Report - paddleseg.bj.bcebos.com/dygraph/humanseg/train/pphumanseg_lite_generic

Report Overview

Visited public
2024-12-04 08:52:34
Tags
URL
paddleseg.bj.bcebos.com/dygraph/humanseg/train/pphumanseg_lite_generic_192x192.zip
Finishing URL
about:privatebrowsing
IP / ASN
103.235.47.176
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
paddleseg.bj.bcebos.com	unknown	2014-08-28	2024-12-04	2024-12-04	536 B	1.1 MB	103.235.47.176

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-12-04 08:52:25	medium	Client IP	192.169.69.26	ET INFO DYNAMIC_DNS HTTP Request to a *.duckdns .org Domain

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
paddleseg.bj.bcebos.com/dygraph/humanseg/train/pphumanseg_lite_generic_192x192.zip
IP
103.235.47.176
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
1.1 MB (1058730 bytes)
Hash
c91437d2ce15add4c6ff001814c0092f
8b40694a403c08e9677a503ba4fa8446251d62e8
07d552d80039b962a1648963d35b0d587335a4f03dd1ff96e5a7b046a33a4b21

Archive (1)

Filename

Md5

File type

model.pdparams

f051a13331a37917311f70b766789192

data

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Detects Pickle files with dangerous c_builtins or non standard module imports. These are indicators of possible malicious intent

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	paddleseg.bj.bcebos.com/dygraph/humanseg/train/pphumanseg_lite_generic_192x192.zip	103.235.47.176	200 OK	1.1 MB
URL User Request GET HTTP/1.1 paddleseg.bj.bcebos.com/dygraph/humanseg/train/pphumanseg_lite_generic_192x192.zip IP 103.235.47.176:443 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Certificate IssuerDigiCert Inc Subject.bj.bcebos.com Fingerprint0A:66:0B:99:0E:3F:D4:0B:61:10:AD:F0:1E:08:80:25:4E:E4:4C:A9 ValidityMon, 25 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT File type Zip archive data, at least v2.0 to extract, compression method=store Size 1.1 MB (1058730 bytes) Hash c91437d2ce15add4c6ff001814c0092f 8b40694a403c08e9677a503ba4fa8446251d62e8 07d552d80039b962a1648963d35b0d587335a4f03dd1ff96e5a7b046a33a4b21 HTTP Headers GET /dygraph/humanseg/train/pphumanseg_lite_generic_192x192.zip HTTP/1.1 Host: paddleseg.bj.bcebos.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Wed, 04 Dec 2024 08:52:10 GMT Content-Type: application/octet-stream Content-Length: 1058730 Connection: keep-alive Accept-Ranges: bytes ETag: "-3b20c5f4368b2c93c7ea9f8d94bc8029" Expires: Sat, 07 Dec 2024 08:52:10 GMT Last-Modified: Thu, 23 Sep 2021 09:19:44 GMT Server: BceBos x-bce-content-crc32: 1520172816 x-bce-debug-id: z6qZftUb+/dL66F3A1CQyhbEZXpq10hwdOgX/CelYfsEHzGhwdzXB9zSxzIYna9mIJuSgiQtbbouSmW3LV+ZcA== x-bce-flow-control-type: -1 x-bce-is-transition: false x-bce-request-id: c74efeda-b102-4ca9-842c-14efac98bec2 x-bce-storage-class: STANDARD

paddleseg.bj.bcebos.com/dygraph/humanseg/train/pphumanseg_lite_generic_192x192.zip

103.235.47.176

200 OK

1.1 MB

URL User Request GET HTTP/1.1
paddleseg.bj.bcebos.com/dygraph/humanseg/train/pphumanseg_lite_generic_192x192.zip
IP
103.235.47.176:443
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

Certificate
IssuerDigiCert Inc
Subject*.bj.bcebos.com
Fingerprint0A:66:0B:99:0E:3F:D4:0B:61:10:AD:F0:1E:08:80:25:4E:E4:4C:A9
ValidityMon, 25 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
1.1 MB (1058730 bytes)
Hash
c91437d2ce15add4c6ff001814c0092f
8b40694a403c08e9677a503ba4fa8446251d62e8
07d552d80039b962a1648963d35b0d587335a4f03dd1ff96e5a7b046a33a4b21

HTTP Headers

GET /dygraph/humanseg/train/pphumanseg_lite_generic_192x192.zip HTTP/1.1
Host: paddleseg.bj.bcebos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 04 Dec 2024 08:52:10 GMT
Content-Type: application/octet-stream
Content-Length: 1058730
Connection: keep-alive
Accept-Ranges: bytes
ETag: "-3b20c5f4368b2c93c7ea9f8d94bc8029"
Expires: Sat, 07 Dec 2024 08:52:10 GMT
Last-Modified: Thu, 23 Sep 2021 09:19:44 GMT
Server: BceBos
x-bce-content-crc32: 1520172816
x-bce-debug-id: z6qZftUb+/dL66F3A1CQyhbEZXpq10hwdOgX/CelYfsEHzGhwdzXB9zSxzIYna9mIJuSgiQtbbouSmW3LV+ZcA==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: c74efeda-b102-4ca9-842c-14efac98bec2
x-bce-storage-class: STANDARD

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (1)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers