Report - www.avs4you.com/downloads/AVSSystemInfo.exe

Report Overview

Visitedpublic

2025-02-03 23:25:19

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
www.avs4you.com	unknown	2006-08-23	2015-03-17	2025-02-02	509 B	14 MB	143.204.55.9

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2025-02-03	medium	www.avs4you.com/downloads/AVSSystemInfo.exe	Scans presence of the found strings using the in-house brute force method

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

www.avs4you.com/downloads/AVSSystemInfo.exe

IP / ASN

143.204.55.9

#16509 AMAZON-02

File Overview

File TypePE32 executable (GUI) Intel 80386, for MS Windows, 8 sections

Size14 MB (13539928 bytes)

MD594b00dbba92bdfccbe3bf26ebe33ec68

SHA1fea1764a86115ec21ae15b180e5c338ee11c61ca

SHA256799d2a1078ba296ffe4f1273588924a5192826c0c96e74c4eca5a5fe5425303f

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Scans presence of the found strings using the in-house brute force method

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

GET www.avs4you.com/downloads/AVSSystemInfo.exe

143.204.55.9

200 OK

14 MB

URL

www.avs4you.com/downloads/AVSSystemInfo.exe

IP / ASN

143.204.55.9

#16509 AMAZON-02

Requested byN/A

Resource Info

File typePE32 executable (GUI) Intel 80386, for MS Windows, 8 sections

First Seen2023-06-18

Last Seen2025-04-30

Times Seen256

Size14 MB (13539928 bytes)

MD594b00dbba92bdfccbe3bf26ebe33ec68

SHA1fea1764a86115ec21ae15b180e5c338ee11c61ca

SHA256799d2a1078ba296ffe4f1273588924a5192826c0c96e74c4eca5a5fe5425303f

Certificate Info

IssuerGoDaddy.com, Inc.

Subject*.avs4you.com

FingerprintD3:13:AB:57:55:E0:65:59:9A:D8:E5:1D:5E:30:9E:6D:D0:8F:75:60

ValiditySun, 26 Jan 2025 12:18:35 GMT - Fri, 27 Feb 2026 12:18:35 GMT

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Scans presence of the found strings using the in-house brute force method

HTTP Headers

GET /downloads/AVSSystemInfo.exe HTTP/1.1
Host: www.avs4you.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 13539928
last-modified: Thu, 03 Dec 2020 14:03:09 GMT
x-amz-meta-cb-modifiedtime: Fri, 17 Feb 2012 12:36:05 GMT
accept-ranges: bytes
server: AmazonS3
date: Mon, 03 Feb 2025 11:01:04 GMT
etag: "94b00dbba92bdfccbe3bf26ebe33ec68"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g-AInnJVdGAUm3LEkGC6kO6oXty5MGsk7mDy-g-jfu7LimpTDII8VQ==
age: 44626
X-Firefox-Spdy: h2