Report Overview
Visitedpublic
2025-01-27 23:09:51
Tags
Submit Tags
URL
dl.zona-loader.ru/soft-portal/YandexPackLoader.exe
Finishing URL
about:privatebrowsing
IP / ASN
104.21.25.39
#13335 CLOUDFLARENET
Title
about:privatebrowsing

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Host Summary

HostRankRegisteredFirst SeenLast Seen
dl.zona-loader.ru
unknown2024-08-282025-01-272025-01-27

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules
SeverityIndicatorAlert
mediumdl.zona-loader.ru/soft-portal/YandexPackLoader.exefiles - file ~tmp01925d3f.exe

OpenPhish

No alerts detected


PhishTank

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


File detected

URL
dl.zona-loader.ru/soft-portal/YandexPackLoader.exe
IP / ASN
172.67.222.169
#13335 CLOUDFLARENET
File Overview
File TypePE32 executable (GUI) Intel 80386, for MS Windows, 7 sections
Size746 kB (745792 bytes)
MD52fc43167264825e3b46b9b3ad39b5dde
SHA18a406dc15b283193c45ea77bf04229a29c2a6361

Detections

AnalyzerVerdictAlert
YARAhub by abuse.chmalware
files - file ~tmp01925d3f.exe
VirusTotalmalicious
VirusTotal - Scan result 20/66

JavaScript (0)

HTTP Transactions (1)

URLIPResponseSize