Report Overview

  1. Visited public
    2025-03-25 15:08:03
    Tags
  2. URL

    github.com/Detanup01/gbe_fork/releases/latest/download/emu-win-release.7z

  3. Finishing URL

    about:privatebrowsing

  4. IP / ASN
    140.82.121.3

    #36459 GITHUB

    Title
    about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
19

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
github.com14232007-10-092016-07-132025-03-19
objects.githubusercontent.com1340602014-02-062021-11-012025-03-19

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


Files detected

  1. URL

    objects.githubusercontent.com/github-production-release-asset-2e65be/830127839/f812955a-f648-4f88-8c39-d40e018e381f?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20250325%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250325T150726Z&X-Amz-Expires=300&X-Amz-Signature=1aea36989ca02b650e2248726cc01ddea40026ce3faec8516c62007f9c88807c&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3Demu-win-release.7z&response-content-type=application%2Foctet-stream

  2. IP

    185.199.111.133

  3. ASN

    #54113 FASTLY

  1. File type

    7-zip archive data, version 0.4

    Size

    10 MB (10410353 bytes)

  2. Hash

    83737f52f20fed1b03cc1edb0c6814ad

    3cc69fc890e7296984d1bfeb8e2e2d88f7eb5b91

  1. Archive (93)

    2. FilenameMd5File type
    1_my_first_dll.dll
    d41d8cd98f00b204e9800998ecf8427e
    2_my_second_dll.dll
    d41d8cd98f00b204e9800998ecf8427e
    3_my_third_dll.dll
    d41d8cd98f00b204e9800998ecf8427e
    mod_file1
    d41d8cd98f00b204e9800998ecf8427e
    mod_file2
    d41d8cd98f00b204e9800998ecf8427e
    random_mod_file
    d41d8cd98f00b204e9800998ecf8427e
    CHANGELOG.md
    f97f1c87310fe42e24879bf876d9fbe0
    		ASCII text, with very long lines (327)
    CREDITS.md
    b65fa3c1e7249bf2c3ada6004e530bd2
    		ASCII text, with very long lines (460), with CRLF line terminators
    README.experimental.md
    84a702366d809a778e691d672daa7062
    		ASCII text, with very long lines (328)
    README.release.md
    8f435aa97217b3f7f3e8e09cd96d14e1
    		ASCII text
    ColdClientLoader.ini
    916b23d0fec1b429b08fc3f18fc343a2
    		ASCII text, with CRLF line terminators
    load_order.txt
    03ffb4264d3db11cb8edf61ce913c6a4
    		ASCII text, with CRLF line terminators
    README.md
    55207eebe61cd5339750f43b81dfe522
    		ASCII text
    README.experimental_steamclient.md
    015105173ef0a27f92aa43624291b3d7
    		ASCII text
    account_avatar.EXAMPLE.jpg
    fafa340202b7f16015984c90062f7b2a
    		JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 184x184, components 3
    achievements_EXAMPLE.json
    43f5f12838b2b05a0a08e4ce681b08ba
    		JSON text data
    auto_accept_invite.EXAMPLE.txt
    73676ec8f00e2e2f68e039883b95bd89
    		ASCII text
    branches.EXAMPLE.json
    c4958997bb99e2dd111ac9b6db0c0c0c
    		JSON text data
    configs.app.EXAMPLE.ini
    9154c9b54986644820c9c81211bfee40
    		ASCII text
    configs.main.EXAMPLE.ini
    5b22b7e281d9e5468ccac13c95c6ca1b
    		ASCII text
    configs.overlay.EXAMPLE.ini
    34d4b04a87b868acea873d27d6af9132
    		magic text fragment for file(1) cmd, 1st line "# ----------------------------", 2nd line "# XXXXXXXXXXXXXXXXXXXXXXXXXXXX"
    configs.user.EXAMPLE.ini
    7ce8123327ba379d3acb62020cc7fa10
    		ASCII text
    button_a.png
    82edcac3c186dd2366101130cb565fb5
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    button_b.png
    388324635d98c7d64d17748b7d9ddeb1
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    button_x.png
    fabb09eb751085a0aab83058e049f9ee
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    button_y.png
    2d996ebd75689dce767625edfee08ced
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    shoulder_l.png
    e1aa5b8a915e4efd00f3db34219ff018
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    shoulder_r.png
    ad42aed0b371c0aea2bb3575314c459b
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_dpad_e.png
    ece817dc57251713560b3e716d5ba3c9
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_dpad_n.png
    2f6d9618d389513dc86a260bee683b22
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_dpad_s.png
    d36699e9277a79d6d4836414aad5b04e
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_dpad_w.png
    31166b5985ac5820165806e05f61f84b
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_l_click.png
    0a12bc4299c9503bdd275588e384f85d
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_l_move.png
    0c3fbb94fd1141818dc2d4490e141904
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_r_click.png
    ab9d13d190576d35a08bb68894510fbf
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    stick_r_move.png
    e9e22da4b33830abf1dd8c8bb48b38e8
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    trigger_l_click.png
    404786bf294387522822db6c1621f20e
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    trigger_l_pull.png
    404786bf294387522822db6c1621f20e
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    trigger_r_click.png
    25080b78852bc865c04f195d8423a82a
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    trigger_r_pull.png
    25080b78852bc865c04f195d8423a82a
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    xbox_button_dpad_e.png
    904b6ec32e34107a6faa94ad1c40a5bf
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    xbox_button_dpad_move.png
    5012a82d6c684d28163419810d3d48f8
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    xbox_button_dpad_n.png
    e02b8eaa9ab4874a71bc63b24da9effb
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    xbox_button_dpad_s.png
    5ae0de37372666b1bba5d04be113f7d3
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    xbox_button_dpad_w.png
    0c7afee16f408b11c236919c8d2e36c0
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    xbox_button_select.png
    36343c70dc1321a371b24be06aa7ff44
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    xbox_button_start.png
    894c0f75570b457cf12e18ac3cf6cc30
    		PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
    InGameControls.txt
    d91839f4a9769454503cfdf294f0a427
    		ASCII text
    MenuControls.txt
    ed8f5f1732d99f7e81d9ea38d9cfa73a
    		ASCII text
    custom_broadcasts.EXAMPLE.txt
    ec00ab82710e7340b12f1c29a138e269
    		ASCII text
    default_items.EXAMPLE.json
    4e6a079263073d6eab3baf11104e8645
    		JSON text data
    depots.EXAMPLE.txt
    73234bfaaa538824cc6b0dc062fbf34c
    		ASCII text
    README.md
    aebfda63f3a1e7c4d1f9842dfaae143b
    		ASCII text, with no line terminators
    Roboto-Medium-LICENSE.txt
    d273d63619c9aeaf15cdaf76422c4f87
    		ASCII text, with CRLF line terminators
    Roboto-Medium.ttf
    68ea4734cf86bd544650aee05137d7bb
    		TrueType Font data, 18 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.Roboto MediumRegularVersion 2.137; 2017Roboto-Med
    token
    080cccc1a57f943293be2a1ce3f90f77
    		JSON text data
    installed_app_ids.EXAMPLE.txt
    3645e67d53159353bcbfeff3e3600191
    		ASCII text
    items.EXAMPLE.json
    1d50b0c39df6f24efebd45b0e00654ca
    		JSON text data
    leaderboards.EXAMPLE.txt
    b7753638a0b72c45212818a725751f88
    		ASCII text
    Readme.txt
    c2d8aa8668b7ba353b43ee4957b1c98b
    		ASCII text, with no line terminators
    mods.EXAMPLE.json
    c08cbc97cbec55a97b535804b76f8e30
    		JSON text data
    my_preview_image.jpg
    fafa340202b7f16015984c90062f7b2a
    		JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 184x184, components 3
    README.md
    0062022f5417093802b84e175aa6cac6
    		ASCII text, with no line terminators
    LICENSE.md
    12321751c38e35f4722a9961fcd82748
    		ASCII text
    README.md
    2699586e15c76a73c8fe97300b757fc9
    		ASCII text
    stats.EXAMPLE.txt
    ec53c81e294487435f705f1fe473da79
    		ASCII text
    steam_appid.EXAMPLE.txt
    e48e13207341b6bffb7fb1622282247b
    		ASCII text, with no line terminators
    steam_interfaces.EXAMPLE.txt
    06a47a21f1af5a7fb5a0623c5f92325d
    		ASCII text, with CRLF line terminators
    subscribed_groups.EXAMPLE.txt
    5eeccd9aa2ca04ad8b5f6d89720065b4
    		ASCII text
    subscribed_groups_clans.EXAMPLE.txt
    e4b1fe99c19e2da0fefbfb2f52a05a90
    		ASCII text, with no line terminators
    supported_languages.EXAMPLE.txt
    087d2c701260aeb3845fca9fd9f0a580
    		ASCII text
    README.generate_interfaces.md
    5dee8646091be6e999fb6d7cd7bf75b1
    		ASCII text
    README.lobby_connect.md
    1200bbe34e6acb8e5ab77ba12de4eb28
    		ASCII text
    overlay_achievement_notification.wav
    4ebb633927148696d8cdc4228171c05e
    		RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz
    overlay_friend_notification.wav
    4ebb633927148696d8cdc4228171c05e
    		RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz
    steamclient.dll
    25e2c2bc78fbcf6db882fc7a849f3375
    		PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections
    steam_api.dll
    eff1417f845c06bedaaf04f17a446c28
    		PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 8 sections
    steamclient64.dll
    4803f70ccdf706f5bd0a8fd2ac25dc59
    		PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections
    steam_api64.dll
    6d3f610582d5c76945472597430008d7
    		PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 9 sections
    steam_api.dll
    b42c46d1006699d852dc7d447bcda197
    		PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections
    steam_api64.dll
    5d804d8e0500ed1ab5d3c38e8ce8384e
    		PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections
    steamclient_extra_x32.dll
    68ecdacf445b43b3a25d980b76b20f67
    		PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 8 sections
    steamclient_extra_x64.dll
    269971c0e9d8d93b0ae7358198885999
    		PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 9 sections
    GameOverlayRenderer.dll
    18e994ec8820d195aa57fa95b6576776
    		PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections
    GameOverlayRenderer64.dll
    ee0f848351ae654d807b0994a7bd8f27
    		PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections
    steamclient.dll
    0153582187e9307ad705341657b6171a
    		PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 8 sections
    steamclient64.dll
    dd116dd8ad1812f4a1c1c84046525a03
    		PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 9 sections
    steamclient_loader_x32.exe
    f0def38d55d0cfd5ea62e851a1f14cf8
    		PE32 executable (GUI) Intel 80386, for MS Windows, 6 sections
    steamclient_loader_x64.exe
    be7710bf7c4c5b528c07a43cd75ae4b5
    		PE32+ executable (GUI) x86-64, for MS Windows, 7 sections
    generate_interfaces_x32.exe
    2f91bca1f34a05d4160c4cdd594029c5
    		PE32 executable (console) Intel 80386, for MS Windows, 6 sections
    generate_interfaces_x64.exe
    825c86872ce32cc6b75d26bae7bc5de8
    		PE32+ executable (console) x86-64, for MS Windows, 7 sections
    lobby_connect_x32.exe
    870c3d19f69996ca54b3eeb51fb3a789
    		PE32 executable (console) Intel 80386, for MS Windows, 6 sections
    lobby_connect_x64.exe
    bc5a4b186b58e31a41e6776b02f69801
    		PE32+ executable (console) x86-64, for MS Windows, 7 sections

    Detections

    AnalyzerVerdictAlert
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    win_amadey_bytecodes_oct_2023
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    win_amadey_bytecodes_oct_2023
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    VirusTotalmalicious
    VirusTotal - Scan result 18/59

JavaScript (0)

HTTP Transactions (3)

URLIPResponseSize
github.com/Detanup01/gbe_fork/releases/latest/download/emu-win-release.7z
140.82.121.3302 Found10 MB
github.com/Detanup01/gbe_fork/releases/download/release-2025_03_13/emu-win-release.7z
140.82.121.3302 Found10 MB
objects.githubusercontent.com/github-production-release-asset-2e65be/830127839/f812955a-f648-4f88-8c39-d40e018e381f?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20250325%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250325T150726Z&X-Amz-Expires=300&X-Amz-Signature=1aea36989ca02b650e2248726cc01ddea40026ce3faec8516c62007f9c88807c&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3Demu-win-release.7z&response-content-type=application%2Foctet-stream
185.199.111.133200 OK10 MB