Report Overview
Visitedpublic
2024-02-21 13:10:15
Tags
Submit Tags
URL
github.com/rzc0d3r/ESET-KeyGen/releases/download/v1.3.1.1/ESET-KeyGen_v1.3.1.1_win64.exe
Finishing URL
about:privatebrowsing
IP / ASN
140.82.121.4
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
aus5.mozilla.org | 2548 | 1998-01-24 | 2015-10-27 08:06:24 | 2024-02-21 05:09:18 | 511 B | 1.2 kB |  35.244.181.201 | |
github.com | 1423 | 2007-10-09 | 2016-07-13 12:28:22 | 2024-02-20 21:53:43 | 542 B | 3.9 kB | 140.82.121.4 | |
objects.githubusercontent.com 2 alert(s) on this Domain | 134060 | 2014-02-06 | 2021-11-01 22:34:29 | 2024-02-21 05:09:04 | 1.0 kB | 17 MB | 185.199.108.133 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2024-02-21 | medium | objects.githubusercontent.com/github-production-release-asset-2e65be/644059202/6f0050c0-50b3-48b0-879d-3a8b48209c43?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240221%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240221T130945Z&X-Amz-Expires=300&X-Amz-Signature=311b77a78ab2c83e567d73e123204ab9f00517788755e4444ac386d5daa35dde&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=644059202&response-content-disposition=attachment%3B%20filename%3DESET-KeyGen_v1.3.1.1_win64.exe&response-content-type=application%2Foctet-stream | Identifies executable converted using PyInstaller. |
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
objects.githubusercontent.com/github-production-release-asset-2e65be/644059202/6f0050c0-50b3-48b0-879d-3a8b48209c43?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240221%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240221T130945Z&X-Amz-Expires=300&X-Amz-Signature=311b77a78ab2c83e567d73e123204ab9f00517788755e4444ac386d5daa35dde&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=644059202&response-content-disposition=attachment%3B%20filename%3DESET-KeyGen_v1.3.1.1_win64.exe&response-content-type=application%2Foctet-stream
IP / ASN
185.199.108.133
File Overview
File TypePE32+ executable (console) x86-64, for MS Windows, 7 sections
Size17 MB (16818995 bytes)
MD56fd02ff4a02e6808a6453f0c7e73044c
SHA1bfd696b7a33592c7c87ee6d1feec54298803d568
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| Public InfoSec YARA rules | malware | Identifies executable converted using PyInstaller. |
| VirusTotal | suspicious |
JavaScript (0)
No JavaScripts
HTTP Transactions (3)
| URL | IP | Response | Size |
|---|