Report - cdn.discordapp.com/attachments/1221081468663627797/1221082325031583785/RedTiger-Tools-main.zip?ex=662a5508&is=66290388&hm=0fc2fa6776909272f2ab699c5a0b3bb5c3924ee785ec001f41c4a3ff29c74a8a&

Report Overview

Submitted URL
cdn.discordapp.com/attachments/1221081468663627797/1221082325031583785/RedTiger-Tools-main.zip?ex=662a5508&is=66290388&hm=0fc2fa6776909272f2ab699c5a0b3bb5c3924ee785ec001f41c4a3ff29c74a8a&
IP
162.159.134.233
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-24 20:54:32
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.discordapp.com	2474	2015-02-26	2015-08-24	2024-04-23	641 B	9.0 MB	162.159.130.233

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
cdn.discordapp.com/attachments/1221081468663627797/1221082325031583785/RedTiger-Tools-main.zip?ex=662a5508&is=66290388&hm=0fc2fa6776909272f2ab699c5a0b3bb5c3924ee785ec001f41c4a3ff29c74a8a&
IP
162.159.130.233
ASN
#13335 CLOUDFLARENET

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
9.0 MB (9027353 bytes)
Hash
2e294500efebd5d16ec0c3b03860f68b
141b365788c7587207206ba091e8e7f67131f99d
4984d189cb5777bc0ac659e1950d4047cab27b131534b6e3bb782f8341c6c306

Archive (66)

Modified	Filename	Size	Md5	File type
2024-03-23 02:51	BuilderStealer.txt	0 B	d41d8cd98f00b204e9800998ecf8427e
2024-03-23 02:51	DoxCreate.txt	0 B	d41d8cd98f00b204e9800998ecf8427e
2024-03-23 02:51	msedgedriver.exe	17 MB	5e5b972037c099a6a953ea04998cab80	PE32+ executable (console) x86-64, for MS Windows, 12 sections
2024-03-23 02:51	Grab_Browser.png	21 kB	c471776f62aa4fad857a606b6cad0a2a	PNG image data, 449 x 306, 8-bit/color RGBA, non-interlaced
2024-03-23 02:51	Grab_Discord.png	28 kB	1ee4276e74828fba439379b881689336	PNG image data, 529 x 618, 8-bit/color RGBA, non-interlaced
2024-03-23 02:51	Grab_Roblox.png	21 kB	789a257e33348bcace9c0df9f3154498	PNG image data, 531 x 888, 8-bit/color RGBA, non-interlaced
2024-03-23 02:51	Grab_Screenshot.png	50 kB	0523aebba393ed1f901e8ad9958c8007	PNG image data, 445 x 365, 8-bit/color RGBA, non-interlaced
2024-03-23 02:51	Grab_System.png	36 kB	85e161fe0c425cc505d9d1460dc6eeca	PNG image data, 528 x 894, 8-bit/color RGBA, non-interlaced
2024-03-23 02:51	Info_Ip.png	16 kB	3c8deb30da9150f7bdef0c4b3f71fb05	PNG image data, 537 x 315, 8-bit/color RGBA, non-interlaced
2024-03-23 02:51	Info_Number.png	8.8 kB	696612f5459500e96890e96940ebad4d	PNG image data, 333 x 225, 8-bit/color RGBA, non-interlaced
2024-03-23 02:51	Info_Token.png	18 kB	e434ace1a0d2eace96f3d190f105abfa	PNG image data, 961 x 314, 8-bit/color RGBA, non-interlaced
2024-03-23 02:51	Info_Webhook.png	24 kB	3da75ebdd6cee0b7c0975b07e638e5e1	PNG image data, 769 x 445, 8-bit/color RGBA, non-interlaced
2024-03-23 02:51	RedTiger.png	62 kB	795e09402b7917a414d872d33ff70455	PNG image data, 1109 x 585, 8-bit/color RGBA, non-interlaced
2024-03-23 02:51	RedTiger_Icon.ico	268 kB	849fec752e22be52e1c27de0a7c23d47	MS Windows icon resource - 1 icon, 256x-2, 32 bits/pixel
2024-03-23 02:51	Starred.png	5.3 kB	d7b9f5ffceda2a6e06749ca6fd0ec12b	PNG image data, 547 x 60, 8-bit/color RGBA, non-interlaced
2024-03-23 02:51	README.md	4.1 kB	93e0256fc6af640861f96d7640abda14	HTML document, Unicode text, UTF-8 text
2024-03-23 02:51	Builder-Stealer.py	64 kB	e6e9cb2a74cb8a1cd7ce516ab3977d21	Python script, Unicode text, UTF-8 text executable
2024-03-23 02:51	Config.py	425 B	c9db5e4901374318bc3ac1a2199e0a88	ASCII text
2024-03-23 02:51	Page.txt	1 B	c4ca4238a0b923820dcc509a6f75849b	very short file (no magic)
2024-03-23 02:51	Util.py	2.6 kB	e2a8e6ad5eb8245a5a2ff18a0ae326a9	Python script, ASCII text executable
2024-03-23 02:51	Config.cpython-310.pyc	2.6 kB	7f57f8c2085a411602e1ce776ea0618d	Byte-compiled Python module for CPython 3.10, timestamp-based, .py timestamp: Thu Mar 7 17:53:09 2024 UTC, .py size: 1815 bytes
2024-03-23 02:51	Config.cpython-312.pyc	699 B	62ec0d6ba9b8f4ea8c4caf89f5dba190	Byte-compiled Python module for CPython 3.12 or newer, timestamp-based, .py timestamp: Sat Mar 23 09:41:26 2024 UTC, .py size: 425 bytes
2024-03-23 02:51	Options.cpython-310.pyc	2.4 kB	e76c6c4c5eb8356d3181eee9299fa452	Byte-compiled Python module for CPython 3.10, timestamp-based, .py timestamp: Wed Mar 6 22:24:45 2024 UTC, .py size: 1655 bytes
2024-03-23 02:51	Options.cpython-312.pyc	3.9 kB	9247538a52d3fb372793cec3042ec8dd	Byte-compiled Python module for CPython 3.12 or newer, timestamp-based, .py timestamp: Wed Mar 6 22:24:45 2024 UTC, .py size: 1655 bytes
2024-03-23 02:51	Settings.cpython-312.pyc	415 B	53ddf87decff62ab7fcd6fdd4de79962	Byte-compiled Python module for CPython 3.12 or newer, timestamp-based, .py timestamp: Wed Dec 13 19:43:45 2023 UTC, .py size: 101 bytes
2024-03-23 02:51	ThemeCouleur.cpython-312.pyc	533 B	2bd26238ad035c6403414519be802b8e	Byte-compiled Python module for CPython 3.12 or newer, timestamp-based, .py timestamp: Wed Dec 13 20:02:21 2023 UTC, .py size: 190 bytes
2024-03-23 02:51	Util.cpython-312.pyc	6.5 kB	d033bb4eba245e85b9557b732ebbe259	Byte-compiled Python module for CPython 3.12 or newer, timestamp-based, .py timestamp: Sat Mar 23 09:11:16 2024 UTC, .py size: 2720 bytes
2024-03-23 02:51	Discord-Bot-Invite-To-Id.py	599 B	4225d4455328923d032e66e134566e0c	Python script, ASCII text executable
2024-03-23 02:51	Discord-Bot-Server-Nuker.py	7.6 kB	662f3fc0775eda8e9a708d69418dbca9	Python script, Unicode text, UTF-8 text executable
2024-03-23 02:51	Discord-Nitro-Generator.py	4.0 kB	291d4d78fb8d781edf2e1e8cdebfb51f	Python script, ASCII text executable
2024-03-23 02:51	Discord-Server-Info.py	5.2 kB	98dc23b54e7bc9f377b6ecd599f21534	Python script, ASCII text executable
2024-03-23 02:51	Discord-Token-Generator.py	2.7 kB	a9e0a01924a9026dee30056b0638992e	Python script, ASCII text executable
2024-03-23 02:51	Discord-Token-House-Changer.py	1.4 kB	cc7a7e9cf23f535d3548de7934ed9300	Python script, ASCII text executable
2024-03-23 02:51	Discord-Token-Info.py	4.5 kB	96e342368d3b5a5e9e1b9a239540db21	Python script, ASCII text executable
2024-03-23 02:51	Discord-Token-Joiner.py	1.3 kB	a27b72b83b37a17582597209a4910a61	Python script, ASCII text executable
2024-03-23 02:51	Discord-Token-Language-Changer.py	1.1 kB	c4f7953d588ab0ec5506d01c6c29c71d	Python script, ASCII text executable
2024-03-23 02:51	Discord-Token-Login.py	2.1 kB	c3d8a250df46b6634c32ab6c72890635	Python script, ASCII text executable
2024-03-23 02:51	Discord-Token-Mass-Dm.py	1.8 kB	2af8917be7849228a241a71bff779906	Python script, Unicode text, UTF-8 text executable
2024-03-23 02:51	Discord-Token-Nuker.py	2.8 kB	bd11ee0f128e2f62953d2f7cd809ec6a	Python script, ASCII text executable
2024-03-23 02:51	Discord-Token-Spammer.py	935 B	055008f21bccc26f4bfaf2824c848def	Python script, ASCII text executable
2024-03-23 02:51	Discord-Token-Status-Changer.py	1.4 kB	2aabee43c4480712b23f15dfd13463c2	Python script, ASCII text executable
2024-03-23 02:51	Discord-Token-Theme-Changer.py	1.1 kB	5900196f446e466db5904bd5396cd8b0	Python script, ASCII text executable
2024-03-23 02:51	Discord-Token-To-Id.py	1.8 kB	ce9f137f11d31eb3ea63f0b1d22de5f7	Python script, ASCII text executable
2024-03-23 02:51	Discord-Webhook-Delete.py	360 B	e4f1283ac78b7734573689e4c0c0e9bf	Python script, ASCII text executable
2024-03-23 02:51	Discord-Webhook-Generator.py	2.5 kB	102b83c6d801e89b7d740c40f243a15c	Python script, ASCII text executable
2024-03-23 02:51	Discord-Webhook-Info.py	3.0 kB	e5054678cd41aca48b629901da8c22ee	Python script, ASCII text executable
2024-03-23 02:51	Discord-Webhook-Spammer.py	1.5 kB	8c561c88964aeed9e1caf06cfc776ccd	Python script, Unicode text, UTF-8 text executable
2024-03-23 02:51	Dox-Create.py	5.4 kB	aed2b02188fc2b29dd874b929f8cf5c4	Python script, Unicode text, UTF-8 text executable
2024-03-23 02:51	Dox-Tracker.py	4.7 kB	78e00ca64979a0264ab2aaade115f7f8	Python script, ASCII text executable
2024-03-23 02:51	Illegal-Website.py	5.6 kB	6140d4ce1e49c130bae72aacc8586868	Python script, Unicode text, UTF-8 text executable
2024-03-23 02:51	Ip-Generator.py	2.9 kB	a28f3fe15d0b46aa41449984a78030ad	Python script, Unicode text, UTF-8 text executable
2024-03-23 02:51	Ip-Info.py	2.6 kB	2d7006387ee66f46fd0650684539dc15	Python script, ASCII text executable
2024-03-23 02:51	Ip-Pinger.py	1.5 kB	c744dd491096ba2905d141ffe1b94f11	Python script, ASCII text executable
2024-03-23 02:51	Number-Info.py	2.5 kB	e446016aac5c9938f54175476825d87c	Python script, ASCII text executable
2024-03-23 02:51	Roblox-Cookie-Info.py	1.8 kB	8d76772979d59a68744c2bd7d7d0ab08	Python script, ASCII text executable
2024-03-23 02:51	Roblox-Cookie-Login.py	1.9 kB	4204087d1cb0e55eaa895d21db8e7907	Python script, ASCII text executable
2024-03-23 02:51	Tool-Info.py	570 B	2e8699cdff487ef87ac1d65a15e11f78	Python script, ASCII text executable
2024-03-23 02:51	Web-Site.py	1.1 kB	8d7515a768708cd13f20378d7f38d20d	Python script, ASCII text executable
2024-03-23 02:51	Youtube-Downloader.py	1.8 kB	83f1c06ef1b0fc123bd419ce8702a7b0	Python script, ASCII text executable
2024-03-23 02:51	Info.cpython-312.pyc	3.0 kB	914e18fd017db6b9182505ec7f868f5b	Byte-compiled Python module for CPython 3.12 or newer, timestamp-based, .py timestamp: Wed Dec 6 18:09:13 2023 UTC, .py size: 1471 bytes
2024-03-23 02:51	__init__.cpython-312.pyc	163 B	6353143389b8500896e240486ac6d330	Byte-compiled Python module for CPython 3.12 or newer, timestamp-based, .py timestamp: Wed Dec 6 17:57:53 2023 UTC, .py size: 0 bytes
2024-03-23 02:51	Setup-Builder.bat	297 B	e0c3d9712a85ae783006034fa7eeb783	ASCII text
2024-03-23 02:51	Start.py	15 kB	46e1868081f91cdf432fdf98d82057f3	Python script, Unicode text, UTF-8 text executable
2024-03-23 02:51	Setup.bat	643 B	66cbcb880b1a9bbabd546e404b403170	ASCII text
2024-03-23 02:51	Start.bat	24 B	386cb16fcae00536c5a5aa73bf9608f9	ASCII text, with no line terminators
2024-03-23 02:51	TO READ.txt	1.8 kB	47d1c29ef8a37adf8622b1604d45d448	Unicode text, UTF-8 text

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 9/66

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

cdn.discordapp.com/attachments/1221081468663627797/1221082325031583785/RedTiger-Tools-main.zip?ex=662a5508&is=66290388&hm=0fc2fa6776909272f2ab699c5a0b3bb5c3924ee785ec001f41c4a3ff29c74a8a&

162.159.130.233

200 OK

9.0 MB

URL User Request GET HTTP/2
cdn.discordapp.com/attachments/1221081468663627797/1221082325031583785/RedTiger-Tools-main.zip?ex=662a5508&is=66290388&hm=0fc2fa6776909272f2ab699c5a0b3bb5c3924ee785ec001f41c4a3ff29c74a8a&
IP
162.159.130.233:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectdiscordapp.com
Fingerprint97:8B:EE:AD:1E:BF:A1:69:E7:94:29:F7:55:7A:29:64:19:C7:81:39
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
9.0 MB (9027353 bytes)
Hash
2e294500efebd5d16ec0c3b03860f68b
141b365788c7587207206ba091e8e7f67131f99d
4984d189cb5777bc0ac659e1950d4047cab27b131534b6e3bb782f8341c6c306

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 9/66

HTTP Headers

GET /attachments/1221081468663627797/1221082325031583785/RedTiger-Tools-main.zip?ex=662a5508&is=66290388&hm=0fc2fa6776909272f2ab699c5a0b3bb5c3924ee785ec001f41c4a3ff29c74a8a& HTTP/1.1
Host: cdn.discordapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:54:03 GMT
content-type: application/zip
content-length: 9027353
cf-ray: 8798fc7c3bae0b65-OSL
cf-cache-status: MISS
accept-ranges: bytes, bytes
cache-control: public, max-age=31536000
content-disposition: attachment; filename="RedTiger-Tools-main.zip"
etag: "2e294500efebd5d16ec0c3b03860f68b"
expires: Thu, 24 Apr 2025 20:54:03 GMT
last-modified: Sat, 23 Mar 2024 13:05:12 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-goog-generation: 1711199112968702
x-goog-hash: crc32c=y7ThQw==, md5=LilFAO/r1dFuwMOwOGD2iw==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9027353
x-guploader-uploadid: ABPtcPoO_oBtRHch7pLQeCCZR7gLK1vcusbMwcoGz1ydWoi0bIG5q5E6U79VNQQ77HrWA5XS5jTvGwKPHQ
x-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=De1V%2FseOOZsB%2F8YTbSntWWYYKGEkVMV3ah3Ewhw44%2BAKOOG5Hoy2GYOahmFiJt3xJEG2nG2ZWDVYifE7kL%2BCW91PlsTSrzCUvnBck9bDclJb4weDqKnyeaqiGWpV3lHd3alL7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: __cf_bm=Um.Peepj.A3E4BbzdlisYmyin0U5yb9uMXXJ44_p0LA-1713992043-1.0.1.1-kBlG4i0TUPhtVffOMS8bu2vkUCz..l37_tkJQ3vyGrfEdlwnC2E_4BUEYilTZZIkhM97vPdpjpzhleeX6j0pZA; path=/; expires=Wed, 24-Apr-24 21:24:03 GMT; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
_cfuvid=A_hAZrjaGeCV5R1T8Ts7wDFAH2ALB3P0JFzbAG3mroc-1713992043423-0.0.1.1-604800000; path=/; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (66)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers