Report - cdn.gilcdn.com/ContentMediaGenericFiles/695fdfbe3145bed2084bd3e307464cf7-Full.zip?w=1&h=1&Expires=1712603639&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4uZ2lsY2RuLmNvbS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjo

Report Overview

Submitted URL
cdn.gilcdn.com/ContentMediaGenericFiles/695fdfbe3145bed2084bd3e307464cf7-Full.zip?w=1&h=1&Expires=1712603639&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4uZ2lsY2RuLmNvbS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjo
IP
54.230.111.49
ASN
#16509 AMAZON-02
Submitted
2024-04-26 11:21:23
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.gilcdn.com	unknown	2023-12-13	2023-12-15	2024-04-21	701 B	12 MB	54.230.111.31

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
cdn.gilcdn.com/ContentMediaGenericFiles/695fdfbe3145bed2084bd3e307464cf7-Full.zip?w=1&h=1&Expires=1712603639&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4uZ2lsY2RuLmNvbS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjo
IP
54.230.111.31
ASN
#16509 AMAZON-02

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
12 MB (12341990 bytes)
Hash
695fdfbe3145bed2084bd3e307464cf7
de03ee357d7c5808df77d72b8e0540cfaef8f498
1d59a50cf9bae0eb68df83aef603f6f48d70e0eb4ee4c7b52e9930fc3cbbfcd1

Archive (16)

Filename

Md5

File type

Dropbox.Api.dll

10d9f85460f0c830092fd2da26429644

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

edgerunnermix.mp3

16bafc787b67cb6d39625e84845880fc

Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 320 kbps, 44.1 kHz, Stereo

Google.Apis.Auth.dll

dbbb17ea987b7d3b575f5ee51222d573

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Google.Apis.Auth.PlatformServices.dll

d90f0dfed51fabc461d945d07f95df93

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Google.Apis.Core.dll

5ad3230cb7986b0822f6638b2244bdef

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Google.Apis.dll

af4c87d41e48b85123d39e88225a6f66

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Google.Apis.Drive.v3.dll

1cdc6efcf27d6fd9822073fe78d6d0de

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

ICSharpCode.SharpZipLib.dll

cfbff4b71f423967464b91b60ee51855

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

M3D-Launcher.deps.json

b4ce75a009b3cffe7ced714197dc73b6

JSON text data

M3D-Launcher.dll

815582dadacef9447fae3c30f3659cc3

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

M3D-Launcher.exe

f48287984d190f3e35b6b7211fab39d5

PE32+ executable (GUI) x86-64, for MS Windows, 7 sections

M3D-Launcher.runtimeconfig.json

d94cf983fba9ab1bb8a6cb3ad4a48f50

JSON text data

MHLab.Patch.Core.Client.Advanced.dll

232ce756d9c086219121361cb05c8b43

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

MHLab.Patch.Core.Client.dll

685aa2f1d4860ec293849589065b9bde

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

MHLab.Patch.Core.dll

42b0be88639da37b5e2946d6122ab82b

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Newtonsoft.Json.dll

916d32b899f1bc23b209648d007b99fd

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	cdn.gilcdn.com/ContentMediaGenericFiles/695fdfbe3145bed2084bd3e307464cf7-Full.zip?w=1&h=1&Expires=1712603639&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4uZ2lsY2RuLmNvbS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjo	54.230.111.31	200 OK	12 MB
URL User Request GET HTTP/2 cdn.gilcdn.com/ContentMediaGenericFiles/695fdfbe3145bed2084bd3e307464cf7-Full.zip?w=1&h=1&Expires=1712603639&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4uZ2lsY2RuLmNvbS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjo IP 54.230.111.31:443 ASN #16509 AMAZON-02 Certificate IssuerAmazon Subject.gilcdn.com FingerprintB6:3B:AA:24:2D:F6:F2:2D:66:81:B5:0E:46:3F:D8:31:FD:D4:75:49 ValidityThu, 14 Dec 2023 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT File type Zip archive data, at least v1.0 to extract, compression method=store Size 12 MB (12341990 bytes) Hash 695fdfbe3145bed2084bd3e307464cf7 de03ee357d7c5808df77d72b8e0540cfaef8f498 1d59a50cf9bae0eb68df83aef603f6f48d70e0eb4ee4c7b52e9930fc3cbbfcd1 HTTP Headers GET /ContentMediaGenericFiles/695fdfbe3145bed2084bd3e307464cf7-Full.zip?w=1&h=1&Expires=1712603639&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4uZ2lsY2RuLmNvbS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjo HTTP/1.1 Host: cdn.gilcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: application/x-zip-compressed content-length: 12341990 date: Mon, 01 Apr 2024 16:24:16 GMT last-modified: Tue, 26 Mar 2024 17:01:02 GMT etag: "695fdfbe3145bed2084bd3e307464cf7" x-amz-storage-class: INTELLIGENT_TIERING x-amz-server-side-encryption: AES256 cache-control: public,max-age=31536000,immutable content-disposition: attachment; filename=Match3D-Launcher_1.zip x-amz-meta-json: eyJ1cGxvYWRlZEJ5IjoyNzQ5OTM1OCwid2lkdGgiOjEsImhlaWdodCI6MSwiY3JlYXRlZEF0IjoxNzExNDcyNDYxMTY3LCJjb250ZW50VmVyc2lvbiI6MX0= x-amz-version-id: W6Y6OX2nzingfFlNM533rgE8sW5FSAT6 accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: 2bEmMIfRDhfmCzqT1d8yiTDido3foarb4w6p-fYEY7oiTA8Ss6-WHA== age: 2141799 vary: Origin X-Firefox-Spdy: h2

cdn.gilcdn.com/ContentMediaGenericFiles/695fdfbe3145bed2084bd3e307464cf7-Full.zip?w=1&h=1&Expires=1712603639&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4uZ2lsY2RuLmNvbS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjo

54.230.111.31

200 OK

12 MB

URL User Request GET HTTP/2
cdn.gilcdn.com/ContentMediaGenericFiles/695fdfbe3145bed2084bd3e307464cf7-Full.zip?w=1&h=1&Expires=1712603639&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4uZ2lsY2RuLmNvbS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjo
IP
54.230.111.31:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subject*.gilcdn.com
FingerprintB6:3B:AA:24:2D:F6:F2:2D:66:81:B5:0E:46:3F:D8:31:FD:D4:75:49
ValidityThu, 14 Dec 2023 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
12 MB (12341990 bytes)
Hash
695fdfbe3145bed2084bd3e307464cf7
de03ee357d7c5808df77d72b8e0540cfaef8f498
1d59a50cf9bae0eb68df83aef603f6f48d70e0eb4ee4c7b52e9930fc3cbbfcd1

HTTP Headers

GET /ContentMediaGenericFiles/695fdfbe3145bed2084bd3e307464cf7-Full.zip?w=1&h=1&Expires=1712603639&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4uZ2lsY2RuLmNvbS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjo HTTP/1.1
Host: cdn.gilcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/x-zip-compressed
content-length: 12341990
date: Mon, 01 Apr 2024 16:24:16 GMT
last-modified: Tue, 26 Mar 2024 17:01:02 GMT
etag: "695fdfbe3145bed2084bd3e307464cf7"
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000,immutable
content-disposition: attachment; filename=Match3D-Launcher_1.zip
x-amz-meta-json: eyJ1cGxvYWRlZEJ5IjoyNzQ5OTM1OCwid2lkdGgiOjEsImhlaWdodCI6MSwiY3JlYXRlZEF0IjoxNzExNDcyNDYxMTY3LCJjb250ZW50VmVyc2lvbiI6MX0=
x-amz-version-id: W6Y6OX2nzingfFlNM533rgE8sW5FSAT6
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 2bEmMIfRDhfmCzqT1d8yiTDido3foarb4w6p-fYEY7oiTA8Ss6-WHA==
age: 2141799
vary: Origin
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (16)

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers