Report - dl.comss.org/download/iventoy-1.0.20-win64-free.zip

Report Overview

Visitedpublic

2024-09-16 14:42:40

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-09-15 18:12:18	1.3 kB	3.6 kB	23.33.119.27
dl.comss.org	unknown	2019-03-28	2020-04-18 10:43:40	2024-04-18 06:32:51	505 B	10 MB	95.216.36.166
r11.o.lencr.org	unknown	2020-06-29	2024-06-07 07:43:57	2024-09-15 18:13:05	654 B	1.8 kB	23.33.119.57

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

dl.comss.org/download/iventoy-1.0.20-win64-free.zip

IP / ASN

95.216.36.166

#24940 Hetzner Online GmbH

File Overview

File TypeZip archive data, at least v1.0 to extract, compression method=store

Size10 MB (10317736 bytes)

MD59b6c6edd7ab3970f09d5f5110e20c374

SHA1761851da502c8b7829daa5cc007c90ed786b09af

SHA256be41a256b44c872cc15229e273b32f62e41e22371e14d6aefe7f5a72c0d3e51a

Archive (21)

Modified	Filename	Size	MD5	File type
2024-04-02 22:46	iventoy.dat	8.0 MB	1e29bfd2782590d1b5e024ac97e0cf78	OpenPGP Secret Key
2024-04-02 22:46	mac.db	7.1 MB	ee661e7e08971d815674992b3d361e74	data
2024-04-02 22:46	iVentoy_64.exe	1.2 MB	c1d16848508c3531dc2933bf13a1d74b	PE32+ executable (GUI) x86-64, for MS Windows, 7 sections
2024-04-02 22:46	pcre2-8-0.dll	342 kB	f454c1c449c33b4d936b49c83d4c5019	PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 5 sections
2024-04-02 22:46	libwim-15.dll	483 kB	e00fa5e9967055c31a62410fa4a758a2	PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows, 12 sections
2024-04-02 22:46	intl-8.dll	10 kB	d7ae0ef67563651f4a972dc02f2004c5	PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 5 sections
2024-04-02 22:46	libhivex.dll	52 kB	9ea5d0f8faeb2542260cd157ae372ef6	PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections
2024-04-02 22:46	glib-2.0-0.dll	1.3 MB	f2e1797482f7e450dab751bf1ae720fb	PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections
2024-04-02 22:46	LICENSE_CN.txt	2.3 kB	baba7b10155510b6951aa40bee9e2843	Unicode text, UTF-8 text, with CRLF line terminators
2024-04-02 22:46	LICENSE_EN.txt	1.3 kB	caa220e4db6812297f845299fdc778ca	ASCII text, with CRLF line terminators
2024-04-02 22:46	EULA_EN.txt	15 kB	133bb7dacf9d01dd21c797549d7e77db	ASCII text, with CRLF line terminators
2024-04-02 22:46	EULA_CN.txt	1.9 kB	0e9795db25b39b76f81a6cae0a5d985d	Unicode text, UTF-8 text, with CRLF line terminators
2024-04-02 22:46	autoYast.xml	7.2 kB	150021624865812947a60db314695f0c	XML 1.0 document, ASCII text, with CRLF line terminators
2024-04-02 22:46	unattended.xml	5.7 kB	01049c988d2aacef924a1f89dfd57476	XML 1.0 document, ASCII text, with CRLF line terminators
2024-04-02 22:46	preseed.cfg	3.7 kB	6c5b8700eb962a7bc1881951128fbe98	ASCII text
2024-04-02 22:46	kickstart8.cfg	729 B	1a253ef0b295372aecb3e7867fa5f333	ASCII text
2024-04-02 22:46	deepin.ini	303 B	2fddae83b3ac2ab89d1af68e214f56e6	ASCII text
2024-04-02 22:46	cloud-init-user-data	1.2 kB	681f358929a00345205b147a5fda1fe9	ASCII text
2024-04-02 22:46	openeuler.cfg	681 B	31eca85661f950457bea6423c00cf331	ASCII text
2024-04-02 22:46	kickstart7.cfg	1.0 kB	72b146f6f67ea7801eb648319442c5fb	ASCII text
2024-04-02 22:46	kickstart6.cfg	692 B	7d2b06111ab4f31d70213db7d6690b90	ASCII text

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_stackstrings

JavaScript (0)

HTTP Transactions (7)

	URL	IP	Response	Size