Report - fahrplan.manuelhu.de/files/fpledit-2.6.4-win-x64.zip

Report Overview

Visited public
2025-05-06 17:45:33
Tags
Submit Tags
URL
fahrplan.manuelhu.de/files/fpledit-2.6.4-win-x64.zip
Finishing URL
about:privatebrowsing
IP / ASN
185.26.156.164
#58010 uvensys GmbH
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fahrplan.manuelhu.de	unknown	unknown	No data	No data	520 B	5.5 MB	185.26.156.164

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
fahrplan.manuelhu.de/files/fpledit-2.6.4-win-x64.zip
IP
185.26.156.164
ASN
#58010 uvensys GmbH

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
5.5 MB (5517840 bytes)
Hash
9dfdb7dde58e4988efdc429cddfc7adc
9b6001d3e2c6515859cde232154aee863c1ad8ae
f2462b30d37a3312a50af5bad1c614865285615cd505b8ead49b2a032ff74591

Archive (80)

Filename

Md5

File type

PdfSharp.System.dll

e721f5c17c7a162d5a1887bc03f9b8bd

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.Extensions.Logging.Console.dll

25466fcc891b4b51d8fe43d69070f6af

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.Extensions.Options.ConfigurationExtensions.dll

aa84540ac227790262b8f1dbb7a3bb83

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Jint.dll

fa2a1dce40f2237f3fd306b7b9434eb6

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Esprima.dll

7d4204ea1bea150066a227f9ce852b9b

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.Win32.SystemEvents.dll

86e139d290234bb43917cd5ca8c1944c

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.WindowsAPICodePack.Shell.dll

1b21df01ef007434ca92ef3149580af8

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Mono.Options.dll

ec7f9fe35913200241952fbd62e7be8e

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.Extensions.DependencyInjection.Abstractions.dll

d6cfda4e1c948aeb3e5d57376334375f

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FPLedit.exe

f1f192582e3262e1b32e06645b388065

PE32+ executable (GUI) x86-64, for MS Windows, 7 sections

FPLedit.Kursbuch.dll

abcc2cacf4f64c5e672f99db6458849a

PE32+ executable (DLL) (console) x86-64 Mono/.Net assembly, for MS Windows, 2 sections

FPLedit.Bildfahrplan.dll

526cd2dc45bbbb0fa8b0bddd5e1cfb56

PE32+ executable (DLL) (console) x86-64 Mono/.Net assembly, for MS Windows, 2 sections

FPLedit.runtimeconfig.json

061b25a1ae220f83e30f532c79f14d39

JSON text data

Microsoft.Extensions.Primitives.dll

a53d11973f75b15bef19c16a35ffb432

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FPLedit.Aushangfahrplan.deps.json

11bb6e1db118472d36291c0337cdad32

JSON text data

Dokumentation.pdf

a7126517e1d3b382e26068d6603525ac

PDF document, version 1.5

FPLedit.Shared.UI.deps.json

64561a2aac807d8c9762f9f170d144e2

JSON text data

SixLabors.ImageSharp.dll

619c92569fb3a8cbeb6f938440c1f1f5

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FPLedit.deps.json

62eb9a4c75bf8e59b424d54bb8c616f0

JSON text data

Microsoft.WindowsAPICodePack.dll

a176427d6f2c2e537dadf5cfcc86bf40

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FPLedit.dll

6f9a24ad272034a7c8e92eee9f93a73d

PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows, 2 sections

FPLedit.Shared.UI.dll

537600004289ccfb5e57b820ab3ae0e6

PE32+ executable (DLL) (console) x86-64 Mono/.Net assembly, for MS Windows, 2 sections

Microsoft.Extensions.Configuration.Binder.dll

90e58d5a0eb7af2cf55bb8022821e681

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FPLedit.Bildfahrplan.deps.json

4a319a638b385a22a1d2e2ca5e618363

JSON text data

README_LICENSE.txt

c03b55d17809f07d36296fe28dcd7c35

Unicode text, UTF-8 text

Eto.Serialization.Xaml.dll

408fd05decc7f2a235cdce4ae7c1bc56

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FPLedit.Shared.Rendering.dll

57b8a7cdeb00076c8e5981c6c1b6fd75

PE32+ executable (DLL) (console) x86-64 Mono/.Net assembly, for MS Windows, 2 sections

Microsoft.Extensions.Logging.Abstractions.dll

a2544f077d57c4ea44a4694efcbea30b

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Portable.Xaml.dll

35f1ef3d7daf8764b90b630bd9c89562

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.Extensions.Configuration.dll

d7ce22d25b8f8ea05f0480291fac550f

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FPLedit.Aushangfahrplan.dll

68adfc5e5ce2cdd64ea3b83eed29562d

PE32+ executable (DLL) (console) x86-64 Mono/.Net assembly, for MS Windows, 2 sections

Eto.Wpf.dll

58cdc8b95f53e91223aa52a48fdbbe04

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FPLedit.Shared.Rendering.deps.json

584ac171b9a98ca2a1e80966e26d5246

JSON text data

Microsoft.Extensions.DependencyInjection.dll

5db27bdd3d6a9a225b88b12293382f95

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

NGettext.dll

2962fc98c56b3d80bb8dfda0c2c39a84

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

System.Drawing.Common.dll

02991bc8ebfd556c5eb06276b849d273

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FPLedit.Shared.deps.json

b907dc1020aadda51ebdbb04aa2a592d

JSON text data

FPLedit.Kursbuch.deps.json

2b011723393e5a209e687ee1c98f40e0

JSON text data

FPLedit.jTrainGraphStarter.dll

1f52a7872948e059121b5a05117f8a22

PE32+ executable (DLL) (console) x86-64 Mono/.Net assembly, for MS Windows, 2 sections

Xceed.Wpf.AvalonDock.dll

0b4386d82c21c4ed235073e2434ee9fc

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

SixLabors.ImageSharp.Drawing.dll

be4633fe844991cdc80dc6681c162ca8

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Xceed.Wpf.Toolkit.dll

d7cadcf7a1ac556d83cbcfc55a62fad5

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FPLedit.GTFS.deps.json

929b5c45e2bd7346caa48e5dd74eac40

JSON text data

FPLedit.Shared.dll

7d977f40e3ffff6def2f454f267b7bc5

PE32+ executable (DLL) (console) x86-64 Mono/.Net assembly, for MS Windows, 2 sections

FPLedit.GTFS.dll

521feecc7310256ece671a0b5af56ffb

PE32+ executable (DLL) (console) x86-64 Mono/.Net assembly, for MS Windows, 2 sections

FPLedit.Buchfahrplan.dll

291b2ac0bd32fc57aa1525344830e060

PE32+ executable (DLL) (console) x86-64 Mono/.Net assembly, for MS Windows, 2 sections

Microsoft.Extensions.Options.dll

950440793a182cc76ffc7f7280e55daf

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.Extensions.Logging.dll

037fa19d37892f003cb18c3f4f070b66

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FPLedit.jTrainGraphStarter.deps.json

327e017921f672710968493e8fe55cd6

JSON text data

SixLabors.Fonts.dll

e35e8b3c29f0606cf5890d24a565dd6d

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.Extensions.Configuration.Abstractions.dll

134885709f7087d3a1bad3108179578a

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.Extensions.Logging.Configuration.dll

4ae6a362c9f43eec7d139374b6ca2b42

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FPLedit.Buchfahrplan.deps.json

aed0d1f5f9353b6b71523868cf895e29

JSON text data

Eto.dll

809bd3dd90db53e297e2ee1167ba8d33

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

PdfSharp.dll

5548f5faa7567014dcdf1cdf63d9954f

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

PdfSharp.resources.dll

96122069957ee4fb442d9b59ea652e78

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Xceed.Wpf.AvalonDock.resources.dll

77be2e0d47fac0a186756af5aa997624

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FPLedit.Buchfahrplan.en_GB.mo

6e3d636db28efc4af63725037c3251ed

GNU message catalog (little endian), revision 0.0, 38 messages, Project-Id-Version: 'Cancel'

FPLedit.Bildfahrplan.en_GB.mo

74e8c1e606345e850829dedd14bcb619

GNU message catalog (little endian), revision 0.0, 89 messages, Project-Id-Version: '&Show'

FPLedit.Shared.Rendering.en_GB.mo

20001be668ce3e75265ab65b30e61646

GNU message catalog (little endian), revision 0.0, 14 messages, Project-Id-Version: 'Blue'

FPLedit.Kursbuch.en_GB.mo

eccf888ef2eecfe02d87d921c40f07c2

GNU message catalog (little endian), revision 0.0, 13 messages, Project-Id-Version: 'Example'

FPLedit.jTrainGraphStarter.en_GB.mo

abc2f7c21ea1158db45585b32f0c48a7

GNU message catalog (little endian), revision 0.0, 46 messages, Project-Id-Version: '&jTrainGraph'

FPLedit.en_GB.mo

420f142d29eeaf97667b81ef6608dc80

GNU message catalog (little endian), revision 0.0, 389 messages, Project-Id-Version: '&Activate'

FPLedit.Shared.en_GB.mo

8d0c00e8709717701ac215af40885888

GNU message catalog (little endian), revision 0.0, 13 messages, Project-Id-Version: '<empty>'

FPLedit.GTFS.en_GB.mo

2900f8c2267dbcabfa80c4dd1fa9dda3

GNU message catalog (little endian), revision 0.0, 37 messages, Project-Id-Version: '&Export GTFS feed'

FPLedit.Shared.UI.en_GB.mo

84f653058cc96ad4036775533b3e9e29

GNU message catalog (little endian), revision 0.0, 58 messages, Project-Id-Version: ', press [S] to save'

FPLedit.Aushangfahrplan.en_GB.mo

8fec7445a21a1e89b2d53fef54f70d2f

GNU message catalog (little endian), revision 0.0, 14 messages, Project-Id-Version: 'Stop-specific timetable'

Portable.Xaml.txt

af783ef795a3a4059922ffcdaeae6e31

ASCII text

dotnet.txt

9fc642ff452b28d62ab19b7eea50dfb9

ASCII text

PdfSharp.txt

cb059f8c781504ecd5bb69a8b5989258

Unicode text, UTF-8 (with BOM) text

DeepCloner.txt

da0811938534885c485fd73a9f373ee9

ASCII text

Jint.txt

24b8b4c50f07dead88baed42e87c0d01

ASCII text

ImageSharp.txt

892641aaa2b7a8a951c1588f1754fc8f

ASCII text

3rd-party.txt

060d7f45d5987d90ea78747d669d5740

Unicode text, UTF-8 text

ImageSharp.Drawing.txt

892641aaa2b7a8a951c1588f1754fc8f

ASCII text

Mono.Options.txt

a57d0f13c6cc9d8bc3fc88f5cdc29bc1

ASCII text, with very long lines (460)

Esprima.txt

ab47f6a6b25fcb6a78753b1932a4e307

ASCII text

NGettext.txt

c3e758afc51d9f24e64700136c89d626

ASCII text

Eto.txt

a8af2c4094297fb39851d2b0e368b921

Unicode text, UTF-8 text

GtkSharp.txt

8754deb904d22254188cb67189b87f19

ASCII text

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Detect pe file that no import table
YARAhub by abuse.ch	malware	Detect pe file that no import table
YARAhub by abuse.ch	malware	Detect pe file that no import table
YARAhub by abuse.ch	malware	Detect pe file that no import table
YARAhub by abuse.ch	malware	Detect pe file that no import table
YARAhub by abuse.ch	malware	Detect pe file that no import table
YARAhub by abuse.ch	malware	Detect pe file that no import table
YARAhub by abuse.ch	malware	Detect pe file that no import table
YARAhub by abuse.ch	malware	Detect pe file that no import table
YARAhub by abuse.ch	malware	Detect pe file that no import table

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	GET fahrplan.manuelhu.de/files/fpledit-2.6.4-win-x64.zip	185.26.156.164	200 OK	5.5 MB
URL User Request GET fahrplan.manuelhu.de/files/fpledit-2.6.4-win-x64.zip IP 185.26.156.164:443 ASN #58010 uvensys GmbH Certificate IssuerLet's Encrypt Subjectfahrplan.manuelhu.de Fingerprint2E:CB:A3:8E:34:DF:C1:4B:5A:26:6E:23:30:C4:53:56:C8:B5:D7:42 ValidityTue, 01 Apr 2025 20:42:36 GMT - Mon, 30 Jun 2025 20:42:35 GMT File type Zip archive data, at least v2.0 to extract, compression method=store Size 5.5 MB (5517840 bytes) Hash 9dfdb7dde58e4988efdc429cddfc7adc 9b6001d3e2c6515859cde232154aee863c1ad8ae f2462b30d37a3312a50af5bad1c614865285615cd505b8ead49b2a032ff74591 HTTP Headers GET /files/fpledit-2.6.4-win-x64.zip HTTP/1.1 Host: fahrplan.manuelhu.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Tue, 06 May 2025 17:44:57 GMT content-type: application/zip content-length: 5517840 server: nginx last-modified: Wed, 04 Dec 2024 07:49:04 GMT accept-ranges: bytes cache-control: max-age=2592000, public expires: Thu, 05 Jun 2025 17:44:57 GMT vary: Accept-Encoding x-xss-protection: 1; mode=block x-frame-options: SAMEORIGIN strict-transport-security: max-age=31536000 x-content-type-options: nosniff referrer-policy: strict-origin-when-cross-origin X-Firefox-Spdy: h2`

GET fahrplan.manuelhu.de/files/fpledit-2.6.4-win-x64.zip

185.26.156.164

200 OK

5.5 MB

URL User Request GET
fahrplan.manuelhu.de/files/fpledit-2.6.4-win-x64.zip
IP
185.26.156.164:443
ASN
#58010 uvensys GmbH

Certificate
IssuerLet's Encrypt
Subjectfahrplan.manuelhu.de
Fingerprint2E:CB:A3:8E:34:DF:C1:4B:5A:26:6E:23:30:C4:53:56:C8:B5:D7:42
ValidityTue, 01 Apr 2025 20:42:36 GMT - Mon, 30 Jun 2025 20:42:35 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
5.5 MB (5517840 bytes)
Hash
9dfdb7dde58e4988efdc429cddfc7adc
9b6001d3e2c6515859cde232154aee863c1ad8ae
f2462b30d37a3312a50af5bad1c614865285615cd505b8ead49b2a032ff74591

HTTP Headers

GET /files/fpledit-2.6.4-win-x64.zip HTTP/1.1
Host: fahrplan.manuelhu.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 06 May 2025 17:44:57 GMT
content-type: application/zip
content-length: 5517840
server: nginx
last-modified: Wed, 04 Dec 2024 07:49:04 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Thu, 05 Jun 2025 17:44:57 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (80)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers