Report Overview
Visitedpublic
2025-05-01 00:25:53
Tags
Submit Tags
URL
www.winimage.com/wimait40.zip
Finishing URL
about:privatebrowsing
IP / ASN
205.251.81.217
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
www.winimage.com | unknown | 1996-11-29 | 2015-08-05 | 2025-04-26 | 497 B | 69 kB | 205.251.81.217 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
www.winimage.com/wimait40.zip
IP / ASN
205.251.81.217
File Overview
File TypeZip archive data, at least v2.0 to extract, compression method=deflate
Size69 kB (69040 bytes)
MD5b0559e6e7a63ec97caa1ce3cd2bd36c8
SHA187e1b17bed3cd0e2a6bb584950e3aa5b0468945b
Archive (5)
| Filename | MD5 | File type |
|---|---|---|
| WINIMAIT.HLP | 6558a2361038ce9d322622bc1509140f | MS Windows 3.1 help, Thu Aug 21 18:26:24 1997, 72197 bytes |
| WINIMAIT.CNT | 2ec95cb1c2a323fa0ffe48179da4f2c5 | MS Windows help file Content, based "winimait.hlp", ISO-8859 text, with CRLF line terminators |
| WINIMAIT.T32 | d2456104e91937105a1f70a41599d758 | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 2 sections |
| FILE_ID.DIZ | d349f73bffa33c481a7bd45d034e61ca | ASCII text, with CRLF line terminators |
| README.TXT | e6388d9c2e335ecb562c3741e6c58914 | ASCII text, with CRLF line terminators |
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | Detect pe file that no import table |
JavaScript (0)
No Javascripts found
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size | |
|---|---|---|---|---|
GET www.winimage.com/wimait40.zip | 205.251.81.217 | 200 OK | 69 kB | |
URL www.winimage.com/wimait40.zip IP / ASN 205.251.81.217 Requested byN/A Resource Info File typeZip archive data, at least v2.0 to extract, compression method=deflate First Seen2025-05-01 Last Seen2025-05-01 Times Seen1 Size69 kB (69040 bytes) MD5b0559e6e7a63ec97caa1ce3cd2bd36c8 SHA187e1b17bed3cd0e2a6bb584950e3aa5b0468945b SHA256823cc7372af1f76958d6f8f2841b3cb9d18659adf5ea41c31c0f4e3883f2396d Certificate Info IssuerLet's Encrypt Subjectclb.winimage.com FingerprintFF:DB:35:59:3D:1E:49:01:EF:F8:63:A7:3F:D8:98:3D:EC:51:8F:30 ValidityTue, 29 Apr 2025 10:09:51 GMT - Mon, 28 Jul 2025 10:09:50 GMT HTTP Headers | ||||