Report - palantirsource.github.io/palantir/plugin.video.palantir3-3.1.3.zip

Report Overview

Visited public
2024-09-27 16:29:44
Tags
URL
palantirsource.github.io/palantir/plugin.video.palantir3-3.1.3.zip
Finishing URL
about:privatebrowsing
IP / ASN
185.199.110.153
#54113 FASTLY
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
palantirsource.github.io	unknown	2013-03-08	2022-06-17 19:11:49	2023-09-01 14:39:38	520 B	4.8 MB	185.199.109.153
r11.o.lencr.org	unknown	2020-06-29	2024-06-07 07:43:57	2024-09-26 18:37:24	981 B	2.7 kB	23.36.77.32
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-09-26 18:37:25	1.3 kB	3.6 kB	23.36.76.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
palantirsource.github.io/palantir/plugin.video.palantir3-3.1.3.zip
IP
185.199.109.153
ASN
#54113 FASTLY

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
4.8 MB (4753056 bytes)
Hash
8c767424f600f5c9fe7a7a929b32ba07
8774206f9939cf15438f5757a19fee36fa553038
2b6eaa5bb340e679b1372d8a7cd37c842974d92615ce1c96696382f84241c500

Archive (59)

Filename

Md5

File type

LICENSE

7adf1120bcc980876ff2f92628352f45

ASCII text, with CRLF line terminators

__init__.py

d41d8cd98f00b204e9800998ecf8427e

addon.xml

3929345bdcd26bbf618b9df2bfbe2435

XML 1.0 document, Unicode text, UTF-8 text, with very long lines (515), with CRLF line terminators

context.py

833d11d902ca601198a3f2e371703cc0

ASCII text, with very long lines (6734), with CRLF line terminators

fanart.gif

b850858fed286ddb8c908510a184c9ac

GIF image data, version 89a, 500 x 250

icon.png

2aa874992680ca894e3d88302cf570bb

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

default.py

32629b12fa263fbb017d17ba7fb8ec3d

ASCII text, with very long lines (1440), with CRLF line terminators

__init__.py

4db89a7edd75cae2e5f490c9e519d4a5

ASCII text, with CRLF line terminators

ioO0O0oo.md

ef29f7cbb83298a3351b5b35d15c4336

ASCII text, with very long lines (36489), with no line terminators

ioIi1iiI.md

ab6d5bcba2e1860e97496c5d579c1d3f

ASCII text, with very long lines (6034), with no line terminators

ioiIiII1I.md

6d7511241223e70aab9d3df4fd856697

ASCII text, with very long lines (64408), with no line terminators

ioIiI11i.md

50cbd87fb302b8b9d19fed3b820e51c5

Hewlett-Packard Graphics Language, starting with "BPJ1EFdRlY;SU5Y<FmBbY&+XIv^)zW@ce#Fee}^ASY&Ta%FRLXL4m_"

ioOOOoo0oOO.md

5d9736cfa4250f949bf20d74eedbfd94

ASCII text, with very long lines (10759), with no line terminators

ioI1iiII11.md

b7d4e18171b968fac0992a3f764235e4

ASCII text, with very long lines (65536), with no line terminators

ioiiI1i11.md

9b6ac3dd1d82569cf210c5fc015179da

ASCII text, with very long lines (16519), with no line terminators

ioIIiI1.md

2357f728ba2b655f7864125420d47c74

ASCII text, with very long lines (12263), with no line terminators

ioiI1ii11I.md

85251369bcd3c8b11768dc1cd60aedd9

ASCII text, with very long lines (9128), with no line terminators

ioIiiiI.md

d39201bd1332590405653874c3928dbd

ASCII text, with very long lines (11767), with no line terminators

ioi1IiI.md

0d0da4b6993f0c06b13e563b32ae4120

ASCII text, with very long lines (14659), with no line terminators

ioII1i1.md

a904ba244a2b2a11387e38235fdfb7ce

ASCII text, with very long lines (29623), with no line terminators

settings.xml

187808d55a002102a207e13361722226

XML 1.0 document, ASCII text, with CRLF line terminators

strings.po

d7dfe666b8fd28666a366041534e032c

GNU gettext message catalogue, ASCII text, with CRLF line terminators

strings.po

2d200fdfdcea87e9d50e7397a5e6f004

GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF line terminators

3d.png

a40193b2f61f18272725259e10711244

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

4k.png

d5336a4ad215d0dd5ae4e7cdc3f295c0

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

Captura1.png

8be2932f790aa9009c1344d35c2c96cb

PNG image data, 300 x 205, 8-bit/color RGBA, non-interlaced

Captura2.png

bdbffab85e742c8ab53350618ddae04d

PNG image data, 300 x 205, 8-bit/color RGBA, non-interlaced

Captura3.png

ea200728068a97ec8b54dc5fc9a1746b

PNG image data, 300 x 205, 8-bit/color RGBA, non-interlaced

Captura4.png

2a2e8cb26797d8c18bfb8b1e5e4382e1

PNG image data, 300 x 205, 8-bit/color RGBA, non-interlaced

anime.png

0bf4980c80fe37186131ec813cd56b1a

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

buscar.png

77fad02fd85a0a0f3740a7326fdbefe9

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

dibujos.png

dc19767ae88b18bb81a43c97a6e6bcac

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

documentales.png

f8f82bb5ec470948519c5eaa49228cc6

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

fanart.gif

b850858fed286ddb8c908510a184c9ac

GIF image data, version 89a, 500 x 250

fav.png

00955d60f3c02775822d6215ef0205be

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

hd.png

770ac19f61413eb6716257032e664530

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

icon.png

2aa874992680ca894e3d88302cf570bb

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

musica.png

c59a62968f1bd34480c8f1bc0c3df433

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

peliculas.png

d149e15d5f073b3046820025f0bc3546

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

reajustes.png

1e9e1d722058c4a01767c5b9b81d59c9

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

rebuscar.png

77fad02fd85a0a0f3740a7326fdbefe9

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

sd.png

3834ababbd6d2323f9c34f20114a0866

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

series.png

e533fea0c28e49dc4b6e7d7524e07ea4

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

trakt.png

925a0d76e140323f7bd91c96899cae8b

PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced

RatingDialog.xml

faaf1e72096053879a39a3ab202537b0

XML 1.0 document, ASCII text, with CRLF line terminators

1.png

9115cf3c7972aa8aa8a745baf7edef9c

PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced

10.png

88fd07677b2797ff6fb1c80c3ded446c

PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced

2.png

402dd87167b2fc628c2cab8d1af69500

PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced

3.png

eb8483b4b28a7366d2561d55ee00f8bb

PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced

4.png

b99614772d6a05ed88d778a8a0167dc0

PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced

5.png

a333c70c76c4c830b4f64bc11e54d880

PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced

6.png

ef62cfe6544d45aa3f28a9aedc9b7616

PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced

7.png

fd12cac88813cf5ee1caba12022f93a9

PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced

8.png

4e971ee62d2dadbc521bfd90f72ca5b5

PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced

9.png

584d6bf13c481af170ffc8f58017b5c9

PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced

close-fo.png

90373559045b985d1ac2b5edbf25d44b

PNG image data, 128 x 64, 8-bit/color RGBA, non-interlaced

close-nofo.png

8edd3894ea2078b65640f63e7f615b7c

PNG image data, 128 x 64, 8-bit/color RGBA, non-interlaced

trakt-bg-fade.png

63bfd556c4891e4f1e2961de7e1be644

PNG image data, 2200 x 2200, 8-bit/color RGBA, non-interlaced

trakt-bg.png

7e70f53dd1047ac6fd8a3ce9a3bd1540

PNG image data, 1200 x 500, 8-bit/color RGBA, non-interlaced

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Detects hex encoded code that has been base64 encoded
Public Nextron YARA rules	malware	Detects hex encoded code that has been base64 encoded

JavaScript (0)

HTTP Transactions (8)

	URL	IP	Response	Size
	r10.o.lencr.org/	23.36.76.226		504 B
URL r10.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash b6ecb6018a51380d08a47460236a395c 1ce7fe77c21188624302a660a289fe1ce6e7a9e4 ec876edd163ea26b47c9b862c795844f5dd01452095287ea5cd920e3b512672a HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "EC876EDD163EA26B47C9B862C795844F5DD01452095287EA5CD920E3B512672A" Last-Modified: Wed, 25 Sep 2024 21:19:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12037 Expires: Fri, 27 Sep 2024 19:49:54 GMT Date: Fri, 27 Sep 2024 16:29:17 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.76.226		504 B
URL r10.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 5aee3852a7feb4c1c70871e744659b43 07bf00512adc3d8f581d4aca29663dffaa2dad0c 664d69f7330fcc9c50debeb0e8a9d50b6990630fde4e95d471c4e6d5ebbe77a0 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "664D69F7330FCC9C50DEBEB0E8A9D50B6990630FDE4E95D471C4E6D5EBBE77A0" Last-Modified: Fri, 27 Sep 2024 06:01:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14477 Expires: Fri, 27 Sep 2024 20:30:34 GMT Date: Fri, 27 Sep 2024 16:29:17 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.76.226		504 B
URL r10.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 17ffcaca62598c6aab97a74c0d0cbe32 173277ebc6be18fd6412a65cf3b9a2a7ea52c84d ab3af84837ec9d381e8364a2d38d1b9ebc5af96d42161f76c6100120bc623094 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "AB3AF84837EC9D381E8364A2D38D1B9EBC5AF96D42161F76C6100120BC623094" Last-Modified: Fri, 27 Sep 2024 05:48:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3174 Expires: Fri, 27 Sep 2024 17:22:11 GMT Date: Fri, 27 Sep 2024 16:29:17 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.76.226		504 B
URL r10.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 51a45c4d7c6a4157f0fc92c2b6e3b6fa da42e65eb69e43b6691b3f4cc88302d81779a8e1 d5c222286765e84de5de422e2b57d9f51173aba2934ded5a2ed579794b7b3604 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "D5C222286765E84DE5DE422E2B57D9F51173ABA2934DED5A2ED579794B7B3604" Last-Modified: Fri, 27 Sep 2024 01:36:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14497 Expires: Fri, 27 Sep 2024 20:30:54 GMT Date: Fri, 27 Sep 2024 16:29:17 GMT Connection: keep-alive`

	palantirsource.github.io/palantir/plugin.video.palantir3-3.1.3.zip	185.199.109.153	200 OK	4.8 MB
URL User Request GET HTTP/2 palantirsource.github.io/palantir/plugin.video.palantir3-3.1.3.zip IP 185.199.109.153:443 ASN #54113 FASTLY Certificate IssuerDigiCert Inc Subject.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT File type Zip archive data, at least v2.0 to extract, compression method=deflate Size 4.8 MB (4753056 bytes) Hash 8c767424f600f5c9fe7a7a929b32ba07 8774206f9939cf15438f5757a19fee36fa553038 2b6eaa5bb340e679b1372d8a7cd37c842974d92615ce1c96696382f84241c500 HTTP Headers GET /palantir/plugin.video.palantir3-3.1.3.zip HTTP/1.1 Host: palantirsource.github.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: GitHub.com content-type: application/zip permissions-policy: interest-cohort=() last-modified: Sun, 28 Apr 2024 15:01:14 GMT access-control-allow-origin: strict-transport-security: max-age=31556952 etag: "662e64ba-4886a0" expires: Fri, 27 Sep 2024 16:39:17 GMT cache-control: max-age=600 x-proxy-cache: MISS x-github-request-id: 6AEB:29B81:A948A9:ADAF72:66F6DD5D accept-ranges: bytes age: 0 date: Fri, 27 Sep 2024 16:29:18 GMT via: 1.1 varnish x-served-by: cache-hel1410030-HEL x-cache: MISS x-cache-hits: 0 x-timer: S1727454558.792495,VS0,VE249 vary: Accept-Encoding x-fastly-request-id: 1d41e155b4b7878036a68ea0c657b675e69ca79b content-length: 4753056 X-Firefox-Spdy: h2

	r11.o.lencr.org/	23.36.77.32		504 B
URL r11.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash dfedf5b10ed23db78cab4d0e5943dbbb 6e0d497c63bd73836ac42bb2fe0b859cdbfd1a5f d9ac18f65cd9e42c677c8607bfdc0811b73e6c711804f4b5ae78ac30a59c71a4 HTTP Headers `POST / HTTP/1.1 Host: r11.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "D9AC18F65CD9E42C677C8607BFDC0811B73E6C711804F4B5AE78AC30A59C71A4" Last-Modified: Fri, 27 Sep 2024 14:39:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17740 Expires: Fri, 27 Sep 2024 21:25:00 GMT Date: Fri, 27 Sep 2024 16:29:20 GMT Connection: keep-alive`

	r11.o.lencr.org/	23.36.77.32		504 B
URL r11.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash dfedf5b10ed23db78cab4d0e5943dbbb 6e0d497c63bd73836ac42bb2fe0b859cdbfd1a5f d9ac18f65cd9e42c677c8607bfdc0811b73e6c711804f4b5ae78ac30a59c71a4 HTTP Headers `POST / HTTP/1.1 Host: r11.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "D9AC18F65CD9E42C677C8607BFDC0811B73E6C711804F4B5AE78AC30A59C71A4" Last-Modified: Fri, 27 Sep 2024 14:39:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17740 Expires: Fri, 27 Sep 2024 21:25:00 GMT Date: Fri, 27 Sep 2024 16:29:20 GMT Connection: keep-alive`

	r11.o.lencr.org/	23.36.77.32		504 B
URL r11.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash dfedf5b10ed23db78cab4d0e5943dbbb 6e0d497c63bd73836ac42bb2fe0b859cdbfd1a5f d9ac18f65cd9e42c677c8607bfdc0811b73e6c711804f4b5ae78ac30a59c71a4 HTTP Headers `POST / HTTP/1.1 Host: r11.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "D9AC18F65CD9E42C677C8607BFDC0811B73E6C711804F4B5AE78AC30A59C71A4" Last-Modified: Fri, 27 Sep 2024 14:39:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17740 Expires: Fri, 27 Sep 2024 21:25:00 GMT Date: Fri, 27 Sep 2024 16:29:20 GMT Connection: keep-alive`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (59)

Detections

JavaScript (0)

HTTP Transactions (8)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers