Report - freegamecoins.shop/GTA6%20Leaked%20Landing%20Page.zip

Report Overview

Submitted URL
freegamecoins.shop/GTA6%20Leaked%20Landing%20Page.zip
IP
172.67.168.189
ASN
#13335 CLOUDFLARENET
Submitted
2024-03-29 06:24:14
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
freegamecoins.shop	unknown	2023-07-08	2023-07-08	2024-03-24	507 B	14 MB	104.21.70.232

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
freegamecoins.shop/GTA6%20Leaked%20Landing%20Page.zip
IP
104.21.70.232
ASN
#13335 CLOUDFLARENET

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
14 MB (13980860 bytes)
Hash
9f80ea9ba50ad248b36f93badf617138
e7035791f826f61ce900ff041767f2ef378e2088
f68c07725a95d8284453d9ed893c0d639d438677cc438bb2f93410b16ca32505

Archive (12)

Modified	Filename	Size	Md5	File type
2023-12-15 09:29	magnific-popup.css	7.9 kB	2a8c6a4fafc0f0f5eb01081f439aacbd	ASCII text
2023-12-15 09:29	pricedow.ttf	35 kB	6d470d11cd5fa6298f357e8ee0711cfa	TrueType Font data, 18 tables, 1st "LTSH", 22 names, Macintosh, Copyright (c) Ray Larabie, 2001. All rights reserved. This font is freeware. Third revision. Vis
2023-12-15 09:29	pricedown.otf	59 kB	579f74e5767836263e40224910147186	OpenType font data
2023-12-15 09:29	style.css	9.3 kB	917b2ce640101506e0dffe7e5328dd9e	assembler source, ASCII text, with very long lines (405), with CRLF line terminators
2023-12-15 09:29	bg2.jpg	1.5 MB	3dee493d5206832a433e53863523b8ec	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 4161x2607, components 3
2023-12-15 09:29	locker-img.PNG	15 kB	4269002cba477d3b4415fa05732903da	PNG image data, 701 x 191, 8-bit/color RGBA, non-interlaced
2023-12-15 09:29	logo.png	235 kB	0a6f27f6346863d9f9dcf7d3d983ae79	PNG image data, 564 x 430, 8-bit/color RGBA, non-interlaced
2023-12-15 09:29	rock.png	20 kB	a3412c761ce1fcea5ea7252411191e80	PNG image data, 512 x 472, 8-bit/color RGBA, non-interlaced
2023-12-15 09:29	vid.mp4	12 MB	c940108238f6afdf5727df26bcaf4e5c	ISO Media, MP4 v2 [ISO 14496-14]
2023-12-15 09:29	index.html	4.1 kB	303945685866b103978415bf611f9c04	HTML document, ASCII text, with CRLF line terminators
2023-12-15 09:29	jquery.magnific-popup.min.js	21 kB	2a312e84654f5ca6ca9e9953b53b4e40	JavaScript source, ASCII text, with very long lines (21014), with CRLF line terminators
2023-12-15 09:29	main.js	9.5 kB	10943c3db1fd8f48c43ff67b4af57ff8	JavaScript source, ASCII text, with very long lines (9279), with CRLF line terminators

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/61

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

freegamecoins.shop/GTA6%20Leaked%20Landing%20Page.zip

104.21.70.232

200 OK

14 MB

URL User Request GET HTTP/2
freegamecoins.shop/GTA6%20Leaked%20Landing%20Page.zip
IP
104.21.70.232:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectfreegamecoins.shop
Fingerprint84:15:BB:93:75:90:9E:EA:E2:03:3E:AD:5F:B9:66:D6:0B:DE:99:1C
ValidityFri, 01 Mar 2024 16:06:00 GMT - Thu, 30 May 2024 16:05:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
14 MB (13980860 bytes)
Hash
9f80ea9ba50ad248b36f93badf617138
e7035791f826f61ce900ff041767f2ef378e2088
f68c07725a95d8284453d9ed893c0d639d438677cc438bb2f93410b16ca32505

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/61

HTTP Headers

GET /GTA6%20Leaked%20Landing%20Page.zip HTTP/1.1
Host: freegamecoins.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 06:23:46 GMT
content-type: application/zip
content-length: 13980860
last-modified: Tue, 05 Mar 2024 15:54:29 GMT
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LUAMVUeJr23yUUiG%2B63emWkbZcc%2BvhY%2F8ibQ6cfuA2gQd7K3wJIGtuI9zUFXPvlH3If7PWhw80BHEhnp2hkiJpmv74Siln%2Bl7rcJpKqRx0mrEfDJqPDcUtC%2F61SjbLsEwQXQbJ4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bdc5e9e925b512-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (12)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers