Report - playnomads.com/NomadsLauncher.zip

Report Overview

Submitted URL
playnomads.com/NomadsLauncher.zip
IP
162.159.136.54
ASN
#13335 CLOUDFLARENET
Submitted
2024-03-29 01:38:02
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
21

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
playnomads.com	unknown	2024-03-25	2015-12-31	2024-03-26	487 B	12 MB	162.159.137.54
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-03-27	511 B	1.2 kB	35.244.181.201

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
playnomads.com/NomadsLauncher.zip
IP
162.159.137.54
ASN
#13335 CLOUDFLARENET

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
12 MB (11472544 bytes)
Hash
55543f32b68fb276def2e481a2dc2a95
4eeb182af06b7d0ef61a694f897907c15ea905e5
921e0cd19d63ab24b37ce34e92490f62c1ca77caa5f719ba59a84a77376da9eb

Archive (121)

Filename

Md5

File type

adshow.mfx

ab00efedd970d38860f92eb6396e2655

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

ADSMFPlayer.dll

c7731c1256278b15f385757d22bb9ce9

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

aiffflt.sft

0bc2cc0ecdd4c4de5de9decb6a19f7f7

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

Archive.mfx

0d1416e079cc907971a7eebe49189eb1

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

aviflt.ift

97b3b613ed1f994389b1a963b6e781c9

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

background.jpg

54d1bf391b225de6376d7511e863b6ac

JPEG image data, JFIF standard 1.01, resolution (DPI), density 95x95, segment length 16, baseline, precision 8, 1280x720, components 3

Background_with_logo.png

e02fa71bb1fcafb4be0712959c805b14

PNG image data, 1280 x 720, 8-bit/color RGBA, non-interlaced

bigbox.mfx

10d9c16af86941299f91ef1ea8eeea6d

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

bmpflt.ift

a73a9c8e91ef95cf4eabadf8f7334abf

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

clickteam-dragdrop.mvx

7c3b681e4eea7724bc5346be05967f6a

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

close_a.png

1170fac39cccc6228de09597c101a4a7

PNG image data, 43 x 42, 8-bit/color RGBA, non-interlaced

close_b.png

0cb1dbee9f68fdf4710fa2bca9c55bfd

PNG image data, 43 x 42, 8-bit/color RGBA, non-interlaced

ctrlx.mfx

69166379f7d468c005e793d01972ebec

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections

default_btn_0.png

b1e462525b3b1b178777df2cb60e90d6

PNG image data, 192 x 40, 8-bit/color RGBA, non-interlaced

default_btn_1.png

8dd976705abec5433da64f2f63420a23

PNG image data, 192 x 40, 8-bit/color RGBA, non-interlaced

default_btn_2.png

9be9358e39969072d7c6bbe7846f63af

PNG image data, 192 x 40, 8-bit/color RGBA, non-interlaced

default_gif.gif

4a8461d46170dda631839a3ee2228b0b

GIF image data, version 89a, 200 x 150

default_image.png

c2c0dbae00d0883d0a758518cbf4f9cb

PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced

default_video.wmv

2a37fa97ba3a7f67a5d8879a28af3960

Microsoft ASF

DirectoryPacker.mfx

9c149ce7e73f02808b1ebd7df1faf856

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 4 sections

discord_a.png

21dc5865a8492e94d5e6e91e20882b59

PNG image data, 76 x 58, 8-bit/color RGBA, non-interlaced

discord_b.png

ea0694de0752516e5490a984291b4694

PNG image data, 76 x 58, 8-bit/color RGBA, non-interlaced

Download-backup.mfx

537258ea599d5f5fd4546bb5615d155a

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

DRPC.mfx

eed9557c1f52908027e672a4e1c2282d

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

fb_a.png

81d7fee36639c7b6005454e0862a23a0

PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced

fb_b.png

084f8f530ee58af343084e3865cde522

PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced

fcFolder.mfx

cb4a2ab97e3a54ccdd810e84c63b2df6

PE32 executable (DLL) (console) Intel 80386, for MS Windows, 5 sections

fcKernel.mfx

87810e08113e6a0a956e40097dc61823

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

fcMsgBox.mfx

99b871a03fc7a3e55f965c35670398ac

PE32 executable (DLL) (console) Intel 80386, for MS Windows, 5 sections

filetime.mfx

9cc6b4fe9414e0f97a918fbf03aa1c84

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

fliflt.ift

91b37f29180a7bcca82dd4682d677b3d

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

Get.mfx

c61fd0d847df328fd6f0a98e4f030f41

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

gifflt.ift

9a1a0b8e7045c06c47abeb52d861c377

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

Gitbook_Button.png

7719bd7860bf808cd7386cd7fe752d9d

PNG image data, 208 x 192, 8-bit/color RGBA, non-interlaced

Gitbook_Button_Hover.png

22fcdf0d30cdb29d09bf02842e9d26b5

PNG image data, 208 x 192, 8-bit/color RGBA, non-interlaced

GLHelper.mfx

c18eb37a8086c1cabcacc6c21b911f55

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

globalfunction.mfx

9d07aa108ae7b3976eeed6e3a72ec3c5

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

GradientA.mfx

f459995de651ea801ef5d85571e36f2a

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

InternalList.mfx

4aa45f130bf4122116051cfccd82e154

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

joystick2.mfx

473880813d30a436bc8e4ac5ae29966a

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

jpgflt.ift

ba4a1f5006fc3fc33f30e82a964cd7b3

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

JSON_Object.mfx

764d0d42df08bed432d4dc1099606007

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

KcActiveX.mfx

61cda6684d71ba8bb27c00ed635fa3d1

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

kcanim.mfx

913cfd77a201854385bd6df283d2e594

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

KcBoxA.mfx

08ac00f4d05e68d8b5ab6870bf1f076e

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

kcclock.mfx

52d17266a014b5da9552a13d7594786b

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

KcCursor.mfx

7f13cd709928cf74d10925042a674e1e

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

kcedit.mfx

62f67209e7995da3f14f4b697235a99b

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

kcfile.mfx

fe2b4c6a45ce244f1c40f730008465c9

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

kcini.mfx

7c0cb7fdc0d3519520cd4b8137edbd80

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

kclist.mfx

de7d289ea419cc82784cefc87e652c70

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

kcmouse.mfx

276de64b9e556f529e44d55326e96843

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

kcpica.mfx

3b25566c7b6af3dfd861bf18e52284b3

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

kcwctrl.mfx

2c34e977f898ab60eddb72075c4be223

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

launchcfg

9248c7193fc209b43cb88282bc43a81f

Unicode text, UTF-16, little-endian text, with CRLF line terminators

launchlic

0903abccbcccc32690765db181487274

Unicode text, UTF-16, little-endian text, with CRLF line terminators

LZMA2 Object.mfx

4d4b1b1a7e894751a7002326e03fd191

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

minimize_a.png

b190bd30ebd43021f8a0649b362534f5

PNG image data, 31 x 30, 8-bit/color RGBA, non-interlaced

minimize_b.png

9497b9cc2be85f1aa84768c86b35f452

PNG image data, 31 x 30, 8-bit/color RGBA, non-interlaced

mmf2d3d8.dll

59aeab50440b9f50389a997bc6c44866

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections

mmf2d3d9.dll

72bb9180f8905c0da95566b778cdac5e

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

mmfs2.dll

1e0e5acec2f2d3567c40491e39aa8f50

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

modflt.sft

70498f33876a06f47b33e52195031b20

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections

mp3flt.sft

dadc138be9d36e6e4b8e4bf9ef2de4bc

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

MultipleTouch.mfx

9b13c38bf349aa5b74e80a3cdd7fd145

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

oggflt.sft

0c8c1ee3ba92189f4ce21d1b396a2765

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

ParserUnicode.mfx

77472c26cd59e3f209c5f56164508137

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

patch.cfg

22b6d80d62f55a7a4c79666060f5d77e

Generic INItialization configuration [options]

pcxflt.ift

56f80b514fa7cc1dd7fb24ef195c30eb

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

play_a.png

085b78dbe6872140f8d0b76347d6f49c

PNG image data, 293 x 98, 8-bit/color RGBA, non-interlaced

play_b.png

833fbd2dd739904937681f8e79d2d541

PNG image data, 293 x 98, 8-bit/color RGBA, non-interlaced

Play_Button.png

237981536f1960bd1b5945b3da766576

PNG image data, 532 x 210, 8-bit/color RGBA, non-interlaced

Play_Button_Hover.png

7f1e38c7a342011ac6ddfad3e96ebc14

PNG image data, 532 x 210, 8-bit/color RGBA, non-interlaced

pngflt.ift

d57365ca275388910be7b09d95ee65b9

PE32 executable (DLL) (console) Intel 80386, for MS Windows, 5 sections

ProgressBar.mfx

3bc69271251f8d173be80572c1b91781

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

Registry2.mfx

31a275222d4a7fdb261d677cd45351ee

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

Square_Button.png

86100b280e193c82863a984b42990d1e

PNG image data, 180 x 181, 8-bit/color RGBA, non-interlaced

Square_Button_Hover.png

662181f147e35e432d95fac427e76df6

PNG image data, 180 x 181, 8-bit/color RGBA, non-interlaced

store_a.png

a84307f248c3f36c66f4c9ef85cc6c45

PNG image data, 293 x 98, 8-bit/color RGBA, non-interlaced

store_b.png

98f629b4f70072ed906a7952c7ec5362

PNG image data, 293 x 98, 8-bit/color RGBA, non-interlaced

Store_Button.png

a8c624fe15521585a4b77e2f9bfbe4f9

PNG image data, 532 x 210, 8-bit/color RGBA, non-interlaced

Store_Button_Hover.png

595dbfe99bd00a5c6a2c8d0ebba034a3

PNG image data, 532 x 210, 8-bit/color RGBA, non-interlaced

StringTokenizer.mfx

7e4c1a0c410de0f23f591e338a6bf243

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

Telegram_Button.png

ed525bd6ed192cbf33c103a7cb39e58c

PNG image data, 208 x 211, 8-bit/color RGBA, non-interlaced

Telegram_Button_Hover.png

49451412c96fa18433f1bd380ea2aa16

PNG image data, 208 x 211, 8-bit/color RGBA, non-interlaced

tgaflt.ift

00a5f50c4a0f8a2c8704fb0640dfcfb6

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

TimeString.mfx

70b4ca91f942404b7fb38f8e0fbcb4b9

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

ToolTip.mfx

2fa471f91f39e48aca302ce0fbb4c961

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

twitter_a.png

86ef6a7d55344e13a50b0ed9df8bec53

PNG image data, 75 x 61, 8-bit/color RGBA, non-interlaced

twitter_b.png

13a9d459f2acb4516bae04e75d3aac46

PNG image data, 75 x 61, 8-bit/color RGBA, non-interlaced

Twitter_Button.png

9547ddc7805bed2e3c467fe13952341e

PNG image data, 208 x 211, 8-bit/color RGBA, non-interlaced

Twitter_Button_Hover.png

4b30cfbf04f09a32f5935a079f8f9c82

PNG image data, 208 x 211, 8-bit/color RGBA, non-interlaced

ultimatefullscreen.mfx

96059dbec69c3904e4d7ce734a4b38d0

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

update_a.png

d96aa608d0292b4d98fa95e854c7afaa

PNG image data, 180 x 67, 8-bit/color RGBA, non-interlaced

update_b.png

8c29328e54ce0bc84c6ab5cc1541d1cf

PNG image data, 180 x 67, 8-bit/color RGBA, non-interlaced

Update_Button.png

38aea77b65e579bb3bceeb92f0688644

PNG image data, 360 x 169, 8-bit/color RGBA, non-interlaced

Update_Button_Hover.png

644998563c0d15bccea2710fb746d2a6

PNG image data, 360 x 169, 8-bit/color RGBA, non-interlaced

waveflt.sft

57ea61dd14314ef155e80c6a0be8a664

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

Web Query Object.mfx

ca3201df745fe33b99367b2e14ebbb50

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

Website_Button.png

8bc0873fad2da1cad6a53eaeda6dc8a8

PNG image data, 208 x 211, 8-bit/color RGBA, non-interlaced

Website_Button_Hover.png

d56c8fff7a3b24bcb14c4c3f5ee46bf9

PNG image data, 208 x 211, 8-bit/color RGBA, non-interlaced

WebView2.mfx

0394300611b21b45b0e9a44ea20bb1d6

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

WhatsApp Image 2024-03-27 at 23.26.58.jpeg

0369427232b9da78574f9d4d40bf69a9

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x169, components 3

WhatsApp Image 2024-03-27 at 23.27.00.jpeg

b8ac9981c13ec5487edfea46fb6277a4

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x169, components 3

WinMessPro.mfx

9898ac531e67bc491a700759f404613e

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

WndTransp.mfx

6f93111ce72225daab2bcdceee48d204

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

X_Button.png

4bcc1dc231e47d0344353c14daef79fc

PNG image data, 180 x 181, 8-bit/color RGBA, non-interlaced

X_Button_Hover.png

a5d6ed9559e7bf2043d0ebcbf568db9e

PNG image data, 180 x 181, 8-bit/color RGBA, non-interlaced

youtube_a.png

6b3e81b6cbfeea94d42fd277c27fba58

PNG image data, 75 x 52, 8-bit/color RGBA, non-interlaced

youtube_b.png

3bd14848399e12a1aad39369d4604a79

PNG image data, 75 x 52, 8-bit/color RGBA, non-interlaced

dbghelp.dll

e59f0fa72ecc52a644ac7d2491f32926

PE32+ executable (DLL) (console) x86-64, for MS Windows, 8 sections

GFSDK_Aftermath_Lib.x64.dll

f9647651c1bee5b702299ab937474070

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

libogg_64.dll

106b906ca5386383e0c1297c556582a9

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 8 sections

libvorbis_64.dll

fe50f2402ca692efd9635204b41966e0

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

libvorbisfile_64.dll

c3a74daf78426820c1c6e687f4dd5e71

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

xaudio2_9redist.dll

7e6af4014f1205b8aeabfc53abbeb3d6

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 9 sections

NomadsLauncher.dat

3d8ff757364fb83977ab5ecf9fa30189

dBase III DBT, next free block index 2004318071, 1st item "��y��LD�LcF��W/��k��0e�y(��w277'��󲰰 ��$��.��';;;��-[[[�{a��k�Z�ž�|<��_��8"�ж��\��KD�<D��"

NomadsLauncher.exe

2f1d04707755b9f3a8527874dad8d926

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

patch.dat

1d72435a61797d3b82872d98f50d332f

dBase III DBT, next free block index 2004318071, 1st item "f�z@~C""

patch.exe

0b576038a1c967fda8c34eb94964cf12

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

version.txt

63eea8a3b1eae2c5dee160f953373ba6

Unicode text, UTF-16, little-endian text, with no line terminators

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	Detect pe file that no import table
VirusTotal	suspicious	VirusTotal - Scan result 4/67

JavaScript (0)

HTTP Transactions (2)

URL IP Response Size

playnomads.com/NomadsLauncher.zip

162.159.137.54

200 OK

12 MB

URL User Request GET HTTP/2
playnomads.com/NomadsLauncher.zip
IP
162.159.137.54:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectplaynomads.com
Fingerprint00:F3:E9:4F:0B:5E:F9:94:3F:2F:C0:88:48:99:00:FE:F0:49:7C:F6
ValidityMon, 25 Mar 2024 21:59:43 GMT - Sun, 23 Jun 2024 21:59:42 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
12 MB (11472544 bytes)
Hash
55543f32b68fb276def2e481a2dc2a95
4eeb182af06b7d0ef61a694f897907c15ea905e5
921e0cd19d63ab24b37ce34e92490f62c1ca77caa5f719ba59a84a77376da9eb

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 4/67

HTTP Headers

GET /NomadsLauncher.zip HTTP/1.1
Host: playnomads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 01:37:31 GMT
content-type: application/zip
content-length: 11472544
cf-ray: 86bc229b994256be-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: public, max-age=31536000
etag: "66060a2a-af0ea0"
last-modified: Fri, 29 Mar 2024 00:24:10 GMT
vary: Accept-Encoding
set-cookie: __cf_bm=RqtM.TIqW4XQH4maQ58SkZdDkeUkTxwDD3DjqcH0JN8-1711676251-1.0.1.1-YkzJAw5_ezVmOOY9fiElMI3G.X4N8bkXgxs3ZQc0W07ryI.zUjJhV7raLCA80oF4Kl1GFkIpijULf.x0ZXp5ZA; path=/; expires=Fri, 29-Mar-24 02:07:31 GMT; domain=.playnomads.com; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-04-29-22-13-57.chain; p384ecdsa=IsBgJJBUznhWhGfWzjOQPdeD8Ges-mQlqQSgWBOGLGaIGkFd4jbbXFuQBYknQWzP8EjHfE9r0axSmCNQDZLRYsVBhlz7ZfGD5Q1umUOFJCwuryG2R_lKXYFDa7jUbNo0
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Fri, 29 Mar 2024 01:36:20 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 90
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (121)

Detections

JavaScript (0)

HTTP Transactions (2)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers