Report - www.afterlogic.com/files/IdleAsyncSample.zip

Report Overview

Visited public
2025-04-19 08:13:15
Tags
URL
www.afterlogic.com/files/IdleAsyncSample.zip
Finishing URL
about:privatebrowsing
IP / ASN
64.150.188.238
#18501 JOESD-18501
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
afterlogic.com	460059	2000-04-24	2013-01-01	2025-04-04	508 B	644 kB	64.150.188.238

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
afterlogic.com/files/IdleAsyncSample.zip
IP
64.150.188.238
ASN
#18501 JOESD-18501

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
644 kB (643677 bytes)
Hash
e852d4421dcd60846ea873fbbb794044
23af0e0dfba6adf49f085482b3c9cd720714cd8e
85eabb61bd33faef61bc65be9086736defc72643a17b2c1445dac588255d371b

Archive (14)

Filename

Md5

File type

app.config

ddc25aefcae9826cce1754c2c89e959d

XML 1.0 document, ASCII text, with CRLF line terminators

Form1.cs

590be0beb3bd4f413a09d9a3379412cb

ASCII text, with CRLF line terminators

Form1.Designer.cs

bf710c3b1a7ee5c385b848af44662794

ASCII text, with CRLF line terminators

Form1.resx

32a9f8db6987c2d0d6bb55fc487be5e8

XML 1.0 document, ASCII text, with CRLF line terminators

Program.cs

8eeb6620d71fceee5c497c728f858fb4

ASCII text, with CRLF line terminators

AssemblyInfo.cs

f0e785e1b89e87883858163d9ba59e17

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

Resources.Designer.cs

32779b0fa7a069c62b859fb7d8a5e4f6

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

Resources.resx

8eaf73ce761d0475249104898a831599

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

Settings.Designer.cs

3f312a943ea29e3d2879539ff83511fc

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

Settings.settings

8c0f00d7d9b0046695a0255f1b11b061

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

WindowsApplication1.csproj

a811436c1d02fbd7e1a22da48c2e2b57

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

WindowsApplication1.sln

c27c5e75a3de701c12e13bea92f2853a

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

IDLEAsync.exe

a547ef6315228f380cf8f731babba7e7

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

MailBee.NET.dll

b69427629efba8fa01f97c573ac02212

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/61

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

afterlogic.com/files/IdleAsyncSample.zip

64.150.188.238

200 OK

644 kB

URL User Request GET
afterlogic.com/files/IdleAsyncSample.zip
IP
64.150.188.238:443
ASN
#18501 JOESD-18501

Certificate
IssuerSectigo Limited
Subject*.afterlogic.com
Fingerprint19:3D:CA:A0:A8:C4:23:47:14:2B:AA:19:93:C9:D7:4F:29:62:D0:DC
ValidityMon, 21 Oct 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
644 kB (643677 bytes)
Hash
e852d4421dcd60846ea873fbbb794044
23af0e0dfba6adf49f085482b3c9cd720714cd8e
85eabb61bd33faef61bc65be9086736defc72643a17b2c1445dac588255d371b

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/61

HTTP Headers

GET /files/IdleAsyncSample.zip HTTP/1.1
Host: afterlogic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 19 Apr 2025 08:12:54 GMT
content-type: application/zip
content-length: 643677
last-modified: Wed, 17 Jul 2019 16:34:44 GMT
etag: "5d2f4e24-9d25d"
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (14)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers