Report - duinorasp.hansotten.com/uploads/prolific%20pl2303%20working%20drivers.zip

Report Overview

Visitedpublic

2023-10-14 14:41:46

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
duinorasp.hansotten.com	unknown	2004-02-23	2017-05-16 10:21:32	2023-06-13 12:12:18	445 B	89 kB	81.169.145.88

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-10-14 14:41:29	medium	81.169.145.88	Client IP	ET INFO TLS Handshake Failure
2023-10-14 14:41:29	medium	81.169.145.88	Client IP	ET INFO TLS Handshake Failure

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

duinorasp.hansotten.com/uploads/prolific%20pl2303%20working%20drivers.zip

IP / ASN

81.169.145.88

#6724 Strato AG

File Overview

File TypeZip archive data, at least v2.0 to extract, compression method=deflate\012- data

Size89 kB (88952 bytes)

MD5884d701a4adfe114ccdfe39f6016fa1f

SHA13c1d87b3c99a2ccf0a3693755141034a596d4d74

SHA25627d1470316413137e014b1ebe37015d8f346fb5c29da2251410f282d8f1852e3

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	GET duinorasp.hansotten.com/uploads/prolific%20pl2303%20working%20drivers.zip	81.169.145.88	200 OK	89 kB
URL duinorasp.hansotten.com/uploads/prolific%20pl2303%20working%20drivers.zip IP / ASN 81.169.145.88 #6724 Strato AG Requested byN/A Resource Info File typeZip archive data, at least v2.0 to extract, compression method=deflate\012- data First Seen2023-10-14 Last Seen2023-10-14 Times Seen1 Size89 kB (88952 bytes) MD5884d701a4adfe114ccdfe39f6016fa1f SHA13c1d87b3c99a2ccf0a3693755141034a596d4d74 SHA25627d1470316413137e014b1ebe37015d8f346fb5c29da2251410f282d8f1852e3 HTTP Headers `GET /uploads/prolific%20pl2303%20working%20drivers.zip HTTP/1.1 Host: duinorasp.hansotten.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sat, 14 Oct 2023 14:41:29 GMT Server: Apache/2.4.57 (Unix) Last-Modified: Sun, 29 Nov 2020 16:00:20 GMT ETag: "15b78-5b540fd8e365d" Accept-Ranges: bytes Content-Length: 88952 Keep-Alive: timeout=3, max=100 Connection: Keep-Alive Content-Type: application/zip`

GET duinorasp.hansotten.com/uploads/prolific%20pl2303%20working%20drivers.zip

81.169.145.88

200 OK

89 kB

URL

duinorasp.hansotten.com/uploads/prolific%20pl2303%20working%20drivers.zip

IP / ASN

81.169.145.88

#6724 Strato AG

Requested byN/A

Resource Info

File typeZip archive data, at least v2.0 to extract, compression method=deflate\012- data

First Seen2023-10-14

Last Seen2023-10-14

Times Seen1

Size89 kB (88952 bytes)

MD5884d701a4adfe114ccdfe39f6016fa1f

SHA13c1d87b3c99a2ccf0a3693755141034a596d4d74

SHA25627d1470316413137e014b1ebe37015d8f346fb5c29da2251410f282d8f1852e3

HTTP Headers

GET /uploads/prolific%20pl2303%20working%20drivers.zip HTTP/1.1
Host: duinorasp.hansotten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 14 Oct 2023 14:41:29 GMT
Server: Apache/2.4.57 (Unix)
Last-Modified: Sun, 29 Nov 2020 16:00:20 GMT
ETag: "15b78-5b540fd8e365d"
Accept-Ranges: bytes
Content-Length: 88952
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Content-Type: application/zip