XML 1.0 document, ASCII text

keyedobjects.nib

f68ea826bf866a9be1f213c4b6e2b520

Apple binary property list

Info.plist

13ffb6413a0fbc36342ccb6b6f1bfa40

XML 1.0 document, ASCII text

License.txt

29284fe742e0698808c766d3384bf6c1

ASCII text, with very long lines (460)

relaunch

a667fe69ff3182b7ecead62789869256

SUModelTranslation.plist

f1ea04fe15a18d331dd1cde62aee3953

XML 1.0 document, ASCII text

classes.nib

f549ec7c9d48cf0940b33c63feb55429

XML 1.0 document, ASCII text

info.nib

e36a13c27ce71939ad81e1e0a162618c

XML 1.0 document, ASCII text

keyedobjects.nib

6ceb5d9320a931354362b208b5240536

Apple binary property list

Sparkle

ee0fe60e7d3aa52c7dab1cfa79f81116

Current

7fc56270e7a70fa81a5935b72eacbe29

very short file (no magic)

Info.plist

bb10106fb65c08bbfd65479d0f9bbf67

XML 1.0 document, ASCII text

spires

11d9949739967faddc49358fa03fd2ff

Mach-O 64-bit x86_64 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL>

PkgInfo

23b7d7d024abb0f558420e098800bf27

ASCII text, with no line terminators

Acknowledgments.html

994bd5cebb1a5a127fc4620398219813

HTML document, ASCII text

ActivityMonitor.nib

9d7f404c6a1be2782a8abfe3bd2a76c3

Apple binary property list

arxiv.png

e3ef0e839b91cfc62599c24331f8a2f9

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

ArxivNewCreateSheet.nib

98a4bcd1d33f9915554f162c1bcef51e

Apple binary property list

arXivTeXifier.safariextz

a8dde99a55875ac97e15acb2a184a635

xar archive compressed TOC: 4107, SHA-1 checksum

BibView.nib

d71d417b47c5b92cc8a5208340eab301

Apple binary property list

blackOut.pdf

c417fc89216af5f730ba2bd2bac201e3

PDF document, version 1.3, 1 pages

ButtonBarPullDownArrow.pdf

a3e21e098edbc5fba4bd2bf689f8192b

PDF document, version 1.7, 1 pages

canned-search.png

8697f1b1e03650a9b77b375dc4e5602f

PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced

defaults.plist

75126d66ef985ad75f38df46378c49c2

XML 1.0 document, ASCII text

drop.png

ceeb19004e55c8c49e3f93dde6aafa95

PNG image data, 91 x 91, 8-bit/color RGBA, non-interlaced

dsa_pub.pem

c491fa208a0ff99498dedfd2592a55fa

ASCII text

InfoPlist.strings

e39ae9c9f0e9293a7c68c7d1e15d18ae

Unicode text, UTF-16, little-endian text

MainMenu.nib

3e70b3d3701825b6312bf85b16312090

Apple binary property list

flagged.png

5325ddf732780e2dd3eefbb0e9318160

PNG image data, 85 x 85, 8-bit/color RGBA, non-interlaced

hasPDF.png

835db1891a523476374e2f8a8a5635b2

PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced

Localizable.strings

80144a694cf0ce44f73e9bc39be9bd1d

Unicode text, UTF-16, little-endian text

magicRegExps.perl

8a92c6fedaa882eb8999ed6d97b9fd2b

Perl script text executable

marc2spires.xsl

4071d975cf6eaf62d26582afdc960d7c

XML 1.0 document, ASCII text

MessageViewer.nib

ec5df2d212a66dfda81a743bafe345db

Apple binary property list

MigrationProgress.nib

4f7df1f7a508b49cd78dc6af9bc1ea3e

Apple binary property list

parseTeXandEmitPlist.perl

5ae34ab8022034950935117b06498410

Perl script text executable

pdfScanHelper

55f7c09e7cebbd6c3716c472a730b5ff

Mach-O 64-bit x86_64 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|PIE>

PrefPane.nib

40f49f6b219f425b6b8116eebe3b22a7

Apple binary property list

Release Notes.html

4f4fdf182844599d0fe3cd9210079310

HTML document, ASCII text

Requests.html

23cd8515b623151e0edabbe0c4e6a6a5

HTML document, Unicode text, UTF-8 text

SnowLeopardAlert.rtf

ad6d98d65c8ac96942e5f425854eb20a

Rich Text Format data, version 1, ANSI, code page 932

spires-blue.png

8578a1869ee3ba0c048d73995aa7c026

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

spires-red.png

bed8ddb7de2b396b4e3983053971ed96

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

spires.icns

499cdb8df675b16b7cc88ffba45a755d

Mac OS X icon, 90832 bytes, "is32" type

spires.sdef

2f11eac3255608d2f4766635f03fdd51

XML 1.0 document, ASCII text

spires_DataModel 2.mom

d16b33ea32ab4a30a3d0fdf5eebed734

Apple binary property list

spires_DataModel 3.mom

b76a39939982bfacf4cf2184da84770a

Apple binary property list

spires_DataModel 4.mom

6c96a832179780fff16db77a659f52f7

Apple binary property list

spires_DataModel 5.mom

9739baa349895b4835529553f22bde9f

Apple binary property list

spires_DataModel 6.mom

2d2fffc971553a663cb5b0cf48fca0b4

Apple binary property list

spires_DataModel 6.omo

183436c85c32d1f5284cfdfdf690e5d7

data

spires_DataModel.mom

d1f77657c523c9d824581493c63569c9

Apple binary property list

VersionInfo.plist

455a453e878fa177fadb97602d5feab4

XML 1.0 document, ASCII text

SpiresRelaunchHelper

d093dcf48c8f92729baa8a586dcfeaac

Mach-O 64-bit x86_64 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|PIE>

template.html

5fedd74dc26eeddba321b723c1bac404

HTML document, ASCII text

tex.js

866b06c8545ba88412026d2705df8b69

Unicode text, UTF-8 text

TeXWatcher.nib

bab3db2933b5082b75fc02886f90d9c1

Apple binary property list

unread.png

130ce0a88eb58d2bde54f74577d7df9b

PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced

v1-v2.cdm

bf6ba9596395e839711823ac4950efed

Apple binary property list

v1.3alert.rtf

7f1a0a7aae6f63b8e78f0a7f555680a4

Rich Text Format data, version 1, ANSI, code page 932

v1.4.4alert.rtf

35847f8f54740342ffd3fa5e55d10471

Rich Text Format data, version 1, ANSI, code page 932

v1.4alert.rtf

959c4774a0db932bb390425a99389122

Rich Text Format data, version 1, ANSI, code page 932

v2-v3.cdm

2f6cd57cb839d3a036cb4904adae3a10

Apple binary property list

v3-v4.cdm

25bae09f674f7f3887a3be056cc5cdfd

Apple binary property list

v4-v5.cdm

225ee72672d8e4ef1e8fd0d3b901d18b

Apple binary property list

v5-v6.cdm

83139cf7fa0aa0e52ad21a71ffe0abaa

Apple binary property list

whiteIn.pdf

f39471fc051b4824ff0ff6ae7fb72dd4

PDF document, version 1.3, 1 pages

whiteOut.pdf

588cbaa67435cc5ad2cbcd11f8a86d86

PDF document, version 1.3, 1 pages

wwwrefsbibtex2xmlpublic.perl

1bc09e8f36a647ede480aa0d9979dcff

Perl script text executable

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_get_eip

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	member.ipmu.jp/yuji.tachikawa/spires/zips/spires_1.4.9.zip	157.82.236.62	200 OK	743 kB
URL User Request GET HTTP/1.1 member.ipmu.jp/yuji.tachikawa/spires/zips/spires_1.4.9.zip IP 157.82.236.62:443 ASN #2501 The University of Tokyo Certificate IssuerSECOM Trust Systems CO.,LTD. Subjectmember.ipmu.jp Fingerprint5B:E0:C7:08:21:01:9F:F5:02:22:CC:73:A6:69:76:47:E8:67:61:44 ValidityMon, 01 May 2023 23:58:16 GMT - Fri, 31 May 2024 23:58:16 GMT File type Zip archive data, at least v1.0 to extract, compression method=store Size 743 kB (743234 bytes) Hash 52e67c51ef0f0325fc4121daa306db3a b2f6c0b7a9357efb18f192edf28c64cbf9d56e52 041347d4023ee3c141aa139ce1584ed47e97bd921352173f392abb65c4586fad HTTP Headers `GET /yuji.tachikawa/spires/zips/spires_1.4.9.zip HTTP/1.1 Host: member.ipmu.jp User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Thu, 18 Apr 2024 11:39:35 GMT Server: Apache Strict-Transport-Security: max-age=63072000 Last-Modified: Fri, 10 Feb 2017 14:23:00 GMT ETag: "b5742-5482dd5b9b900" Accept-Ranges: bytes Content-Length: 743234 X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/zip`

member.ipmu.jp/yuji.tachikawa/spires/zips/spires_1.4.9.zip

157.82.236.62

200 OK

743 kB

URL User Request GET HTTP/1.1
member.ipmu.jp/yuji.tachikawa/spires/zips/spires_1.4.9.zip
IP
157.82.236.62:443
ASN
#2501 The University of Tokyo

Certificate
IssuerSECOM Trust Systems CO.,LTD.
Subjectmember.ipmu.jp
Fingerprint5B:E0:C7:08:21:01:9F:F5:02:22:CC:73:A6:69:76:47:E8:67:61:44
ValidityMon, 01 May 2023 23:58:16 GMT - Fri, 31 May 2024 23:58:16 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
743 kB (743234 bytes)
Hash
52e67c51ef0f0325fc4121daa306db3a
b2f6c0b7a9357efb18f192edf28c64cbf9d56e52
041347d4023ee3c141aa139ce1584ed47e97bd921352173f392abb65c4586fad

HTTP Headers

GET /yuji.tachikawa/spires/zips/spires_1.4.9.zip HTTP/1.1
Host: member.ipmu.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 11:39:35 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000
Last-Modified: Fri, 10 Feb 2017 14:23:00 GMT
ETag: "b5742-5482dd5b9b900"
Accept-Ranges: bytes
Content-Length: 743234
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/zip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (81)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers