Report - raw.githubusercontent.com/georgjf/SMTPtool/master/bin/SMTPtool_v4/SMTPtestTool_v4.zip

Report Overview

Submitted URL
raw.githubusercontent.com/georgjf/SMTPtool/master/bin/SMTPtool_v4/SMTPtestTool_v4.zip
IP
185.199.108.133
ASN
#54113 FASTLY
Submitted
2024-04-26 08:24:30
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
raw.githubusercontent.com	35802	2014-02-06	2014-03-01	2024-04-24	539 B	323 kB	185.199.111.133

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
raw.githubusercontent.com/georgjf/SMTPtool/master/bin/SMTPtool_v4/SMTPtestTool_v4.zip
IP
185.199.111.133
ASN
#54113 FASTLY

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
322 kB (321953 bytes)
Hash
0752184e75731b991fbc62e17e6f8834
e36094ce88dd3d82f82f8f5d6a5e0fe474c86733
e702ff8566fa5228076f1b0c07b34e3b8e2eb3be4f07494279376132de442e5f

Archive (10)

Filename

Md5

File type

config.xml

7f92f7f670b4231d5d3356c40476ba4d

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

Ionic.Zlib.dll

fd42dec3ab2e491aa54e6ee66ef63a5c

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Active Content - Excel Macro.eml

9a8831fdb3628ec3c6ab888ade9e861e

MIME entity, ASCII text, with CRLF line terminators

Active Content - HTML JavaScript.eml

7fcc3986fb54654b71f396ce51ae6f01

MIME entity, ASCII text, with CRLF line terminators

Active Content - PDF.eml

4e1eaf5a71cfcafefa2dfd65b1400c4d

MIME entity, ASCII text, with CRLF line terminators

EICAR Test.eml

511a76350ee22e98f642cde4ad437a2a

MIME entity, ASCII text, with CRLF line terminators

Encrypted Zip.eml

25ad5e5606d86b14057378a7a811b7fa

MIME entity, ASCII text, with CRLF line terminators

Exe file.eml

88b0578428d9fecc4c887d7033be4557

MIME entity, ASCII text, with CRLF line terminators

Junk Detection v4.eml

44658fd64245d05776624f0de949ce73

MIME entity, ASCII text, with CRLF line terminators

SMTPtestTool.exe

e1654ca9b8ded5b4c3f3fd2741918717

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 7/66

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

raw.githubusercontent.com/georgjf/SMTPtool/master/bin/SMTPtool_v4/SMTPtestTool_v4.zip

185.199.111.133

200 OK

322 kB

URL User Request GET HTTP/2
raw.githubusercontent.com/georgjf/SMTPtool/master/bin/SMTPtool_v4/SMTPtestTool_v4.zip
IP
185.199.111.133:443
ASN
#54113 FASTLY

Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
322 kB (321953 bytes)
Hash
0752184e75731b991fbc62e17e6f8834
e36094ce88dd3d82f82f8f5d6a5e0fe474c86733
e702ff8566fa5228076f1b0c07b34e3b8e2eb3be4f07494279376132de442e5f

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 7/66

HTTP Headers

GET /georgjf/SMTPtool/master/bin/SMTPtool_v4/SMTPtestTool_v4.zip HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/zip
etag: W/"54df616c7af20471367cb7675a6d3dd32501bd647ed27a7b65677a5c5f250269"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 97F6:51011:8ABB4F:91CC80:662B63ED
accept-ranges: bytes
date: Fri, 26 Apr 2024 08:21:02 GMT
via: 1.1 varnish
x-served-by: cache-hel1410031-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714119662.096636,VS0,VE131
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 6e2b8fde4e528a227c72bfec7201eb225351998b
expires: Fri, 26 Apr 2024 08:26:02 GMT
source-age: 0
content-length: 321953
X-Firefox-Spdy: h2