Report - bhs.baixefacil.com.br/arquivos/windows/jogos/Free-for-Fall.exe?bfAuth=c2VydmVyX3RpbWU9Ni8yOS8yMDI0IDU6MjU6MjQgUE0maGFzaF92YWx1ZT1WS3I2VFVmMHcrc3M1ZGRrcTFVOWx3PT0mdmFsaWRtaW51dGVzPTIw

Report Overview

Visitedpublic

2024-07-07 00:48:29

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-07-06 18:12:32	2.9 kB	8.0 kB	23.36.76.226
bhs.baixefacil.com.br	unknown	2015-03-28	2017-04-12 04:21:46	2024-04-17 03:59:01	636 B	19 MB	104.26.1.116

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2024-07-07	medium	bhs.baixefacil.com.br/arquivos/windows/jogos/Free-for-Fall.exe?bfAuth=c2VydmVyX3RpbWU9Ni8yOS8yMDI0IDU6MjU6MjQgUE0maGFzaF92YWx1ZT1WS3I2VFVmMHcrc3M1ZGRrcTFVOWx3PT0mdmFsaWRtaW51dGVzPTIw	detect_Redline_Stealer

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

bhs.baixefacil.com.br/arquivos/windows/jogos/Free-for-Fall.exe?bfAuth=c2VydmVyX3RpbWU9Ni8yOS8yMDI0IDU6MjU6MjQgUE0maGFzaF92YWx1ZT1WS3I2VFVmMHcrc3M1ZGRrcTFVOWx3PT0mdmFsaWRtaW51dGVzPTIw

IP / ASN

104.26.1.116

#13335 CLOUDFLARENET

File Overview

File TypePE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

Size19 MB (19421184 bytes)

MD52b26cac893e7bd8b80a63ed3383f9cb0

SHA1c25182827eb82be129c017ce2efc6836ac4370d5

SHA25603369d65003aff13ae6a969897ce86386787dc8ba9fc1ab1767acbf3873aa895

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	detect_Redline_Stealer
VirusTotal	suspicious	VirusTotal - Scan result 2/68

JavaScript (0)

HTTP Transactions (10)

	URL	IP	Response	Size