Report - suwa.pupu.jp/data/RL

Report Overview

Visitedpublic

2024-11-05 10:32:52

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
suwa.pupu.jp	unknown	2002-07-02	2016-06-10	2024-11-05	484 B	188 kB	157.7.107.99

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Mnemonic Secure DNS

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

suwa.pupu.jp/data/RL_v11.zip

IP / ASN

157.7.107.99

#7506 GMO Internet,Inc

File Overview

File TypeZip archive data, at least v2.0 to extract, compression method=deflate

Size188 kB (187514 bytes)

MD583771194443112da01afea71fabbf0e5

SHA11eb17f27a0efe41c2ff19f779d993d5bd85d7c6b

SHA2565b08174c74acd155ff439e491a76b9c8a2a9f052aee7bf4f112c334dddd21571

Archive (3)

Modified	Filename	Size	MD5	File type
2006-07-24 22:00	RhythmicaLyrics.chm	75 kB	aff111988518badde553a1474da11d20	MS Windows HtmlHelp Data
2006-07-24 20:32	RhythmicaLyrics.exe	283 kB	381f6796d1b768614cb3da434f8f605c	PE32 executable (GUI) Intel 80386, for MS Windows, 4 sections
2006-05-21 04:42	TimeTag.htm	29 kB	6f42b70c27768ff4efb85b5a85951197	HTML document, Non-ISO extended-ASCII text, with very long lines (369), with LF, NEL line terminators

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/68

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

GET suwa.pupu.jp/data/RL_v11.zip

157.7.107.99

200 OK

188 kB

URL

suwa.pupu.jp/data/RL_v11.zip

IP / ASN

157.7.107.99

#7506 GMO Internet,Inc

Requested byN/A

Resource Info

File typeZip archive data, at least v2.0 to extract, compression method=deflate

First Seen2024-11-05

Last Seen2024-11-05

Times Seen1

Size188 kB (187514 bytes)

MD583771194443112da01afea71fabbf0e5

SHA11eb17f27a0efe41c2ff19f779d993d5bd85d7c6b

SHA2565b08174c74acd155ff439e491a76b9c8a2a9f052aee7bf4f112c334dddd21571

Certificate Info

IssuerLet's Encrypt

Subject*.main.jp

FingerprintB4:9A:81:0F:C7:3F:4A:B9:41:D5:FF:E3:3C:7C:0D:26:11:A6:B9:91

ValidityFri, 01 Nov 2024 04:06:28 GMT - Thu, 30 Jan 2025 04:06:27 GMT

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/68

HTTP Headers

GET /data/RL_v11.zip HTTP/1.1
Host: suwa.pupu.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Nov 2024 10:32:28 GMT
content-type: application/zip
server: Apache
last-modified: Thu, 07 Apr 2016 15:22:40 GMT
accept-ranges: none
vary: Range,Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2