Report Overview
Visitedpublic
2024-11-02 09:57:26
Tags
Submit Tags
URL
down.ttkefu.com/mbctrl.dll
Finishing URL
about:privatebrowsing
IP / ASN
47.105.108.112
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
down.ttkefu.com 2 alert(s) on this Host | unknown | 2012-08-02 | 2022-06-03 | 2024-10-29 | 480 B | 149 kB | 47.105.108.112 |
Related reports
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2024-11-02 | medium | down.ttkefu.com/mbctrl.dll | pe_detect_tls_callbacks |
OpenPhish
No alerts detected
PhishTank
No alerts detected
Mnemonic Secure DNS
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
down.ttkefu.com/mbctrl.dll
IP / ASN
47.105.108.112
File Overview
File TypePE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections
Size148 kB (148480 bytes)
MD58af2d1e9e020df04089f72d70aeb55cc
SHA1e31c49e793f214834266d5f8b4ccf05b7375112d
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | pe_detect_tls_callbacks |
| VirusTotal | suspicious |
JavaScript (0)
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|