Report - github.com/stefanwatermann/DOSBoxLauncher/releases/download/v1.2.2/DOSBoxLauncher.Windows.zip

Report Overview

Submitted URL
github.com/stefanwatermann/DOSBoxLauncher/releases/download/v1.2.2/DOSBoxLauncher.Windows.zip
IP
140.82.121.3
ASN
#36459 GITHUB
Submitted
2024-04-24 11:30:15
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
github.com	1423	2007-10-09	2016-07-13	2024-03-24	547 B	4.0 kB	140.82.121.3
objects.githubusercontent.com	134060	2014-02-06	2021-11-01	2024-04-24	1.0 kB	16 MB	185.199.109.133

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
objects.githubusercontent.com/github-production-release-asset-2e65be/419632972/aa60dc87-6c0c-472a-8ed4-b61fbae27108?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T112941Z&X-Amz-Expires=300&X-Amz-Signature=89b6ba7cfc4f9903ef0eede2890a622e18bcbad53758debce99dde0e8e8084a9&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=419632972&response-content-disposition=attachment%3B%20filename%3DDOSBoxLauncher.Windows.zip&response-content-type=application%2Foctet-stream
IP
185.199.109.133
ASN
#54113 FASTLY

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
16 MB (16526556 bytes)
Hash
ad426c8e27180cf455e2882c8e0b54f4
72bd9124b9da387da65e48c528a750f0340363a3
94b0df0ddcc35301516bd2a565d937ba704ea45658ec06d44037315f7d58fcee

Archive (48)

Filename

Md5

File type

DOSBoxLauncher.exe

218a50e422f83a297c492b08c4384b17

PE32 executable (GUI) Intel 80386, for MS Windows, 6 sections

icoEdit_white@2x.png

8a0ff4d2fe591f612e38bd804514685e

PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced

icoOptions_black@2x.png

3565b21c36d82e58c0d44faa4c464937

PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced

icoNew_black@2x.png

e125a140a0e32056a32424e7e97db3a3

PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced

icoDelete_black.png

883174529e94e71b93acd3af6e9dab3f

PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced

icoPlay_white.png

e6f9c85d296b92afba475835331c34f4

PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced

icoOptions_black.png

c6d044d167298b9463578a129e724eef

PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced

icoEdit_black.png

0f07e519cba01021e481c0f36738bbea

PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced

imgSwitch.png

c334d4288d228134a00b31c95d0cf0d9

PNG image data, 32 x 16, 8-bit/color RGBA, non-interlaced

icoPlay_black@2x.png

640d0a20644ac122d03fd14e3393c1ce

PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced

icoNew_white.png

ee590c016ae464bf5f111c0dad6c739d

PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced

dosboxlauncher.db

6226e06320f6270a6ac696e8563315f1

SQLite 3.x database, last written using SQLite version 3034001, file counter 27, database pages 4, 1st free page 4, free pages 1, cookie 0x23, schema 4, UTF-8, version-valid-for 27

._dosboxlauncher.db

a3e28d841c83cb12dc0bbbf431eb9a44

AppleDouble encoded Macintosh file

icoDelete_white@2x.png

e93792443796d2eaab7142509028bcf6

PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced

icoOptions_white@2x.png

b618c29d4452fd9a10383cc8aa0ac4b4

PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced

icoEdit_black@2x.png

ad4a4e06767d13d8f29861e84584d3e8

PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced

en.mo

c55b0b2873992980a3d217fa1af6ccd7

GNU message catalog (little endian), revision 0.0, 239 messages, Configure and run DOSBox apps/games using the installed DOSBox app. '&File'

icoDelete_white.png

ed2cafe25ab7de764d2c1cbbbf1d17bf

PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced

icoNew_white@2x.png

3c5e72f26a5b0b5043d972c1746b7114

PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced

icoPlay_black.png

e6f9c85d296b92afba475835331c34f4

PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced

icoOptions_white.png

605f3459772ba1c041cbf5cad5e43c9e

PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced

icoAppIcon.png

3f0307c80af64dfaf9edfa600ec815cc

PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced

icoEdit_white.png

bcfab82f427be62acfa38bc8352d462f

PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced

icoNew_black.png

b166a3783312a9412046472aff1bd10c

PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced

de.mo

31fdd542797eb35a6f61ab885c655e61

GNU message catalog (little endian), revision 0.0, 237 messages, Konfigurieren und starten von DOS Anwendungen (Spiele) in einer vorhandenen DOSBox App. '&Datei'

icoPlay_white@2x.png

640d0a20644ac122d03fd14e3393c1ce

PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced

icoDelete_black@2x.png

467aba6101f1d33a01337b995662f747

PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced

vcruntime140.dll

607b9eef0c8173d1e8e75947aeed6a13

PE32 executable (DLL) (console) Intel 80386, for MS Windows, 6 sections

._vcruntime140.dll

a954d5866f8f3efc9d7e997e62cb6cba

AppleDouble encoded Macintosh file

vccorlib140.dll

b39264ca191796bc810f005b5f8a003d

PE32 executable (DLL) (console) Intel 80386, for MS Windows, 6 sections

._vccorlib140.dll

a954d5866f8f3efc9d7e997e62cb6cba

AppleDouble encoded Macintosh file

XojoGUIFramework32.dll

b9d709e978ea8131ea17189c5da4b6cf

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections

._XojoGUIFramework32.dll

7242158d0e6bbd1eb445ac23830e9949

AppleDouble encoded Macintosh file

icudt65.dll

4a9d4fbcd00508cd3de6f252310dcd68

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 2 sections

._icudt65.dll

a954d5866f8f3efc9d7e997e62cb6cba

AppleDouble encoded Macintosh file

icuuc65.dll

08c94b7d7e4bc36469117b3566e6dbde

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections

._icuuc65.dll

a954d5866f8f3efc9d7e997e62cb6cba

AppleDouble encoded Macintosh file

Appearance Pak.dll

28e7b28d7236bd98f0d05ccdc2405e9d

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections

GUIKit.dll

25af6e4a0d65d72a58f1d20086a18e8b

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections

icuin65.dll

508103f521289ba622dfa4fc52f631b8

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections

._icuin65.dll

a954d5866f8f3efc9d7e997e62cb6cba

AppleDouble encoded Macintosh file

Internet Encodings.dll

894070c7c6f4808b7fec4436b9e548ef

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections

Crypto.dll

24934a7748747c28e5f4794120cddfcb

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections

SQLiteDatabase.dll

e34ea9d0a3417b9904e6912cb1396e71

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections

RegEx.dll

4f1e2ab0e51cb3fec467455856423139

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections

msvcp140.dll

54628f77144e17530a8b8882d1789c90

PE32 executable (DLL) (console) Intel 80386, for MS Windows, 6 sections

._msvcp140.dll

a954d5866f8f3efc9d7e997e62cb6cba

AppleDouble encoded Macintosh file

Shell.dll

f8c3b195261fe81b0212e2c4a91709e4

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
VirusTotal	suspicious	VirusTotal - Scan result 1/58

JavaScript (0)

HTTP Transactions (2)

URL IP Response Size

github.com/stefanwatermann/DOSBoxLauncher/releases/download/v1.2.2/DOSBoxLauncher.Windows.zip

140.82.121.3

302 Found

0 B

URL User Request GET HTTP/2
github.com/stefanwatermann/DOSBoxLauncher/releases/download/v1.2.2/DOSBoxLauncher.Windows.zip
IP
140.82.121.3:443
ASN
#36459 GITHUB

Certificate
IssuerSectigo Limited
Subjectgithub.com
FingerprintE7:03:5B:CC:1C:18:77:1F:79:2F:90:86:6B:6C:1D:F8:DF:AA:BD:C0
ValidityThu, 07 Mar 2024 00:00:00 GMT - Fri, 07 Mar 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /stefanwatermann/DOSBoxLauncher/releases/download/v1.2.2/DOSBoxLauncher.Windows.zip HTTP/1.1
Host: github.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: GitHub.com
date: Wed, 24 Apr 2024 11:29:41 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://objects.githubusercontent.com/github-production-release-asset-2e65be/419632972/aa60dc87-6c0c-472a-8ed4-b61fbae27108?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T112941Z&X-Amz-Expires=300&X-Amz-Signature=89b6ba7cfc4f9903ef0eede2890a622e18bcbad53758debce99dde0e8e8084a9&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=419632972&response-content-disposition=attachment%3B%20filename%3DDOSBoxLauncher.Windows.zip&response-content-type=application%2Foctet-stream
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com api.githubcopilot.com objects-origin.githubusercontent.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: 2C93:0F8B:2E06F28:2E9EC2A:6628ED25
X-Firefox-Spdy: h2

objects.githubusercontent.com/github-production-release-asset-2e65be/419632972/aa60dc87-6c0c-472a-8ed4-b61fbae27108?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T112941Z&X-Amz-Expires=300&X-Amz-Signature=89b6ba7cfc4f9903ef0eede2890a622e18bcbad53758debce99dde0e8e8084a9&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=419632972&response-content-disposition=attachment%3B%20filename%3DDOSBoxLauncher.Windows.zip&response-content-type=application%2Foctet-stream

185.199.109.133

200 OK

16 MB

URL User Request GET HTTP/2
objects.githubusercontent.com/github-production-release-asset-2e65be/419632972/aa60dc87-6c0c-472a-8ed4-b61fbae27108?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T112941Z&X-Amz-Expires=300&X-Amz-Signature=89b6ba7cfc4f9903ef0eede2890a622e18bcbad53758debce99dde0e8e8084a9&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=419632972&response-content-disposition=attachment%3B%20filename%3DDOSBoxLauncher.Windows.zip&response-content-type=application%2Foctet-stream
IP
185.199.109.133:443
ASN
#54113 FASTLY

Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
16 MB (16526556 bytes)
Hash
ad426c8e27180cf455e2882c8e0b54f4
72bd9124b9da387da65e48c528a750f0340363a3
94b0df0ddcc35301516bd2a565d937ba704ea45658ec06d44037315f7d58fcee

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/58

HTTP Headers

GET /github-production-release-asset-2e65be/419632972/aa60dc87-6c0c-472a-8ed4-b61fbae27108?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T112941Z&X-Amz-Expires=300&X-Amz-Signature=89b6ba7cfc4f9903ef0eede2890a622e18bcbad53758debce99dde0e8e8084a9&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=419632972&response-content-disposition=attachment%3B%20filename%3DDOSBoxLauncher.Windows.zip&response-content-type=application%2Foctet-stream HTTP/1.1
Host: objects.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/octet-stream
content-md5: rUJsjicYDPRV4ogsjgtU9A==
last-modified: Tue, 18 Jan 2022 19:25:27 GMT
etag: "0x8D9DAB84855215C"
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2b4b35ea-101e-0054-7a04-96ae02000000
x-ms-version: 2020-10-02
x-ms-creation-time: Tue, 18 Jan 2022 19:25:27 GMT
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
content-disposition: attachment; filename=DOSBoxLauncher.Windows.zip
x-ms-server-encrypted: true
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 0
date: Wed, 24 Apr 2024 11:29:41 GMT
x-served-by: cache-iad-kiad7000160-IAD, cache-hel1410028-HEL
x-cache: HIT, MISS
x-cache-hits: 4, 0
x-timer: S1713958181.433180,VS0,VE508
content-length: 16526556
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (48)

Detections

JavaScript (0)

HTTP Transactions (2)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers