Report - flixmate.net/public/downloads/Flixmate-1.3.0.0-x64.exe

Report Overview

Visitedpublic

2024-06-19 23:36:43

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-06-19 18:12:11	2.6 kB	7.1 kB	23.36.77.32
flixmate.net	unknown	2019-10-04	2015-06-18 20:27:02	2024-04-17 20:32:37	508 B	24 MB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

flixmate.net/public/downloads/Flixmate-1.3.0.0-x64.exe

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

File Overview

File TypePE32+ executable (GUI) x86-64, for MS Windows, 8 sections

Size24 MB (23799192 bytes)

MD509411e1b822399815662f277cd9d0312

SHA1310099edc1515efd281074df59b7cdf5e3106b3c

SHA256446afd7ab6b84862ff94a6e0d8371259fb6781ff3b708c64ef08c230fd810861

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 2/72

JavaScript (0)

HTTP Transactions (9)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL HTTP

r10.o.lencr.org/

IP / ASN

23.36.77.32

#20940 Akamai International B.V.

Requested byN/A

Resource Information

File typedata

First Seen2024-06-18

Last Seen2024-08-19

Times Seen32404

Size504 B (504 bytes)

MD512bf1a23e28f4b6996d92ef0ce981624

SHA178899bea571ec8198e710c1e798a394f83c5b46b

SHA256c57667fc645403b94b531cbc75f5284ae4b4ab4410bf2afdd97619f7137ed6c5

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "C57667FC645403B94B531CBC75F5284AE4B4AB4410BF2AFDD97619F7137ED6C5"
Last-Modified: Tue, 18 Jun 2024 01:53:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10399
Expires: Thu, 20 Jun 2024 02:29:36 GMT
Date: Wed, 19 Jun 2024 23:36:17 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL HTTP

r10.o.lencr.org/

IP / ASN

23.36.77.32

#20940 Akamai International B.V.

Requested byN/A

Resource Information

File typedata

First Seen2024-06-17

Last Seen2024-08-19

Times Seen39533

Size504 B (504 bytes)

MD59d139a09a36fce99ece1fb963d49d2a9

SHA1a7d96d8755d02c7204c147daade1b1168a6ddb73

SHA256f9a59ebef1ee608c709b274e1c7be1320323232cdc79b17bdbf453a5a5aead09

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F9A59EBEF1EE608C709B274E1C7BE1320323232CDC79B17BDBF453A5A5AEAD09"
Last-Modified: Mon, 17 Jun 2024 11:47:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20194
Expires: Thu, 20 Jun 2024 05:12:52 GMT
Date: Wed, 19 Jun 2024 23:36:18 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL HTTP

r10.o.lencr.org/

IP / ASN

23.36.77.32

#20940 Akamai International B.V.

Requested byN/A

Resource Information

File typedata

First Seen2024-06-19

Last Seen2024-08-19

Times Seen13728

Size504 B (504 bytes)

MD568d462af974340632b54e503868cc210

SHA14832dc71176669fcdfdf9bf7d7e7c51485ea115f

SHA25617e8118c5c3b7168393951646a3c9aeb7dde52643bfeb23a6bd8a2dcddfe0b54

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "17E8118C5C3B7168393951646A3C9AEB7DDE52643BFEB23A6BD8A2DCDDFE0B54"
Last-Modified: Wed, 19 Jun 2024 16:18:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14925
Expires: Thu, 20 Jun 2024 03:45:03 GMT
Date: Wed, 19 Jun 2024 23:36:18 GMT
Connection: keep-alive

flixmate.net/public/downloads/Flixmate-1.3.0.0-x64.exe

188.114.96.1

24 MB

URL HTTP

flixmate.net/public/downloads/Flixmate-1.3.0.0-x64.exe

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byN/A

Resource Information

File typePE32+ executable (GUI) x86-64, for MS Windows, 8 sections

First Seen2024-06-05

Last Seen2025-03-01

Times Seen11

Size24 MB (23799192 bytes)

MD509411e1b822399815662f277cd9d0312

SHA1310099edc1515efd281074df59b7cdf5e3106b3c

SHA256446afd7ab6b84862ff94a6e0d8371259fb6781ff3b708c64ef08c230fd810861

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 2/72

HTTP Headers

GET /public/downloads/Flixmate-1.3.0.0-x64.exe HTTP/1.1
Host: flixmate.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 19 Jun 2024 23:36:18 GMT
content-type: application/octet-stream
content-length: 23799192
cf-ray: 8967572aacf8b50b-OSL
cf-cache-status: EXPIRED
accept-ranges: bytes
cache-control: public, max-age=691200
etag: W/"16b2598-18fddd0ebda"
last-modified: Mon, 03 Jun 2024 11:16:47 GMT
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=00UbPjCrCTppnutkkcJVyhxqUxECs5YZ0oBJYsGW5FY%2Fgr1tDdbxRMvOON6hRbe6UvwKveYFx9zJy5WqwEUvjczuy8yIMLLNvudw0%2F9%2BhDoar2E%2FR04nYPSQvk3VXk0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

r10.o.lencr.org/

23.36.76.226

504 B

URL HTTP

r10.o.lencr.org/

IP / ASN

23.36.76.226

#20940 Akamai International B.V.

Requested byN/A

Resource Information

File typedata

First Seen2024-06-18

Last Seen2024-08-19

Times Seen36150

Size504 B (504 bytes)

MD5a4a98cb7858bfd671309bced772b0095

SHA1703c86e6784782333c82f615335a6b5d6826607e

SHA256224e289334c48e0048c8e7805fae8e7b485ea11d278ed892156c67ce21e8e04c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "224E289334C48E0048C8E7805FAE8E7B485EA11D278ED892156C67CE21E8E04C"
Last-Modified: Tue, 18 Jun 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4338
Expires: Thu, 20 Jun 2024 00:48:39 GMT
Date: Wed, 19 Jun 2024 23:36:21 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL HTTP

r10.o.lencr.org/

IP / ASN

23.36.76.226

#20940 Akamai International B.V.

Requested byN/A

Resource Information

File typedata

First Seen2024-06-18

Last Seen2024-08-19

Times Seen36150

Size504 B (504 bytes)

MD5a4a98cb7858bfd671309bced772b0095

SHA1703c86e6784782333c82f615335a6b5d6826607e

SHA256224e289334c48e0048c8e7805fae8e7b485ea11d278ed892156c67ce21e8e04c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "224E289334C48E0048C8E7805FAE8E7B485EA11D278ED892156C67CE21E8E04C"
Last-Modified: Tue, 18 Jun 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4338
Expires: Thu, 20 Jun 2024 00:48:39 GMT
Date: Wed, 19 Jun 2024 23:36:21 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL HTTP

r10.o.lencr.org/

IP / ASN

23.36.76.226

#20940 Akamai International B.V.

Requested byN/A

Resource Information

File typedata

First Seen2024-06-18

Last Seen2024-08-19

Times Seen36150

Size504 B (504 bytes)

MD5a4a98cb7858bfd671309bced772b0095

SHA1703c86e6784782333c82f615335a6b5d6826607e

SHA256224e289334c48e0048c8e7805fae8e7b485ea11d278ed892156c67ce21e8e04c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "224E289334C48E0048C8E7805FAE8E7B485EA11D278ED892156C67CE21E8E04C"
Last-Modified: Tue, 18 Jun 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4338
Expires: Thu, 20 Jun 2024 00:48:39 GMT
Date: Wed, 19 Jun 2024 23:36:21 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL HTTP

r10.o.lencr.org/

IP / ASN

23.36.76.226

#20940 Akamai International B.V.

Requested byN/A

Resource Information

File typedata

First Seen2024-06-18

Last Seen2024-08-19

Times Seen36150

Size504 B (504 bytes)

MD5a4a98cb7858bfd671309bced772b0095

SHA1703c86e6784782333c82f615335a6b5d6826607e

SHA256224e289334c48e0048c8e7805fae8e7b485ea11d278ed892156c67ce21e8e04c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "224E289334C48E0048C8E7805FAE8E7B485EA11D278ED892156C67CE21E8E04C"
Last-Modified: Tue, 18 Jun 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4338
Expires: Thu, 20 Jun 2024 00:48:39 GMT
Date: Wed, 19 Jun 2024 23:36:21 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL HTTP

r10.o.lencr.org/

IP / ASN

23.36.77.32

#20940 Akamai International B.V.

Requested byN/A

Resource Information

File typedata

First Seen2024-06-18

Last Seen2024-08-19

Times Seen36150

Size504 B (504 bytes)

MD5a4a98cb7858bfd671309bced772b0095

SHA1703c86e6784782333c82f615335a6b5d6826607e

SHA256224e289334c48e0048c8e7805fae8e7b485ea11d278ed892156c67ce21e8e04c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "224E289334C48E0048C8E7805FAE8E7B485EA11D278ED892156C67CE21E8E04C"
Last-Modified: Tue, 18 Jun 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4292
Expires: Thu, 20 Jun 2024 00:47:53 GMT
Date: Wed, 19 Jun 2024 23:36:21 GMT
Connection: keep-alive