Report - files.nexus-cdn.com/2250/17/ReShade%20by%20inkursion%20Revamp-17-2-2-1595973186.zip?md5=jZtASUsIUpVNJSwtGJXB1w&expires=1746686480&user

Report Overview

Visitedpublic

2025-05-08 02:42:37

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
files.nexus-cdn.com	unknown	2018-07-16	2018-08-16	2025-05-01	615 B	10 MB	185.229.191.156

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

files.nexus-cdn.com/2250/17/ReShade%20by%20inkursion%20Revamp-17-2-2-1595973186.zip?md5=jZtASUsIUpVNJSwtGJXB1w&expires=1746686480&user_id=181992906

IP / ASN

185.229.191.156

#60068 Datacamp Limited

File Overview

File TypeZip archive data, at least v2.0 to extract, compression method=deflate

Size10 MB (10309990 bytes)

MD54332fa21febbd2dc180c0d73e78f553e

SHA1b2a27ad5002ba8d34dfaf413af501f759de916b0

SHA256b648961a270b68bac6c2fbc15bd313cc1168f048d3f4203f2adec6b9e864e96e

Archive (40)

Modified	Filename	Size	MD5	File type
2020-07-28 23:11	DefaultPreset2.ini	24 kB	e13a914a1b78d9bd5ef890d4016487b9	ASCII text, with very long lines (1006), with CRLF line terminators
2020-01-08 21:28	SMAA.fx	9.5 kB	7308d95ceb2364892b743093376ab924	C source, ASCII text
2020-01-08 21:28	SMAA.fxh	58 kB	ee534d68c2208ca432a4fa843708c6b5	ASCII text
2020-01-31 11:07	Tonemap.fx	2.0 kB	e3010c2b9e6b2f6cf73cc600b1208c7b	C source, ASCII text
2020-01-31 11:07	Vibrance.fx	2.2 kB	ea424849f8dbff3a29e23986eff5346d	C source, ASCII text
2020-07-28 23:21	rain2.ini	24 kB	120fa1f7c6b89b9916f98b1dd327bd5f	ASCII text, with very long lines (1006), with CRLF line terminators
2020-01-08 19:28	ReShadeUI.fxh	14 kB	edea1a43c22a468fe6dc214ea8fc4a28	C source, ASCII text
2020-01-08 21:28	Clarity.fx	20 kB	24ced83d2b255fc3ff53f99b8053aba0	C source, ASCII text
2020-01-31 11:07	PPFX_Bloom.fx	16 kB	7b3d521dd819c4f482039cd55bd0a58e	C source, Unicode text, UTF-8 text, with very long lines (366), with CRLF line terminators
2020-01-02 03:56	qUINT_common.fxh	2.4 kB	94ae0e8c3ccdda12860eecb23a45f23e	C++ source, ASCII text
2019-12-24 01:31	qUINT_mxao.fx	25 kB	d537edcd9af4ac2c1946c62fcbcd016d	C source, ASCII text
2020-04-24 02:03	qUINT_sharp.fx	6.4 kB	005bd4fb2ba326b09dfef347304ff203	C source, ASCII text
2020-02-28 19:25	qUINT_ssr.fx	15 kB	fca7128ba365f6374923a65a6acf0cf0	C source, ASCII text
2020-01-08 19:28	ReShade.fxh	3.4 kB	2d0fff8c6970479930362d18730ae659	C++ source, ASCII text
2020-04-09 15:17	Macros.fxh	21 kB	65662c5dda1e465942c159925f76fae3	ASCII text
2020-01-31 11:07	DisplayDepth.fx	7.7 kB	82caaab8b4b6cb775da4b11b32aa748d	C source, ASCII text
2020-01-31 11:07	AreaTex.dds	269 kB	520aaaa56035d0218d4e4aa45e75c96f	Microsoft DirectDraw Surface (DDS): 160 x 560, 24-bit color, RGB888
2020-01-31 11:07	bayer16x16.png	126 B	9f3e7ecd913c5bea00bade085cd386a7	PNG image data, 16 x 16, 8-bit grayscale, non-interlaced
2020-01-31 11:07	Dirt.png	990 kB	042f9c20d334c27b4aa3ef4fc88c61f2	PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced
2020-01-31 11:07	DirtA.png	894 kB	4e880eaa1ef6e9c6a8db87bcea58a799	PNG image data, 1920 x 1080, 8-bit/color RGB, non-interlaced
2020-01-31 11:07	DirtOVB.png	2.5 MB	2742614c12fd22a298ab17aebe0bb7d9	PNG image data, 1920 x 1080, 8-bit/color RGB, non-interlaced
2020-01-31 11:07	DirtOVR.png	1.1 MB	c96d965b414a5b8b090828086945bb5a	PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced
2020-01-31 11:07	FontAtlas.png	15 kB	cbd1c9d6989a60c54f41866e876ec0ca	PNG image data, 512 x 512, 8-bit colormap, non-interlaced
2020-01-31 11:07	Layer.png	9.3 kB	4561dcc71ac061792d24c3b3cd4799ec	PNG image data, 1280 x 720, 8-bit colormap, non-interlaced
2020-01-31 11:07	LensDB.png	266 kB	68caea0dc2019b012e98f354c4d82cc1	PNG image data, 1024 x 576, 8-bit colormap, non-interlaced
2020-01-31 11:07	LensDB2.png	212 kB	7514fe7d4bb345c14df17cd6dc2d268a	PNG image data, 1024 x 576, 8-bit colormap, non-interlaced
2020-01-31 11:07	LensDOV.png	732 kB	9b588e7b3058a92f53ba5d9252cb1a8a	PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced
2020-01-31 11:07	LensDUV.png	434 kB	bbb1cdb2c1e10c4e6d36bfe8134e6e40	PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced
2020-01-31 11:07	LensSprite.png	611 kB	123c47dd121fb40ddb85e7467b198b59	PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced
2020-01-31 11:07	lut.png	273 B	3e2ecbaccddecba4b57cab15b4dcf172	PNG image data, 1024 x 32, 8-bit/color RGB, non-interlaced
2020-01-31 11:07	MagicBloom_Dirt.png	571 kB	c4e9e984363c71d0fb0c9d722e1790ff	PNG image data, 1024 x 576, 8-bit/color RGB, non-interlaced
2020-01-31 11:07	MultiLut_atlas1.png	229 kB	a45edb42c2ed345e1f0c10f47de1f870	PNG image data, 1024 x 544, 8-bit/color RGB, non-interlaced
2020-01-31 11:07	SearchTex.dds	1.2 kB	a2ba3f918f066a66f449923f4e49c085	Microsoft DirectDraw Surface (DDS): 64 x 16, 8-bit color, luminance
2019-08-05 19:42	ssdonoise.png	117 B	73ccac87a65ad5ceecc34213a078db0a	PNG image data, 4 x 4, 8-bit/color RGB, non-interlaced
2020-01-31 11:07	Stage.png	110 kB	1aa7944af94a57f106b62b6981194c27	PNG image data, 3840 x 2160, 8-bit gray+alpha, non-interlaced
2020-01-31 11:07	UIMask.png	199 B	cd3381bda54497ba6d1ad41995cf1431	PNG image data, 960 x 540, 1-bit colormap, non-interlaced
2020-07-01 02:30	ReShade.ini	1.3 kB	e88a4ec77e10b73d1e702c858e5ed778	Generic INItialization configuration [INPUT]
2020-04-14 19:11	ReShade64.dll	3.3 MB	8a4db9e0d36671fb1ced5d91eefe5e91	PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections
2020-05-06 17:37	ReShade64.json	445 B	5dcac410dd62af3a091aac3eb17ce9ae	JSON text data
2020-05-19 19:45	Cemu Reshade.exe	86 kB	0a77677aecb004992025a90332e8cfdb	PE32+ executable (console) x86-64, for MS Windows, 6 sections

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 6/65

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

GET files.nexus-cdn.com/2250/17/ReShade%20by%20inkursion%20Revamp-17-2-2-1595973186.zip?md5=jZtASUsIUpVNJSwtGJXB1w&expires=1746686480&user_id=181992906

185.229.191.156

200 OK

10 MB

URL User Request GET HTTPS

files.nexus-cdn.com/2250/17/ReShade%20by%20inkursion%20Revamp-17-2-2-1595973186.zip?md5=jZtASUsIUpVNJSwtGJXB1w&expires=1746686480&user_id=181992906

IP / ASN

185.229.191.156

#60068 Datacamp Limited

Requested byN/A

Resource Information

File typeZip archive data, at least v2.0 to extract, compression method=deflate

First Seen2025-01-17

Last Seen2025-05-08

Times Seen2

Size10 MB (10309990 bytes)

MD54332fa21febbd2dc180c0d73e78f553e

SHA1b2a27ad5002ba8d34dfaf413af501f759de916b0

SHA256b648961a270b68bac6c2fbc15bd313cc1168f048d3f4203f2adec6b9e864e96e

Certificate Information

IssuerGlobalSign nv-sa

Subject*.nexus-cdn.com

FingerprintD7:18:A7:15:D1:3B:CC:ED:1D:AA:BC:94:30:7F:5A:7A:3D:93:AC:ED

ValidityThu, 19 Sep 2024 15:26:19 GMT - Tue, 21 Oct 2025 15:26:18 GMT

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 6/65

HTTP Headers

GET /2250/17/ReShade%20by%20inkursion%20Revamp-17-2-2-1595973186.zip?md5=jZtASUsIUpVNJSwtGJXB1w&expires=1746686480&user_id=181992906 HTTP/1.1
Host: files.nexus-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.24.0
date: Thu, 08 May 2025 02:42:02 GMT
content-type: application/zip
content-length: 10309990
last-modified: Thu, 16 Feb 2023 17:06:42 GMT
etag: "63ee62a2-9d5166"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2