Report Overview
Visitedpublic
2025-05-13 17:57:09
Tags
Submit Tags
URL
dosign.it.com/verification/s.php?an=2
Finishing URL
about:privatebrowsing
IP / ASN
172.67.190.220
#13335 CLOUDFLARENET
Title
about:privatebrowsing

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Host Summary

HostRankRegisteredFirst SeenLast Seen
dosign.it.com
unknown1992-10-232025-05-132025-05-13

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


File detected

URL
dosign.it.com/verification/s.php?an=2
IP / ASN
172.67.190.220
#13335 CLOUDFLARENET
File Overview
File TypeZip archive data, at least v2.0 to extract, compression method=deflate
Size2.3 MB (2314075 bytes)
MD56005bc33e2d5de87aab3227f752cc463
SHA147859cd3045ed12f320abbdb1904c1281afa25ed
Archive (16)
FilenameMD5File type
api-ms-win-crt-convert-l1-1-0.dll4d44f878d747363c6a34bf3609bbd663PE32 executable (DLL) (console) Intel 80386, for MS Windows, 3 sections
api-ms-win-crt-environment-l1-1-0.dll06581caa794c774d61ba8bbe9154c2d2PE32 executable (DLL) (console) Intel 80386, for MS Windows, 3 sections
api-ms-win-crt-filesystem-l1-1-0.dllc03e51d51d33076f2417171435914902PE32 executable (DLL) (console) Intel 80386, for MS Windows, 3 sections
api-ms-win-crt-heap-l1-1-0.dllad849152885a1a91438cd1d141fa3802PE32 executable (DLL) (console) Intel 80386, for MS Windows, 3 sections
api-ms-win-crt-locale-l1-1-0.dllfd956e443255c677f917d503f5c391d9PE32 executable (DLL) (console) Intel 80386, for MS Windows, 3 sections
api-ms-win-crt-math-l1-1-0.dllac091f3a6dfa5ca6a26ec73672679aabPE32 executable (DLL) (console) Intel 80386, for MS Windows, 3 sections
api-ms-win-crt-multibyte-l1-1-0.dll5a791871b5ca66421f3420e773015470PE32 executable (DLL) (console) Intel 80386, for MS Windows, 3 sections
api-ms-win-crt-runtime-l1-1-0.dllaa7af0b906336d221759d87da3ccdf66PE32 executable (DLL) (console) Intel 80386, for MS Windows, 3 sections
api-ms-win-crt-stdio-l1-1-0.dll485d0124e2645488d4594ca726dbbc34PE32 executable (DLL) (console) Intel 80386, for MS Windows, 3 sections
api-ms-win-crt-string-l1-1-0.dllf23a085644371e2622b380d589a5a9f7PE32 executable (DLL) (console) Intel 80386, for MS Windows, 3 sections
api-ms-win-crt-time-l1-1-0.dlla66bde5881977305bddcd50893ff037bPE32 executable (DLL) (console) Intel 80386, for MS Windows, 3 sections
curl.exec2817422c50a8060aca9cc2ccbb0a2d0PE32 executable (console) Intel 80386, for MS Windows, 8 sections
jp2launcher.exed3c216ddb0d7d84bdd599e1b2bee320cPE32 executable (GUI) Intel 80386, for MS Windows, 5 sections
msvcp140.dll408e96b7ebb3cb972b90622391607cedPE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections
msvcp140d.dlldc739066c9d0ca961cba2f320cade28ePE32 executable (DLL) (console) Intel 80386, for MS Windows, 5 sections
vcruntime140.dll1d4ff3cf64ab08c66ae9a4013c89a3acPE32 executable (DLL) (console) Intel 80386, for MS Windows, 5 sections

Detections

AnalyzerVerdictAlert
YARAhub by abuse.chmalware
Detect pe file that no import table
YARAhub by abuse.chmalware
Detect pe file that no import table
YARAhub by abuse.chmalware
Detect pe file that no import table
YARAhub by abuse.chmalware
Detect pe file that no import table
YARAhub by abuse.chmalware
Detect pe file that no import table
YARAhub by abuse.chmalware
Detect pe file that no import table
YARAhub by abuse.chmalware
Detect pe file that no import table
YARAhub by abuse.chmalware
Detect pe file that no import table
YARAhub by abuse.chmalware
Detect pe file that no import table
YARAhub by abuse.chmalware
Detect pe file that no import table
YARAhub by abuse.chmalware
Detect pe file that no import table
YARAhub by abuse.chmalware
meth_stackstrings
VirusTotalsuspicious
VirusTotal - Scan result 3/65

JavaScript (0)

HTTP Transactions (1)

URLIPResponseSize