| GET romhustler.org/dlemu/nds/DuoS.zip |  172.67.177.224 | 200 OK | 396 kB |
URL User Request GET HTTP/2romhustler.org/dlemu/nds/DuoS.zip IP172.67.177.224:443
CertificateIssuerGoogle Trust Services Subjectromhustler.org Fingerprint8F:39:1D:D0:05:FA:D5:35:54:DA:79:EC:43:97:B4:01:EB:15:6D:FF ValidityTue, 14 Jan 2025 18:21:03 GMT - Mon, 14 Apr 2025 19:19:46 GMT
File typeZip archive data, at least v1.0 to extract, compression method=store Size396 kB (396102 bytes) Hashc4404f23fe722c8c958c158017e7c4b6 02779ea548b1ef85704ba8f07f7726448f5f8079 22acd84351c68521f990a4e7fc7ef32f2538f81da914a2ba48d48a0cc5dd35b0
| Analyzer | Verdict | Alert |
|---|
| VirusTotal | suspicious | |
GET /dlemu/nds/DuoS.zip HTTP/1.1
Host: romhustler.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 17 Jan 2025 22:52:09 GMT
content-type: application/zip
content-length: 396102
last-modified: Thu, 14 Mar 2013 17:23:04 GMT
etag: "51420778-60b46"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 10
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pos4hv0XefjMrte%2FPnhkYoZ0dFV%2BBhGZ6GXwsEARIFKlZaS80CvnaNRvQWmQAhH%2FSocHdJpuMN0Naj40bXhlzpJUP2HDKPamXqidrIchq56CUw3Rnd87M%2Bn5A3N2rvT7Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9039ea012c1b56b5-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfCacheStatus;desc="HIT", cfL4;desc="?proto=TCP&rtt=444&min_rtt=409&rtt_var=108&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3208&recv_bytes=1130&delivery_rate=8150093&cwnd=253&unsent_bytes=0&cid=3c2656426a1c9467&ts=28&x=0"
X-Firefox-Spdy: h2
|
| GET romhustler.net/dlemu/nds/DuoS.zip |  188.114.96.1 | 301 Moved Permanently | 396 kB |
URL User Request GET HTTP/2romhustler.net/dlemu/nds/DuoS.zip IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectromhustler.net Fingerprint2B:94:4A:0E:9C:4E:2E:96:6E:77:85:7B:66:EC:A4:90:C0:A5:E4:7B ValidityTue, 17 Dec 2024 08:42:01 GMT - Mon, 17 Mar 2025 09:39:18 GMT
Size396 kB (396102 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dlemu/nds/DuoS.zip HTTP/1.1
Host: romhustler.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Fri, 17 Jan 2025 22:52:09 GMT
content-type: text/html
location: https://romhustler.org/dlemu/nds/DuoS.zip
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gPXcUejzERaLCbDpir1VuhVOPApQNcwfi0IQyaH%2BQt3EW4BJA2Zd6cNiMnRnE4tIjje69DCzaKflZGP4h2M5oQ%2B%2FZAthJgXMuLVbfCTSzRFF3IUzyw0L%2FSSdV8v518Ot1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9039e9ff7be356ca-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5891&min_rtt=485&rtt_var=10848&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3208&recv_bytes=1130&delivery_rate=7941499&cwnd=254&unsent_bytes=0&cid=d3cd73322443048d&ts=248&x=0"
X-Firefox-Spdy: h2
|
188.114.96.1