Report - alyacloud.pro/release/scrcpy-windows-v3.1.zip

Report Overview

Visited public
2025-05-05 08:43:57
Tags
URL
alyacloud.pro/release/scrcpy-windows-v3.1.zip
Finishing URL
about:privatebrowsing
IP / ASN
172.67.163.245
#13335 CLOUDFLARENET
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
alyacloud.pro	unknown	2025-04-29	2025-05-05	2025-05-05	513 B	9.5 MB	188.114.97.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
alyacloud.pro/release/scrcpy-windows-v3.1.zip
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
9.5 MB (9455714 bytes)
Hash
bb5862d0aa2b59b9a01bc4658b80c23f
065ccd0365b05860d57263978a667260d8bac905
dc05bbc42386b0cf5319262af2322427bfffdc8ee96962225dbc1fc4a5099b4f

Archive (15)

Filename

Md5

File type

adb.exe

ae6975e7c2211152f5fa54a1fddf414d

PE32 executable (console) Intel 80386, for MS Windows, 7 sections

avcodec-61.dll

475d2b95355c04cf7a45381ff1e0641a

PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows, 12 sections

AdbWinUsbApi.dll

93a6075b7ae7d0df52ec55017a2f8214

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 4 sections

swresample-5.dll

864de3bc8a59611059971d6a9ac0dc09

PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows, 12 sections

scrcpy-console.bat

7b8d3b0d87dd886730d4993af807fae1

DOS batch file, ASCII text, with CRLF line terminators

avformat-61.dll

253aa9a030ce5fc6fde064cb0706f95b

PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows, 12 sections

AdbWinApi.dll

d2c034449be65653aec2459d9ab83ae5

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 4 sections

SDL2.dll

8b97d08c5a30fc30600e3a8824209baf

PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows, 12 sections

icon.png

9e1ffbd6d2630c3b89be2b9c19c29e8f

PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced

scrcpy-noconsole.vbs

a6adb14566ed94e5d80107aeb0fa5291

ASCII text, with CRLF line terminators

libusb-1.0.dll

bff63e43224b285c75da0e9cfbf0c6ba

PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows, 12 sections

scrcpy-server

b2d1245f74fc7d77c3370e847002cc95

Android package (APK), with gradle app-metadata.properties Zip archive data, at least v0.0 to extract, compression method=deflate

open_a_terminal_here.bat

98359f622a36689d7d76e00c28c5636f

ASCII text

scrcpy.exe

d2f93afaae03026303260b9b6a36d39f

PE32+ executable (GUI) x86-64, for MS Windows, 6 sections

avutil-59.dll

f1af569cbb790f0154e83795b686c4c2

PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows, 12 sections

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 37/67

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

alyacloud.pro/release/scrcpy-windows-v3.1.zip

188.114.97.1

200 OK

9.5 MB

URL User Request GET
alyacloud.pro/release/scrcpy-windows-v3.1.zip
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectalyacloud.pro
Fingerprint7B:BB:56:F8:C8:0F:FE:DD:FA:04:CC:B8:F5:A6:AA:15:5E:F8:1B:98
ValidityTue, 29 Apr 2025 07:01:40 GMT - Mon, 28 Jul 2025 07:59:18 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
9.5 MB (9455714 bytes)
Hash
bb5862d0aa2b59b9a01bc4658b80c23f
065ccd0365b05860d57263978a667260d8bac905
dc05bbc42386b0cf5319262af2322427bfffdc8ee96962225dbc1fc4a5099b4f

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 37/67

HTTP Headers

GET /release/scrcpy-windows-v3.1.zip HTTP/1.1
Host: alyacloud.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 08:43:22 GMT
content-type: application/zip
content-length: 9455714
server: cloudflare
accept-ranges: bytes
last-modified: Tue, 29 Apr 2025 08:17:51 GMT
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 93aef3267b0fb509-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (15)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers