Report - hamradioshop.pl/pliki/sterowniki/cha340/CH341SER.ZIP

Report Overview

Visited public
2025-02-12 06:54:53
Tags
URL
hamradioshop.pl/pliki/sterowniki/cha340/CH341SER.ZIP
Finishing URL
about:privatebrowsing
IP / ASN
85.89.166.145
#16342 Toya sp.z.o.o
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
hamradioshop.pl	unknown	2012-04-30	2017-03-05	2023-08-12	518 B	203 kB	85.89.166.145

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
hamradioshop.pl/pliki/sterowniki/cha340/CH341SER.ZIP
IP
85.89.166.145
ASN
#16342 Toya sp.z.o.o

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
203 kB (202935 bytes)
Hash
7916965132d3e4d9f369718fedb72230
3303acc92ea6d9a80fcf34128f6d7e3336216e37
8a1bb4548869c4bbb98f7fbcb9b01f6b0dfd159a4cf7c28a63901f0131323a8a

Archive (15)

Filename

Md5

File type

CH341PT.BAS

ecea97e271f1846fd0aad301cc01482c

ISO-8859 text, with CRLF line terminators

CH341PT.H

023a74c0f04201f290055c60a0990557

C source, ISO-8859 text, with CRLF line terminators

CH341PT.LIB

dc0a3a05e6906fe3c6ce0d198bc959d7

current ar archive

CH341PT.PAS

5878d45cf57bfb0e784d7b55035fc474

ISO-8859 text, with CRLF line terminators

README.TXT

44b16ede36f038e0c4cfeebb78aaba94

ISO-8859 text, with CRLF line terminators

ģ��.EXE

acb2f1b9cf9a1541e294b043f4ff2f4d

PE32 executable (GUI) Intel 80386, for MS Windows, 3 sections

CH341PT.DLL

69b6fec924c30042d329ae56ca8925cc

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 4 sections

CH341S64.SYS

3c0a1b6f538e00f318c109f4a3f29515

PE32+ executable (native) x86-64, for MS Windows, 7 sections

CH341S98.SYS

b6f4a83911336e84bead8f8905285fab

PE32 executable (DLL) (native) Intel 80386 (stripped to external PDB), for MS Windows, 6 sections

ch341SER.CAT

715693624013826d337e792ed86376ac

DER Encoded PKCS#7 Signed Data

CH341SER.INF

0ecffba87b80f54f7016da633dd9ab1c

Windows setup INFormation

CH341SER.SYS

a9fc675d0029a525335b106487c7d578

PE32 executable (native) Intel 80386, for MS Windows, 6 sections

CH341SER.VXD

be7438420f1da854917f58cad557476d

MS-DOS executable, LE executable for MS Windows (VxD)

DRVSETUP64.exe

5a80790d2e052d1a4ae53e6631c2af48

PE32+ executable (GUI) x86-64, for MS Windows, 4 sections

SETUP.EXE

7d50a57d7dd8b644c777f600094c80a9

PE32 executable (GUI) Intel 80386, for MS Windows, 4 sections

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/67

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

hamradioshop.pl/pliki/sterowniki/cha340/CH341SER.ZIP

85.89.166.145

200 OK

203 kB

URL User Request GET HTTP/1.1
hamradioshop.pl/pliki/sterowniki/cha340/CH341SER.ZIP
IP
85.89.166.145:443
ASN
#16342 Toya sp.z.o.o

Certificate
IssuerLet's Encrypt
Subjecthamradioshop.pl
FingerprintED:10:60:D2:43:E7:0C:DF:52:36:B5:72:51:94:B2:D2:FC:6E:1A:1E
ValiditySun, 12 Jan 2025 06:59:43 GMT - Sat, 12 Apr 2025 06:59:42 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
203 kB (202935 bytes)
Hash
7916965132d3e4d9f369718fedb72230
3303acc92ea6d9a80fcf34128f6d7e3336216e37
8a1bb4548869c4bbb98f7fbcb9b01f6b0dfd159a4cf7c28a63901f0131323a8a

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/67

HTTP Headers

GET /pliki/sterowniki/cha340/CH341SER.ZIP HTTP/1.1
Host: hamradioshop.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 12 Feb 2025 06:54:23 GMT
Server: Apache/2.4.59 (Debian)
Last-Modified: Fri, 03 Dec 2021 12:23:44 GMT
Accept-Ranges: bytes
Content-Length: 202935
Cache-Control: s-maxage=10
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/zip

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (15)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers