Report - meldaproduction.b-cdn.net/download/mpluginmanager/MPluginManager_02_09

Report Overview

Visitedpublic

2025-07-21 03:17:51

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
meldaproduction.b-cdn.net	unknown	2016-04-25	2024-04-10	2025-07-10	548 B	17 MB	79.127.216.111

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2025-07-21	medium	meldaproduction.b-cdn.net/download/mpluginmanager/MPluginManager_02_09_setup.exe	Detect pe file that no import table

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

meldaproduction.b-cdn.net/download/mpluginmanager/MPluginManager_02_09_setup.exe

IP / ASN

79.127.216.111

#60068 Datacamp Limited

File Overview

File TypePE32 executable (GUI) Intel 80386, for MS Windows, 11 sections

Size17 MB (16734064 bytes)

MD598330ec9a7bc9ef64a8b8904662da967

SHA10996b67997141b7a5d5c4ffaa3c39d2208260eb7

SHA256b11e8b7e5dbb5af31ab26e7a258959e8c24d8f657296c77252aacb14620266d4

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Detect pe file that no import table

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

GET meldaproduction.b-cdn.net/download/mpluginmanager/MPluginManager_02_09_setup.exe

79.127.216.111

200 OK

17 MB

URL

meldaproduction.b-cdn.net/download/mpluginmanager/MPluginManager_02_09_setup.exe

IP / ASN

79.127.216.111

#60068 Datacamp Limited

Requested byN/A

Resource Info

File typePE32 executable (GUI) Intel 80386, for MS Windows, 11 sections

First Seen2025-07-21

Last Seen2025-07-21

Times Seen2

Size17 MB (16734064 bytes)

MD598330ec9a7bc9ef64a8b8904662da967

SHA10996b67997141b7a5d5c4ffaa3c39d2208260eb7

SHA256b11e8b7e5dbb5af31ab26e7a258959e8c24d8f657296c77252aacb14620266d4

Certificate Info

IssuerSectigo Limited

Subject*.b-cdn.net

FingerprintBD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21

ValidityTue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Detect pe file that no import table

HTTP Headers

GET /download/mpluginmanager/MPluginManager_02_09_setup.exe HTTP/1.1
Host: meldaproduction.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 21 Jul 2025 03:17:28 GMT
content-type: application/octet-stream
content-length: 16734064
server: BunnyCDN-DE1-752
cdn-pullzone: 766137
cdn-uid: 84458324-c3e5-4bd6-b439-f6a33cb2085b
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 18 Jul 2025 08:19:54 GMT
cdn-storageserver: DE-1021
cdn-fileserver: 1102
cdn-proxyver: 1.32
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 07/18/2025 08:28:12
cdn-edgestorageid: 1047
cdn-requestid: 6c110041bdfdd82878d7addea5357336
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2