Report Overview

  1. Visited public
    2024-11-15 02:38:26
    Tags
  2. URL

    jeffpotter.biz/PaymentAdvice.zip

  3. Finishing URL

    about:privatebrowsing

  4. IP / ASN
    192.185.89.127

    #19871 NETWORK-SOLUTIONS-HOSTING

    Title
    about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
jeffpotter.bizunknown2019-01-052024-11-152024-11-15

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


Mnemonic Secure DNS

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


Files detected

  1. URL

    jeffpotter.biz/PaymentAdvice.zip

  2. IP

    192.185.89.127

  3. ASN

    #19871 NETWORK-SOLUTIONS-HOSTING

  1. File type

    Zip archive data, at least v2.0 to extract, compression method=deflate

    Size

    990 kB (990086 bytes)

  2. Hash

    4d11d716efa31e9757de26577f5f8f75

    0c28b9298966b79af696def5aebff35c9b304a53

  1. Archive (1)

  2. FilenameMd5File type
    PaymentAdvice.scr
    a604e7037ef5bd61cdde2420b5462757
    PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

    Detections

    AnalyzerVerdictAlert
    VirusTotalmalicious

JavaScript (0)

HTTP Transactions (1)

URLIPResponseSize
jeffpotter.biz/PaymentAdvice.zip
192.185.89.127200 OK990 kB