Report - abreevy8.io/aBreevy8Portable.zip

Report Overview

Submitted URL
abreevy8.io/aBreevy8Portable.zip
IP
216.92.94.132
ASN
#7859 PAIR-NETWORKS
Submitted
2024-03-29 14:58:43
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
3

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
abreevy8.io	unknown	2024-01-09	2024-01-10	2024-03-24	486 B	14 MB	216.92.94.132

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
abreevy8.io/aBreevy8Portable.zip
IP
216.92.94.132
ASN
#7859 PAIR-NETWORKS

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
14 MB (14081502 bytes)
Hash
be7250902a3773a9b80bbc00c0e11f1d
f5e1910cc501fb70f84895316557edfba0373e05
04f5c47d128ecc740b835220e4659090b14ee08c96da1b9d65a475aa74cd22ce

Archive (106)

Filename

Md5

File type

aBreevy8Portable.exe

d36b77f788ac6b8a25a10634b6009058

PE32 executable (GUI) Intel 80386, for MS Windows, 18 sections

aBreevy8.exe

db9dc14eafd2d76aee627dde76e4e82b

PE32 executable (GUI) Intel 80386, for MS Windows, 18 sections

changelog.txt

e044384807527bae3a313dad81875107

ASCII text, with CRLF line terminators

ack.html

65a1f2944f4bed9316bcc5f32708c6da

HTML document, ASCII text, with very long lines (680), with CRLF line terminators

global.css

e6f650b5f8f13ac8a0af87238c217d96

ASCII text, with CRLF line terminators

case_adapt.png

3af74a1b6c677f3812048e9edf2e42b3

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

case_insensitive.png

c0d6fe35984e34ad0253b9a0e63039e5

PNG image data, 16 x 16, 2-bit colormap, non-interlaced

case_sensitive.png

169d0db8dec2da5c126f31d195297c99

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

folder_add.gif

66d9490e9c0ce7c98f2d8c25f1c87ad5

GIF image data, version 89a, 16 x 16

folder_files.gif

6eed1dee049ecf5110f25fe2d319c69a

GIF image data, version 89a, 16 x 16

launcher_add.png

8c40c002c9c5087512005d8e7643a4bb

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

macro_down.png

7f08d945a360438d0a84c491b37bc6dc

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

note_add.gif

81b370a869d29bd1644edcf6b4e45b9c

GIF image data, version 89a, 16 x 16

prefs.png

c64b8e5c39b9d72af55efdfc2fca5567

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

program_add.png

e82b01dbaec2ffb896331c9d8ac356d4

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

trigger_immediately.png

a28a839beeaa96de9aaab2bd4f9ef14a

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

trigger_key.png

a2ad299ac1560e84f0d8eae552bd028a

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

trigger_word_ending.png

d27833ee63c5715bca3a258abffe7715

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

website_add.png

a1e9feb514a3a058057385b6c2f461c2

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

win7safelyremove.png

06485a4685524922011891ddb933aa7a

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

winxpsafelyremove.png

f3c0fa393943dbb88c05fdf0fffd0bb2

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

index.html

9ce74a616a036ba8b53a695bd6d66053

HTML document, ISO-8859 text, with very long lines (812), with CRLF line terminators

keys.html

eaf5790bd90b750babe144e4a67b53d2

HTML document, ASCII text, with very long lines (574), with CRLF line terminators

loaders.cache

bd84769cedace088df77cc85071b966b

SVG XML document

libpixbufloader-ani.dll

57756748e59229e8309e2237ed50971e

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixbufloader-ani.dll.a

fc97b7112f995a3677233c12b0ad01f9

current ar archive

libpixbufloader-bmp.dll

924127952b570dd4dfa63c71c977763b

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixbufloader-bmp.dll.a

5244f784e5f9aa9f29e4330e12ff1ec6

current ar archive

libpixbufloader-gif.dll

8a27306134faba946d71446a6c9d4daa

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixbufloader-gif.dll.a

52b50db1e29c4ad75f14a41983b6592a

current ar archive

libpixbufloader-icns.dll

17dd9fe378316c3dbc2d7b5f8d9fe03b

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixbufloader-icns.dll.a

5a00a14be99d20c408b2a1053b386682

current ar archive

libpixbufloader-ico.dll

8095b925f8c802743f40edc69d9acae5

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixbufloader-ico.dll.a

fc6fb033f34e69b65dc8830aacd59f8c

current ar archive

libpixbufloader-jpeg.dll

11e38d0bfcd3d9bfc4f1d6f705f68d8f

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixbufloader-jpeg.dll.a

7e9b8f5be2e55c71df77c4432057b4de

current ar archive

libpixbufloader-png.dll

d50c8895f9c81163ee1d8079463ccaa0

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixbufloader-png.dll.a

5d477e866d13189cdbd7a7deed88433a

current ar archive

libpixbufloader-pnm.dll

7d1ea4ec9f691dcdfd82596c3dd6e042

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixbufloader-pnm.dll.a

24c2a1853a7fc0c184775eadbe421ac2

current ar archive

libpixbufloader-qtif.dll

dd006fde31cea1c1dd822a5cbabb0302

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixbufloader-qtif.dll.a

b844cae823cc5fbfbd0b70b42ef057f0

current ar archive

libpixbufloader-svg.a

8c5cf96a8b32027466682543acc3711e

current ar archive

libpixbufloader-svg.dll

fa10a4d8ec108070a2f8b55f41bef049

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixbufloader-svg.dll.a

87f662ef6e2f8de3cee92fe51c4cdc04

current ar archive

libpixbufloader-tga.dll

10f6295fd3a5343430eeed62b0a716a9

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixbufloader-tga.dll.a

031db7531df0a100c834c0595faecb54

current ar archive

libpixbufloader-tiff.dll

e40a223bd2aa545453b0ba35def32265

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixbufloader-tiff.dll.a

0fd86b1faedb1306bf466b2ee6f10848

current ar archive

libpixbufloader-xbm.dll

f75438b2b47db8952c51be53116d1c62

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixbufloader-xbm.dll.a

df5efece17a6d95c49b7dd0332e771f3

current ar archive

libpixbufloader-xpm.dll

4b2bac00e15342615a6b40d76e9c262b

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixbufloader-xpm.dll.a

d013f4b2ef85577d18812e407899d16c

current ar archive

libatk-1.0-0.dll

2f8c1671623e62cfe9ab90bc5320b0b9

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libbrotlicommon.dll

9abd12ed0256b197ff16f21bbf78614a

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libbrotlidec.dll

b0a2c37448a2cf5a7367816c1c120b24

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libbz2-1.dll

0c6452935851b7cdb3a365aecd2dd260

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libcairo-2.dll

9a6c89dc2f73b0208a4aee1c7245fac5

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libcairo-gobject-2.dll

7376cc4158e6fe904fb96b5fab9d40b0

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libcurl.dll

6dddcea8ca017c9112d4627ea7cecc47

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 8 sections

libdatrie-1.dll

c8609828a1fe5826483f7b56c0c279ae

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libepoxy-0.dll

02240275f76786554d05f0376f5cf014

PE32 executable (DLL) (console) Intel 80386, for MS Windows, 18 sections

libexpat.dll

2ba83655b3b7aea91c5a016304eb67c5

PE32 executable (DLL) (console) Intel 80386, for MS Windows, 7 sections

libexpat-1.dll

68025870ada9ba762fb2a2b010e7dd4f

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libffi-8.dll

6f966ca56fa6ce2479ce7e400f6ba164

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libfontconfig-1.dll

522f0fd58778fd2070d5f919e402f803

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libfreetype-6.dll

6b737e4793b69a38c4ae229822d65ad6

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libfribidi-0.dll

23661dcfe91041db33071d0637dc0e1c

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libgcc_s_dw2-1.dll

47149430ddd87aa16bd5c152251a6389

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libgdk_pixbuf-2.0-0.dll

26f7a170c4dd9a87b330ad053a0840e8

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libgdk-3-0.dll

6f4e55a26810468fa85fc0129f4fa6ef

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libgio-2.0-0.dll

db86a5359cb023102083fb009211842f

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libglib-2.0-0.dll

94b44ea10ed25bd999e1f94a3a3049ab

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libgmodule-2.0-0.dll

202bdba16aa8012993875527bbf0917c

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libgobject-2.0-0.dll

40db23f84f58985e7652420da76fc11d

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libgraphite2.dll

56d0b1c9497c114b9c1d3f478c757aa0

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libgthread-2.0-0.dll

26fd0a2a0426aaeb00aab4f004a27f18

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libgtk-3-0.dll

9b5ecfe995ccd49f1b05e43db4d2a055

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libharfbuzz-0.dll

934af1f18db4e6bf09f4f7d10dab8ff8

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libiconv-2.dll

34e7a74e29fb825e9661e4e22d4f1895

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libintl-8.dll

ba0b6181814e83e0b8564a8a35e36ffe

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libpango-1.0-0.dll

8532f452c53bf4779a9cd49b86f38395

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libpangocairo-1.0-0.dll

d254aeb63df5959c308b2047f16ea5a8

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libpangoft2-1.0-0.dll

bb688d47ba35616eaa87606f4efc98f6

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libpangowin32-1.0-0.dll

bfe49c9533ee75b5e19ff311bb6abeb3

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

libpcre2-8-0.dll

825435984fef0a52cc85564a13740330

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpixman-1-0.dll

9e30dd40fb0718c5bab528f6a6698dba

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libpng16-16.dll

2df822a76647d56036848ef7ea06bf42

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libstdc++-6.dll

88cf7e41f20141bba2c7ebdc84c40ae3

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libthai-0.dll

71c160fd6297d4f675b23cc3bf6e1fe4

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

libwinpthread-1.dll

496e290e3c92787a48168d939bdafe19

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

License.txt

ab97fbb75d5c32de88b19457c1c6495e

ASCII text, with CRLF line terminators

Examples.bvy

fc503d470756bec16969f0bdfb472eeb

ASCII text, with very long lines (6050), with no line terminators

Medical Transcription.bvy

f5eb305561e04099647c0c1effa965f1

ASCII text, with very long lines (65536), with no line terminators

Typo AutoCorrections.bvy

57c1447a4d1d2ae1d172cd4e403d6100

ASCII text, with very long lines (65536), with no line terminators

gschema.dtd

1dc28e117486fe01fdada08d1dc6d04c

exported SGML document, ASCII text

gschemas.compiled

7ba7be5d7c41469587c9279b8207ceb0

GVariant Database file, version 0

org.gtk.Demo.gschema.xml

a8f9085311bca008c2e76cadd07f6cca

XML 1.0 document, ASCII text

org.gtk.exampleapp.gschema.xml

d190ea507f9e9b6bf8fef7a4daf6bd48

XML 1.0 document, ASCII text

org.gtk.Settings.ColorChooser.gschema.xml

789af3ea8bf699f1a7edfdcaf9eaae50

XML 1.0 document, ASCII text

org.gtk.Settings.Debug.gschema.xml

7a55bbcdc891d6fea8f78fabaef6f6cd

XML 1.0 document, ASCII text

org.gtk.Settings.EmojiChooser.gschema.xml

1ec92829ef465348eef7ccf725483ff3

XML 1.0 document, ASCII text

org.gtk.Settings.FileChooser.gschema.xml

39d47714b7cf1852146e9019a0746c23

XML 1.0 document, Unicode text, UTF-8 text

zlib1.dll

3f8e3fe0e658ba90bef7a1219a1d64c6

PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections

License.txt

ab97fbb75d5c32de88b19457c1c6495e

ASCII text, with CRLF line terminators

Readme.txt

7a59c79c56861ed8d5dd24c5fbbc4cd2

ASCII text, with very long lines (421), with CRLF line terminators

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	meth_get_eip

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	abreevy8.io/aBreevy8Portable.zip	216.92.94.132	200 OK	14 MB
URL User Request GET HTTP/2 abreevy8.io/aBreevy8Portable.zip IP 216.92.94.132:443 ASN #7859 PAIR-NETWORKS Certificate IssuerSectigo Limited Subjectabreevy8.io Fingerprint65:6D:6C:81:0D:3C:98:30:23:D5:BB:57:AF:DD:0E:36:BD:4E:EE:76 ValidityWed, 10 Jan 2024 00:00:00 GMT - Sun, 09 Feb 2025 23:59:59 GMT File type Zip archive data, at least v2.0 to extract, compression method=deflate Size 14 MB (14081502 bytes) Hash be7250902a3773a9b80bbc00c0e11f1d f5e1910cc501fb70f84895316557edfba0373e05 04f5c47d128ecc740b835220e4659090b14ee08c96da1b9d65a475aa74cd22ce HTTP Headers `GET /aBreevy8Portable.zip HTTP/1.1 Host: abreevy8.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 29 Mar 2024 14:58:09 GMT content-type: application/zip content-length: 14081502 last-modified: Wed, 20 Mar 2024 08:21:30 GMT etag: "65fa9c8a-d6ddde" expires: Sat, 30 Mar 2024 14:58:09 GMT cache-control: max-age=86400, public X-Firefox-Spdy: h2`

abreevy8.io/aBreevy8Portable.zip

216.92.94.132

200 OK

14 MB

URL User Request GET HTTP/2
abreevy8.io/aBreevy8Portable.zip
IP
216.92.94.132:443
ASN
#7859 PAIR-NETWORKS

Certificate
IssuerSectigo Limited
Subjectabreevy8.io
Fingerprint65:6D:6C:81:0D:3C:98:30:23:D5:BB:57:AF:DD:0E:36:BD:4E:EE:76
ValidityWed, 10 Jan 2024 00:00:00 GMT - Sun, 09 Feb 2025 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
14 MB (14081502 bytes)
Hash
be7250902a3773a9b80bbc00c0e11f1d
f5e1910cc501fb70f84895316557edfba0373e05
04f5c47d128ecc740b835220e4659090b14ee08c96da1b9d65a475aa74cd22ce

HTTP Headers

GET /aBreevy8Portable.zip HTTP/1.1
Host: abreevy8.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 14:58:09 GMT
content-type: application/zip
content-length: 14081502
last-modified: Wed, 20 Mar 2024 08:21:30 GMT
etag: "65fa9c8a-d6ddde"
expires: Sat, 30 Mar 2024 14:58:09 GMT
cache-control: max-age=86400, public
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (106)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers