Report - blevok.com/static/downloads/HTVR%20PC%20Streamer.zip

Report Overview

Visited public
2025-05-05 05:32:11
Tags
URL
blevok.com/static/downloads/HTVR%20PC%20Streamer.zip
Finishing URL
about:privatebrowsing
IP / ASN
167.114.144.195
#16276 OVH SAS
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
blevok.com	unknown	2020-12-08	2021-04-23	2024-02-12	520 B	18 MB	167.114.144.195

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
blevok.com/static/downloads/HTVR%20PC%20Streamer.zip
IP
167.114.144.195
ASN
#16276 OVH SAS

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
18 MB (18319458 bytes)
Hash
8b3e82094b4aa022aacd53546f6ad4c0
29e7e3fa997e8df40fba17dda24cc30bfe2ed3e5
1746584ab86ff586e77898bcc7dc1811ca2b08ef8952e4c0f6a3718ffcd41395

Archive (39)

Filename

Md5

File type

GameAssembly.dll

9d0ddeef133133d5dc3d679e8c88bde9

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

HTVR PC Streamer.exe

86571f8a896b427ab7e762cd2aa8584f

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

app.info

d46969ef32c24d7d58cd641e0b4cf67f

ASCII text

boot.config

07a13d47c887d191d96ebca717216a67

ASCII text

globalgamemanagers

6071b2aa3d5a0adbb6524aa428310b8d

data

globalgamemanagers.assets

5d7238a870db93b93c41ddd983a96f4c

data

globalgamemanagers.assets.resS

ec020ccd46110b6489060a49e6264d5d

data

Compat.browser

0d831c1264b5b32a39fa347de368fe48

exported SGML document, ASCII text, with CRLF, LF line terminators

DefaultWsdlHelpGenerator.aspx

f7be9f1841ff92f9d4040aed832e0c79

HTML document, ASCII text

machine.config

cad24142abba464dd90777c3d347ef88

XML 1.0 document, ASCII text, with very long lines (541)

settings.map

22c818a23169e12bd3c8587b6394c731

XML 1.0 document, ASCII text

web.config

2b6303c4f12762b71051db6e947f90a4

XML 1.0 document, ASCII text

Compat.browser

0d831c1264b5b32a39fa347de368fe48

exported SGML document, ASCII text, with CRLF, LF line terminators

DefaultWsdlHelpGenerator.aspx

f7be9f1841ff92f9d4040aed832e0c79

HTML document, ASCII text

machine.config

24c866ce8037fcdca2287234eddff637

XML 1.0 document, ASCII text, with very long lines (541)

settings.map

ba17ade8a8e3ee221377534c8136f617

XML 1.0 document, ASCII text

web.config

b127480ee9f0b8dab6a3f73ad79dd332

XML 1.0 document, ASCII text

Compat.browser

0d831c1264b5b32a39fa347de368fe48

exported SGML document, ASCII text, with CRLF, LF line terminators

DefaultWsdlHelpGenerator.aspx

f7be9f1841ff92f9d4040aed832e0c79

HTML document, ASCII text

machine.config

0869544722561f5aff0eefc83fc7b001

XML 1.0 document, ASCII text, with very long lines (541)

settings.map

ba17ade8a8e3ee221377534c8136f617

XML 1.0 document, ASCII text

web.config

08101241b15b53ef0ab908f6d388881f

XML 1.0 document, ASCII text

browscap.ini

378be809df7d15aac75a175693e25fbb

ASCII text

config

d9bc824737177af5792846f26507231c

ASCII text

config.xml

f34b330f20dce1bdcce9058fca287099

XML 1.0 document, ASCII text, with very long lines (334)

global-metadata.dat

8ec14cbfcc7baf77884eb806c5c8d3d9

data

mscorlib.dll-resources.dat

21d06dbc8af6432b2b49536ed30609af

data

System.Drawing.dll-resources.dat

5839e1b9e810e14b6107bc7c54fa9735

data

level0

828ddf24784ed8c87682946c9cfd10e6

data

FMDesktop.dll

b767b42ac4cd3bcb0c4d236f8ff81409

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

turbojpeg.dll

db23c4a6ea5ed53853d09fce16b7ccd8

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

resources.assets

2242a8d06848a649ea7d9327269d715c

Atari DEGAS Elite bitmap 640 x 400 x 2, color palette 0407 0036 16b0 0000 0015 ...

resources.assets.resS

6abf54f13b93b66f6de52b7a8a9ed3fd

data

unity default resources

76b3b15554fa6ee2bb6a07cc1f434879

data

unity_builtin_extra

7860f687a34ce9a066f03d6f77ff3312

data

sharedassets0.assets

896892b89417e1a4d3b48c1b470a2c34

data

sharedassets0.assets.resS

d7c421d165840bbcd3f1754515c1da09

data

UnityCrashHandler32.exe

4b030d354fea50f3d323a3be00d0372d

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

UnityPlayer.dll

21341f24fc4cb42ac3b9840cf62f4332

PE32 executable (DLL) (console) Intel 80386, for MS Windows, 7 sections

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
VirusTotal	suspicious	VirusTotal - Scan result 1/65

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

blevok.com/static/downloads/HTVR%20PC%20Streamer.zip

167.114.144.195

200 OK

18 MB

URL User Request GET
blevok.com/static/downloads/HTVR%20PC%20Streamer.zip
IP
167.114.144.195:443
ASN
#16276 OVH SAS

Certificate
IssuerLet's Encrypt
Subjectblevok.com
Fingerprint55:BB:24:E4:00:CE:37:1C:92:2A:3F:39:42:A2:28:A7:7F:EC:0E:90
ValidityTue, 08 Apr 2025 09:50:19 GMT - Mon, 07 Jul 2025 09:50:18 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
18 MB (18319458 bytes)
Hash
8b3e82094b4aa022aacd53546f6ad4c0
29e7e3fa997e8df40fba17dda24cc30bfe2ed3e5
1746584ab86ff586e77898bcc7dc1811ca2b08ef8952e4c0f6a3718ffcd41395

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/65

HTTP Headers

GET /static/downloads/HTVR%20PC%20Streamer.zip HTTP/1.1
Host: blevok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 05 May 2025 05:31:28 GMT
Content-Type: application/zip
Content-Length: 18319458
Connection: keep-alive
Content-Disposition: inline; filename="HTVR PC Streamer.zip"
Last-Modified: Thu, 05 Nov 2020 08:28:35 GMT
Cache-Control: no-cache
ETag: "1604564915.0-18319458-3301316250"

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (39)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers