| GET www.ukeysoft.com/download/cd-dvd-encryption.exe |  172.67.176.43 | 301 Moved Permanently | 5.9 MB |
URL User Request GET www.ukeysoft.com/download/cd-dvd-encryption.exe IP172.67.176.43:443
CertificateIssuerGoogle Trust Services Subjectukeysoft.com FingerprintEF:54:B4:A2:80:76:E0:59:ED:74:E3:43:94:CF:81:6C:5A:C7:C9:0F ValidityTue, 11 Feb 2025 05:07:17 GMT - Mon, 12 May 2025 06:04:53 GMT
Size5.9 MB (5904440 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /download/cd-dvd-encryption.exe HTTP/1.1
Host: www.ukeysoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sun, 16 Mar 2025 01:02:55 GMT
content-type: text/html
content-length: 167
location: https://www.ukeysoft.site/download/cd-dvd-encryption.exe
cache-control: max-age=3600
expires: Sun, 16 Mar 2025 02:02:55 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8ZxbQPSKVrwhzW19eGlo6%2BPsR7jmgQEOiDqBVPjUVtAz%2BoPvPxjH05przViu9KA06Gw2ukcvi4V2OztZpuep1L7r%2F3mjPCyHgRE4E4o3fEkdg68bZSO%2BN%2FPhtmQV8hBO6HSf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 921053edabd0b4ff-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=53125&min_rtt=53106&rtt_var=19954&sent=6&recv=7&lost=0&retrans=0&sent_bytes=3181&recv_bytes=1117&delivery_rate=70291&cwnd=252&unsent_bytes=0&cid=3424eaef586f2547&ts=74&x=0"
X-Firefox-Spdy: h2
|
| GET www.ukeysoft.site/download/cd-dvd-encryption.exe | 104.21.80.1 | 200 OK | 5.9 MB |
URL User Request GET www.ukeysoft.site/download/cd-dvd-encryption.exe IP104.21.80.1:443
CertificateIssuerGoogle Trust Services Subjectukeysoft.site FingerprintBA:92:84:9B:39:3F:F2:35:CF:43:23:9D:B6:D0:A9:3F:86:F5:40:AE ValiditySat, 08 Mar 2025 11:09:07 GMT - Fri, 06 Jun 2025 12:07:50 GMT
File typePE32 executable (GUI) Intel 80386, for MS Windows, 8 sections Size5.9 MB (5904440 bytes) Hash1f356c630dd81f6ff6d6c6f60c816955 a08e8cf73957c3cdf5ed655059fdb7c700049a2a b8cf51be5510da25d92d165a94ba4558ba2e0fc2b61d105e6866c4899135bc90
| Analyzer | Verdict | Alert |
|---|
| YARAhub by abuse.ch | malware | Scans presence of the found strings using the in-house brute force method | | VirusTotal | suspicious | |
GET /download/cd-dvd-encryption.exe HTTP/1.1
Host: www.ukeysoft.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 16 Mar 2025 01:02:56 GMT
content-type: application/octet-stream
content-length: 5904440
last-modified: Fri, 16 Aug 2024 19:18:27 GMT
etag: "66bfa603-5a1838"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KClRRg6tWl4Pt1RKi1plWUo%2BJNiFkwVaxGm%2F8aycGqZnQgRSezXIsbrzDSA6DGc%2FC%2FRFH%2FTUgux0mfmosQemNXkulE5wJ83shf1yBqguqhhU8RLx9wkKmxiyySHY1VGgRzaUTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 921053ef9f4b0b41-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=58728&min_rtt=52823&rtt_var=22760&sent=8&recv=9&lost=0&retrans=0&sent_bytes=3206&recv_bytes=1149&delivery_rate=70341&cwnd=248&unsent_bytes=0&cid=21e69a61ec93a545&ts=528&x=0"
X-Firefox-Spdy: h2
|