Report - github.com/Detanup01/gbe_fork/releases/latest/download/emu-win-release.7z

Report Overview

Visitedpublic

2025-04-17 14:37:03

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
github.com	1423	2007-10-09	2016-07-13	2025-04-16	1.5 kB	21 MB	140.82.121.3
objects.githubusercontent.com	134060	2014-02-06	2021-11-01	2025-04-16	975 B	10 MB	185.199.108.133

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

objects.githubusercontent.com/github-production-release-asset-2e65be/830127839/e027a5bd-7675-4b50-9aa4-548344035f52?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20250417%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250417T143623Z&X-Amz-Expires=300&X-Amz-Signature=c6016a91ca5ae2650f84a74226b2ebb6a2f6aa28f868b75acbe846a67b90bc25&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3Demu-win-release.7z&response-content-type=application%2Foctet-stream

IP / ASN

185.199.108.133

#54113 FASTLY

File Overview

File Type7-zip archive data, version 0.4

Size10 MB (10405643 bytes)

MD5bc07587dbbb6b6486f8fd0508cb732cc

SHA1af3cac57e00c1fe738cf4a0edf9e950f91e2c366

SHA2568b68c6f9c22ca5ad275e8c892cedac7e32fede4493ee4d4d0dd8db7579e87515

Archive (93)

Modified	Filename	Size	MD5	File type
0001-01-01 00:00	1_my_first_dll.dll	0 B	d41d8cd98f00b204e9800998ecf8427e
0001-01-01 00:00	2_my_second_dll.dll	0 B	d41d8cd98f00b204e9800998ecf8427e
0001-01-01 00:00	3_my_third_dll.dll	0 B	d41d8cd98f00b204e9800998ecf8427e
0001-01-01 00:00	mod_file1	0 B	d41d8cd98f00b204e9800998ecf8427e
0001-01-01 00:00	mod_file2	0 B	d41d8cd98f00b204e9800998ecf8427e
0001-01-01 00:00	random_mod_file	0 B	d41d8cd98f00b204e9800998ecf8427e
0001-01-01 00:00	CHANGELOG.md	61 kB	f97f1c87310fe42e24879bf876d9fbe0	ASCII text, with very long lines (327)
0001-01-01 00:00	CREDITS.md	126 kB	b65fa3c1e7249bf2c3ada6004e530bd2	ASCII text, with very long lines (460), with CRLF line terminators
0001-01-01 00:00	README.experimental.md	2.0 kB	84a702366d809a778e691d672daa7062	ASCII text, with very long lines (328)
0001-01-01 00:00	README.release.md	16 kB	8f435aa97217b3f7f3e8e09cd96d14e1	ASCII text
0001-01-01 00:00	ColdClientLoader.ini	2.3 kB	916b23d0fec1b429b08fc3f18fc343a2	ASCII text, with CRLF line terminators
0001-01-01 00:00	load_order.txt	55 B	03ffb4264d3db11cb8edf61ce913c6a4	ASCII text, with CRLF line terminators
0001-01-01 00:00	README.md	178 B	55207eebe61cd5339750f43b81dfe522	ASCII text
0001-01-01 00:00	README.experimental_steamclient.md	6.4 kB	015105173ef0a27f92aa43624291b3d7	ASCII text
0001-01-01 00:00	account_avatar.EXAMPLE.jpg	3.4 kB	fafa340202b7f16015984c90062f7b2a	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 184x184, components 3
0001-01-01 00:00	achievements_EXAMPLE.json	67 kB	43f5f12838b2b05a0a08e4ce681b08ba	JSON text data
0001-01-01 00:00	auto_accept_invite.EXAMPLE.txt	54 B	73676ec8f00e2e2f68e039883b95bd89	ASCII text
0001-01-01 00:00	branches.EXAMPLE.json	709 B	c4958997bb99e2dd111ac9b6db0c0c0c	JSON text data
0001-01-01 00:00	configs.app.EXAMPLE.ini	1.2 kB	9154c9b54986644820c9c81211bfee40	ASCII text
0001-01-01 00:00	configs.main.EXAMPLE.ini	7.1 kB	5b22b7e281d9e5468ccac13c95c6ca1b	ASCII text
0001-01-01 00:00	configs.overlay.EXAMPLE.ini	5.1 kB	34d4b04a87b868acea873d27d6af9132	magic text fragment for file(1) cmd, 1st line "# ----------------------------", 2nd line "# XXXXXXXXXXXXXXXXXXXXXXXXXXXX"
0001-01-01 00:00	configs.user.EXAMPLE.ini	1.6 kB	7ce8123327ba379d3acb62020cc7fa10	ASCII text
0001-01-01 00:00	button_a.png	9.5 kB	82edcac3c186dd2366101130cb565fb5	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	button_b.png	8.6 kB	388324635d98c7d64d17748b7d9ddeb1	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	button_x.png	11 kB	fabb09eb751085a0aab83058e049f9ee	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	button_y.png	9.2 kB	2d996ebd75689dce767625edfee08ced	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	shoulder_l.png	2.7 kB	e1aa5b8a915e4efd00f3db34219ff018	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	shoulder_r.png	3.1 kB	ad42aed0b371c0aea2bb3575314c459b	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	stick_dpad_e.png	6.0 kB	ece817dc57251713560b3e716d5ba3c9	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	stick_dpad_n.png	6.0 kB	2f6d9618d389513dc86a260bee683b22	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	stick_dpad_s.png	6.0 kB	d36699e9277a79d6d4836414aad5b04e	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	stick_dpad_w.png	6.0 kB	31166b5985ac5820165806e05f61f84b	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	stick_l_click.png	6.4 kB	0a12bc4299c9503bdd275588e384f85d	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	stick_l_move.png	5.1 kB	0c3fbb94fd1141818dc2d4490e141904	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	stick_r_click.png	7.0 kB	ab9d13d190576d35a08bb68894510fbf	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	stick_r_move.png	5.8 kB	e9e22da4b33830abf1dd8c8bb48b38e8	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	trigger_l_click.png	1.8 kB	404786bf294387522822db6c1621f20e	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	trigger_l_pull.png	1.8 kB	404786bf294387522822db6c1621f20e	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	trigger_r_click.png	2.4 kB	25080b78852bc865c04f195d8423a82a	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	trigger_r_pull.png	2.4 kB	25080b78852bc865c04f195d8423a82a	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	xbox_button_dpad_e.png	6.0 kB	904b6ec32e34107a6faa94ad1c40a5bf	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	xbox_button_dpad_move.png	5.0 kB	5012a82d6c684d28163419810d3d48f8	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	xbox_button_dpad_n.png	5.9 kB	e02b8eaa9ab4874a71bc63b24da9effb	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	xbox_button_dpad_s.png	5.9 kB	5ae0de37372666b1bba5d04be113f7d3	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	xbox_button_dpad_w.png	6.0 kB	0c7afee16f408b11c236919c8d2e36c0	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	xbox_button_select.png	3.9 kB	36343c70dc1321a371b24be06aa7ff44	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	xbox_button_start.png	3.9 kB	894c0f75570b457cf12e18ac3cf6cc30	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
0001-01-01 00:00	InGameControls.txt	339 B	d91839f4a9769454503cfdf294f0a427	ASCII text
0001-01-01 00:00	MenuControls.txt	291 B	ed8f5f1732d99f7e81d9ea38d9cfa73a	ASCII text
0001-01-01 00:00	custom_broadcasts.EXAMPLE.txt	79 B	ec00ab82710e7340b12f1c29a138e269	ASCII text
0001-01-01 00:00	default_items.EXAMPLE.json	28 B	4e6a079263073d6eab3baf11104e8645	JSON text data
0001-01-01 00:00	depots.EXAMPLE.txt	43 B	73234bfaaa538824cc6b0dc062fbf34c	ASCII text
0001-01-01 00:00	README.md	93 B	aebfda63f3a1e7c4d1f9842dfaae143b	ASCII text, with no line terminators
0001-01-01 00:00	Roboto-Medium-LICENSE.txt	12 kB	d273d63619c9aeaf15cdaf76422c4f87	ASCII text, with CRLF line terminators
0001-01-01 00:00	Roboto-Medium.ttf	169 kB	68ea4734cf86bd544650aee05137d7bb	TrueType Font data, 18 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.Roboto MediumRegularVersion 2.137; 2017Roboto-Med
0001-01-01 00:00	token	473 B	080cccc1a57f943293be2a1ce3f90f77	JSON text data
0001-01-01 00:00	installed_app_ids.EXAMPLE.txt	462 B	3645e67d53159353bcbfeff3e3600191	ASCII text
0001-01-01 00:00	items.EXAMPLE.json	3.8 kB	1d50b0c39df6f24efebd45b0e00654ca	JSON text data
0001-01-01 00:00	leaderboards.EXAMPLE.txt	54 B	b7753638a0b72c45212818a725751f88	ASCII text
0001-01-01 00:00	Readme.txt	93 B	c2d8aa8668b7ba353b43ee4957b1c98b	ASCII text, with no line terminators
0001-01-01 00:00	mods.EXAMPLE.json	1.8 kB	c08cbc97cbec55a97b535804b76f8e30	JSON text data
0001-01-01 00:00	my_preview_image.jpg	3.4 kB	fafa340202b7f16015984c90062f7b2a	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 184x184, components 3
0001-01-01 00:00	README.md	95 B	0062022f5417093802b84e175aa6cac6	ASCII text, with no line terminators
0001-01-01 00:00	LICENSE.md	293 B	12321751c38e35f4722a9961fcd82748	ASCII text
0001-01-01 00:00	README.md	265 B	2699586e15c76a73c8fe97300b757fc9	ASCII text
0001-01-01 00:00	stats.EXAMPLE.txt	181 B	ec53c81e294487435f705f1fe473da79	ASCII text
0001-01-01 00:00	steam_appid.EXAMPLE.txt	4 B	e48e13207341b6bffb7fb1622282247b	ASCII text, with no line terminators
0001-01-01 00:00	steam_interfaces.EXAMPLE.txt	573 B	06a47a21f1af5a7fb5a0623c5f92325d	ASCII text, with CRLF line terminators
0001-01-01 00:00	subscribed_groups.EXAMPLE.txt	76 B	5eeccd9aa2ca04ad8b5f6d89720065b4	ASCII text
0001-01-01 00:00	subscribed_groups_clans.EXAMPLE.txt	40 B	e4b1fe99c19e2da0fefbfb2f52a05a90	ASCII text, with no line terminators
0001-01-01 00:00	supported_languages.EXAMPLE.txt	62 B	087d2c701260aeb3845fca9fd9f0a580	ASCII text
0001-01-01 00:00	README.generate_interfaces.md	717 B	5dee8646091be6e999fb6d7cd7bf75b1	ASCII text
0001-01-01 00:00	README.lobby_connect.md	972 B	1200bbe34e6acb8e5ab77ba12de4eb28	ASCII text
0001-01-01 00:00	overlay_achievement_notification.wav	303 kB	4ebb633927148696d8cdc4228171c05e	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz
0001-01-01 00:00	overlay_friend_notification.wav	303 kB	4ebb633927148696d8cdc4228171c05e	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz
0001-01-01 00:00	steamclient.dll	92 kB	c740978df4e88ed8d2bb02291c69d76c	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections
0001-01-01 00:00	steam_api.dll	15 MB	b59e79355a85102f83a22be0ff415f3e	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 8 sections
0001-01-01 00:00	steamclient64.dll	110 kB	00262d5542da04be1030ce5ce84aadc7	PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections
0001-01-01 00:00	steam_api64.dll	17 MB	b51b6b7cba3c7e5d44dd9cfdcf122aaf	PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 9 sections
0001-01-01 00:00	steam_api.dll	5.0 MB	82376f606f6a280614855c54c2c2e5e0	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections
0001-01-01 00:00	steam_api64.dll	6.2 MB	65ad03c3fdce9203b5959f9eac0c4cbb	PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections
0001-01-01 00:00	steamclient_extra_x32.dll	247 kB	780d5c238a0858f943477736c27269a9	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 8 sections
0001-01-01 00:00	steamclient_extra_x64.dll	302 kB	08d24d4f22c51346432857245c612448	PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 9 sections
0001-01-01 00:00	GameOverlayRenderer.dll	93 kB	4a1f2fb55725c5ceeb7be503a510f245	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections
0001-01-01 00:00	GameOverlayRenderer64.dll	111 kB	1de2bf5926b9e2b37ce2540d6cac6181	PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections
0001-01-01 00:00	steamclient.dll	15 MB	146a315c601d3f26eb4c150631593972	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 8 sections
0001-01-01 00:00	steamclient64.dll	17 MB	f18b5809b25051815bb13b27dc5c8fc8	PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 9 sections
0001-01-01 00:00	steamclient_loader_x32.exe	280 kB	b9730f4018b92aff0343bffda3bc80e9	PE32 executable (GUI) Intel 80386, for MS Windows, 6 sections
0001-01-01 00:00	steamclient_loader_x64.exe	343 kB	6d0360f2738082dc9cd162e8f4881cf4	PE32+ executable (GUI) x86-64, for MS Windows, 7 sections
0001-01-01 00:00	generate_interfaces_x32.exe	236 kB	32e709884856fac83da8c15e5c945ba6	PE32 executable (console) Intel 80386, for MS Windows, 6 sections
0001-01-01 00:00	generate_interfaces_x64.exe	291 kB	4d0152035ed1f37667ae397299ac0352	PE32+ executable (console) x86-64, for MS Windows, 7 sections
0001-01-01 00:00	lobby_connect_x32.exe	4.8 MB	77096551eb2c2ca433fddb3bc1a1c56f	PE32 executable (console) Intel 80386, for MS Windows, 6 sections
0001-01-01 00:00	lobby_connect_x64.exe	6.0 MB	0544718956d73b38991040ded98d72ca	PE32+ executable (console) x86-64, for MS Windows, 7 sections

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	win_amadey_bytecodes_oct_2023
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	win_amadey_bytecodes_oct_2023
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
VirusTotal	malicious	VirusTotal - Scan result 24/61

JavaScript (0)

HTTP Transactions (3)

URL IP Response Size

GET github.com/Detanup01/gbe_fork/releases/download/release-2025_03_27/emu-win-release.7z

140.82.121.3

302 Found

10 MB

URL

github.com/Detanup01/gbe_fork/releases/download/release-2025_03_27/emu-win-release.7z

IP / ASN

140.82.121.3

#36459 GITHUB

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606209

Size10 MB (10405643 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerSectigo Limited

Subjectgithub.com

FingerprintE4:33:71:DD:D6:91:4A:75:B6:1F:9E:4F:74:6D:9B:F0:DD:26:FC:3A

ValidityWed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT

HTTP Headers

GET /Detanup01/gbe_fork/releases/download/release-2025_03_27/emu-win-release.7z HTTP/1.1
Host: github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _gh_sess=ugTa4UCO9ZBaTCxsfXQFYBjAey0mFIJ8icwtzwePAWHn7YfcOyiPGLIhtm9nDN6bWp5Nf0dKwzyUzafKcj4rSByqOmRndP3F5mHyX3hNaOlAQXxzfom2dDQ060bE2vPkF15lgGdWxo03aaOBgxrXkSTmptCabmQ%2FjIJul5p3OaVinwlGQVcN8UEckXDLGqBfXJ%2FgRmgCatvMu8naMrg2I4l2zEY4GJvmE1vqBPc9k%2BPYmOca9Mzx8s%2FgQ7PKGaaYqOI5IGTRhsxTYrCkvCk3pw%3D%3D--BsVycWNvrOIos3tZ--mmpNCIsAGLR4HAIlE4uUcg%3D%3D; _octo=GH1.1.667450812.1744900583; logged_in=no
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 17 Apr 2025 14:36:23 GMT
content-type: text/html; charset=utf-8
content-length: 0
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame,Accept-Encoding, Accept, X-Requested-With
location: https://objects.githubusercontent.com/github-production-release-asset-2e65be/830127839/e027a5bd-7675-4b50-9aa4-548344035f52?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20250417%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250417T143623Z&X-Amz-Expires=300&X-Amz-Signature=c6016a91ca5ae2650f84a74226b2ebb6a2f6aa28f868b75acbe846a67b90bc25&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3Demu-win-release.7z&response-content-type=application%2Foctet-stream
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
x-github-request-id: 65E8:1E8239:8835EA:8AF733:680111E7
X-Firefox-Spdy: h2

GET objects.githubusercontent.com/github-production-release-asset-2e65be/830127839/e027a5bd-7675-4b50-9aa4-548344035f52?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20250417%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250417T143623Z&X-Amz-Expires=300&X-Amz-Signature=c6016a91ca5ae2650f84a74226b2ebb6a2f6aa28f868b75acbe846a67b90bc25&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3Demu-win-release.7z&response-content-type=application%2Foctet-stream

185.199.108.133

200 OK

10 MB

URL

IP / ASN

185.199.108.133

#54113 FASTLY

Requested byN/A

Resource Info

File type7-zip archive data, version 0.4

First Seen2025-03-28

Last Seen2025-04-17

Times Seen11

Size10 MB (10405643 bytes)

MD5bc07587dbbb6b6486f8fd0508cb732cc

SHA1af3cac57e00c1fe738cf4a0edf9e950f91e2c366

SHA2568b68c6f9c22ca5ad275e8c892cedac7e32fede4493ee4d4d0dd8db7579e87515

Certificate Info

IssuerSectigo Limited

Subject*.github.io

Fingerprint8C:FF:59:E5:8E:C4:FA:76:FE:AF:2D:C5:C0:D4:13:6A:77:2D:F9:91

ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 07 Mar 2026 23:59:59 GMT

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 24/61

HTTP Headers

GET /github-production-release-asset-2e65be/830127839/e027a5bd-7675-4b50-9aa4-548344035f52?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20250417%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250417T143623Z&X-Amz-Expires=300&X-Amz-Signature=c6016a91ca5ae2650f84a74226b2ebb6a2f6aa28f868b75acbe846a67b90bc25&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3Demu-win-release.7z&response-content-type=application%2Foctet-stream HTTP/1.1
Host: objects.githubusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Thu, 27 Mar 2025 14:57:54 GMT
etag: "0x8DD6D3FC11E9A78"
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a7ca4376-201e-005f-4328-9f5569000000
x-ms-version: 2025-01-05
x-ms-creation-time: Thu, 27 Mar 2025 14:57:54 GMT
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
content-disposition: attachment; filename=emu-win-release.7z
x-ms-server-encrypted: true
via: 1.1 varnish, 1.1 varnish
fastly-restarts: 1
accept-ranges: bytes
age: 2381
date: Thu, 17 Apr 2025 14:36:24 GMT
x-served-by: cache-iad-kjyo7100051-IAD, cache-hel1410030-HEL
x-cache: HIT, HIT
x-cache-hits: 3013, 0
x-timer: S1744900584.548966,VS0,VE100
content-length: 10405643
X-Firefox-Spdy: h2

GET github.com/Detanup01/gbe_fork/releases/latest/download/emu-win-release.7z

140.82.121.3

302 Found

10 MB

URL

github.com/Detanup01/gbe_fork/releases/latest/download/emu-win-release.7z

IP / ASN

140.82.121.3

#36459 GITHUB

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606209

Size10 MB (10405643 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerSectigo Limited

Subjectgithub.com

FingerprintE4:33:71:DD:D6:91:4A:75:B6:1F:9E:4F:74:6D:9B:F0:DD:26:FC:3A

ValidityWed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT

HTTP Headers

GET /Detanup01/gbe_fork/releases/latest/download/emu-win-release.7z HTTP/1.1
Host: github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 17 Apr 2025 14:36:23 GMT
content-type: text/html; charset=utf-8
content-length: 0
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame,Accept-Encoding, Accept, X-Requested-With
location: https://github.com/Detanup01/gbe_fork/releases/download/release-2025_03_27/emu-win-release.7z
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
set-cookie: _gh_sess=ugTa4UCO9ZBaTCxsfXQFYBjAey0mFIJ8icwtzwePAWHn7YfcOyiPGLIhtm9nDN6bWp5Nf0dKwzyUzafKcj4rSByqOmRndP3F5mHyX3hNaOlAQXxzfom2dDQ060bE2vPkF15lgGdWxo03aaOBgxrXkSTmptCabmQ%2FjIJul5p3OaVinwlGQVcN8UEckXDLGqBfXJ%2FgRmgCatvMu8naMrg2I4l2zEY4GJvmE1vqBPc9k%2BPYmOca9Mzx8s%2FgQ7PKGaaYqOI5IGTRhsxTYrCkvCk3pw%3D%3D--BsVycWNvrOIos3tZ--mmpNCIsAGLR4HAIlE4uUcg%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.667450812.1744900583; Path=/; Domain=github.com; Expires=Fri, 17 Apr 2026 14:36:23 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Fri, 17 Apr 2026 14:36:23 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: 65E8:1E8239:8834B1:8AF624:680111E6
X-Firefox-Spdy: h2