Report Overview

  1. Visited public
    2024-11-23 01:23:24
    Tags
  2. URL

    github.com/Detanup01/gbe_fork/releases/latest/download/emu-win-release.7z

  3. Finishing URL

    about:privatebrowsing

  4. IP / ASN
    140.82.121.3

    #36459 GITHUB

    Title
    about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
17

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
github.com14232007-10-092016-07-132024-11-20
objects.githubusercontent.com1340602014-02-062021-11-012024-11-20
aus5.mozilla.org25481998-01-242015-10-272024-11-20

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


Mnemonic Secure DNS

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


Files detected

  1. URL

    objects.githubusercontent.com/github-production-release-asset-2e65be/830127839/9172d32b-cb8b-439b-b477-13894a810995?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20241123%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20241123T012248Z&X-Amz-Expires=300&X-Amz-Signature=a351ba89ac3d942785ffe9957a0dcf58e8ead2add9ec145d80fff50d3258d971&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3Demu-win-release.7z&response-content-type=application%2Foctet-stream

  2. IP

    185.199.109.133

  3. ASN

    #54113 FASTLY

  1. File type

    7-zip archive data, version 0.4

    Size

    10 MB (10303122 bytes)

  2. Hash

    301875962c1b9dd178a0f6349a400818

    5e8dcde48c00b076dc214aaa2bc4f8d0966a1a06

  1. Archive (93)

    2. FilenameMd5File type
    1_my_first_dll.dll
    d41d8cd98f00b204e9800998ecf8427e
    2_my_second_dll.dll
    d41d8cd98f00b204e9800998ecf8427e
    3_my_third_dll.dll
    d41d8cd98f00b204e9800998ecf8427e
    mod_file1
    d41d8cd98f00b204e9800998ecf8427e
    mod_file2
    d41d8cd98f00b204e9800998ecf8427e
    random_mod_file
    d41d8cd98f00b204e9800998ecf8427e
    CHANGELOG.md
    f97f1c87310fe42e24879bf876d9fbe0
    		ASCII text, with very long lines (327)
    CREDITS.md
    b65fa3c1e7249bf2c3ada6004e530bd2
    		ASCII text, with very long lines (460), with CRLF line terminators
    README.experimental.md
    84a702366d809a778e691d672daa7062
    		ASCII text, with very long lines (328)
    README.release.md
    e9887e46154bd716a3615067f678a141
    		ASCII text
    ColdClientLoader.ini
    916b23d0fec1b429b08fc3f18fc343a2
    		ASCII text, with CRLF line terminators
    load_order.txt
    03ffb4264d3db11cb8edf61ce913c6a4
    		ASCII text, with CRLF line terminators
    README.md
    55207eebe61cd5339750f43b81dfe522
    		ASCII text
    README.experimental_steamclient.md
    8d6549acd74f7427f996cbaa61f9cb4e
    		ASCII text
    account_avatar.EXAMPLE.jpg
    fafa340202b7f16015984c90062f7b2a
    		JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 184x184, components 3
    achievements_EXAMPLE.json
    43f5f12838b2b05a0a08e4ce681b08ba
    		JSON text data
    auto_accept_invite.EXAMPLE.txt
    73676ec8f00e2e2f68e039883b95bd89
    		ASCII text
    branches.EXAMPLE.json
    c4958997bb99e2dd111ac9b6db0c0c0c
    		JSON text data
    configs.app.EXAMPLE.ini
    9154c9b54986644820c9c81211bfee40
    		ASCII text
    configs.main.EXAMPLE.ini
    5b22b7e281d9e5468ccac13c95c6ca1b
    		ASCII text
    configs.overlay.EXAMPLE.ini
    aba7377c7f4c1ae72fb7fbc294b6fd39
    		magic text fragment for file(1) cmd, 1st line "# ----------------------------", 2nd line "# XXXXXXXXXXXXXXXXXXXXXXXXXXXX"
    configs.user.EXAMPLE.ini
    7ce8123327ba379d3acb62020cc7fa10
    		ASCII text
    button_a.png
    82edcac3c186dd2366101130cb565fb5
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    button_b.png
    388324635d98c7d64d17748b7d9ddeb1
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    button_x.png
    fabb09eb751085a0aab83058e049f9ee
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    button_y.png
    2d996ebd75689dce767625edfee08ced
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    shoulder_l.png
    e1aa5b8a915e4efd00f3db34219ff018
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    shoulder_r.png
    ad42aed0b371c0aea2bb3575314c459b
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_dpad_e.png
    ece817dc57251713560b3e716d5ba3c9
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_dpad_n.png
    2f6d9618d389513dc86a260bee683b22
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_dpad_s.png
    d36699e9277a79d6d4836414aad5b04e
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_dpad_w.png
    31166b5985ac5820165806e05f61f84b
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_l_click.png
    0a12bc4299c9503bdd275588e384f85d
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_l_move.png
    0c3fbb94fd1141818dc2d4490e141904
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_r_click.png
    ab9d13d190576d35a08bb68894510fbf
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_r_move.png
    e9e22da4b33830abf1dd8c8bb48b38e8
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    trigger_l_click.png
    404786bf294387522822db6c1621f20e
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    trigger_l_pull.png
    404786bf294387522822db6c1621f20e
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    trigger_r_click.png
    25080b78852bc865c04f195d8423a82a
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    trigger_r_pull.png
    25080b78852bc865c04f195d8423a82a
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    xbox_button_dpad_e.png
    904b6ec32e34107a6faa94ad1c40a5bf
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    xbox_button_dpad_move.png
    5012a82d6c684d28163419810d3d48f8
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    xbox_button_dpad_n.png
    e02b8eaa9ab4874a71bc63b24da9effb
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    xbox_button_dpad_s.png
    5ae0de37372666b1bba5d04be113f7d3
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    xbox_button_dpad_w.png
    0c7afee16f408b11c236919c8d2e36c0
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    xbox_button_select.png
    36343c70dc1321a371b24be06aa7ff44
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    xbox_button_start.png
    894c0f75570b457cf12e18ac3cf6cc30
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    InGameControls.txt
    d91839f4a9769454503cfdf294f0a427
    		ASCII text
    MenuControls.txt
    ed8f5f1732d99f7e81d9ea38d9cfa73a
    		ASCII text
    custom_broadcasts.EXAMPLE.txt
    ec00ab82710e7340b12f1c29a138e269
    		ASCII text
    default_items.EXAMPLE.json
    4e6a079263073d6eab3baf11104e8645
    		JSON text data
    depots.EXAMPLE.txt
    73234bfaaa538824cc6b0dc062fbf34c
    		ASCII text
    README.md
    aebfda63f3a1e7c4d1f9842dfaae143b
    		ASCII text, with no line terminators
    Roboto-Medium-LICENSE.txt
    d273d63619c9aeaf15cdaf76422c4f87
    		ASCII text, with CRLF line terminators
    Roboto-Medium.ttf
    68ea4734cf86bd544650aee05137d7bb
    		TrueType Font data, 18 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.Roboto MediumRegularVersion 2.137; 2017Roboto-Med
    token
    080cccc1a57f943293be2a1ce3f90f77
    		JSON text data
    installed_app_ids.EXAMPLE.txt
    ad6378120a517a60e6a3e23384d2cdd5
    		ASCII text
    items.EXAMPLE.json
    1d50b0c39df6f24efebd45b0e00654ca
    		JSON text data
    leaderboards.EXAMPLE.txt
    b7753638a0b72c45212818a725751f88
    		ASCII text
    Readme.txt
    c2d8aa8668b7ba353b43ee4957b1c98b
    		ASCII text, with no line terminators
    mods.EXAMPLE.json
    34b120f29965348161cb93c76141c6e5
    		JSON text data
    my_preview_image.jpg
    fafa340202b7f16015984c90062f7b2a
    		JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 184x184, components 3
    README.md
    0062022f5417093802b84e175aa6cac6
    		ASCII text, with no line terminators
    LICENSE.md
    12321751c38e35f4722a9961fcd82748
    		ASCII text
    README.md
    2699586e15c76a73c8fe97300b757fc9
    		ASCII text
    stats.EXAMPLE.txt
    ec53c81e294487435f705f1fe473da79
    		ASCII text
    steam_appid.EXAMPLE.txt
    e48e13207341b6bffb7fb1622282247b
    		ASCII text, with no line terminators
    steam_interfaces.EXAMPLE.txt
    06a47a21f1af5a7fb5a0623c5f92325d
    		ASCII text, with CRLF line terminators
    subscribed_groups.EXAMPLE.txt
    5eeccd9aa2ca04ad8b5f6d89720065b4
    		ASCII text
    subscribed_groups_clans.EXAMPLE.txt
    e4b1fe99c19e2da0fefbfb2f52a05a90
    		ASCII text, with no line terminators
    supported_languages.EXAMPLE.txt
    087d2c701260aeb3845fca9fd9f0a580
    		ASCII text
    README.generate_interfaces.md
    5dee8646091be6e999fb6d7cd7bf75b1
    		ASCII text
    README.lobby_connect.md
    1200bbe34e6acb8e5ab77ba12de4eb28
    		ASCII text
    overlay_achievement_notification.wav
    4ebb633927148696d8cdc4228171c05e
    		RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz
    overlay_friend_notification.wav
    4ebb633927148696d8cdc4228171c05e
    		RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz
    steamclient.dll
    7626464e3b11e57b3e2566dbdd21a620
    		PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections
    steam_api.dll
    01d649bed5674196fb87f307679e6e18
    		PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections
    steamclient64.dll
    79ec72574d8e24620afe0278351ff7d9
    		PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections
    steam_api64.dll
    450a56d9bd2767deb220cfdd41333e30
    		PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 8 sections
    steam_api.dll
    935a0af144f8c7a8e4ddeb276cb14016
    		PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections
    steam_api64.dll
    31ffdd0d0226cbbeeb54bbdde3d36657
    		PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections
    steamclient_extra_x32.dll
    062c987504e9694097c00660b17628de
    		PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections
    steamclient_extra_x64.dll
    b50c1c1e0a67c738db149e68ddbb9254
    		PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 8 sections
    GameOverlayRenderer.dll
    f28daa14289df44543db39ebf524dbe3
    		PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections
    GameOverlayRenderer64.dll
    e8beb9180d36e851d9557ec2d2fdb845
    		PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections
    steamclient.dll
    7d1d184d04cdf96e650a6093f18d89a6
    		PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections
    steamclient64.dll
    b7f0aa68458b5ecebe11993b4c7e7c9b
    		PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 8 sections
    steamclient_loader_x32.exe
    d304f6762d3587230f9ac02525049596
    		PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections
    steamclient_loader_x64.exe
    4b4edb927bd867776a555efc3f0b510e
    		PE32+ executable (GUI) x86-64, for MS Windows, 6 sections
    generate_interfaces_x32.exe
    5e46418068b0bbc4bce3ecf6d459054b
    		PE32 executable (console) Intel 80386, for MS Windows, 5 sections
    generate_interfaces_x64.exe
    8ff00c50ccba2a8438d334185c9e46c8
    		PE32+ executable (console) x86-64, for MS Windows, 6 sections
    lobby_connect_x32.exe
    6db0dff42329ca53a159672a7159f7a7
    		PE32 executable (console) Intel 80386, for MS Windows, 5 sections
    lobby_connect_x64.exe
    e6d326cd03b54be41a35e68cead8942f
    		PE32+ executable (console) x86-64, for MS Windows, 6 sections

    Detections

    AnalyzerVerdictAlert
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    win_amadey_bytecodes_oct_2023
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    win_amadey_bytecodes_oct_2023
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe

JavaScript (0)

HTTP Transactions (4)

URLIPResponseSize
github.com/Detanup01/gbe_fork/releases/latest/download/emu-win-release.7z
140.82.121.3302 Found0 B
github.com/Detanup01/gbe_fork/releases/download/release-2024_11_09_2/emu-win-release.7z
140.82.121.3302 Found0 B
objects.githubusercontent.com/github-production-release-asset-2e65be/830127839/9172d32b-cb8b-439b-b477-13894a810995?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20241123%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20241123T012248Z&X-Amz-Expires=300&X-Amz-Signature=a351ba89ac3d942785ffe9957a0dcf58e8ead2add9ec145d80fff50d3258d971&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3Demu-win-release.7z&response-content-type=application%2Foctet-stream
185.199.109.133200 OK10 MB
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
35.244.181.201200 OK444 B