Report - root.kobil.com/driver/KOBILTreiberSetup_x64x86

Report Overview

Visitedpublic

2025-05-08 08:23:43

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
root.kobil.com	unknown	2000-06-09	2025-05-08	2025-05-08	529 B	27 MB	144.76.57.228

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2025-05-08	medium	root.kobil.com/driver/KOBILTreiberSetup_x64x86_v2.3.08081.exe	Detect pe file that no import table

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

root.kobil.com/driver/KOBILTreiberSetup_x64x86_v2.3.08081.exe

IP / ASN

144.76.57.228

#24940 Hetzner Online GmbH

File Overview

File TypePE32 executable (GUI) Intel 80386, for MS Windows, 4 sections

Size27 MB (26741416 bytes)

MD53ddcfd7ff8a240901047a2c93e0ffd10

SHA19f054f6e5cefd09b25f168c22799d1f4770a8715

SHA256d03e7e394f40247e02701c15b0242f5703b9f71abd88886ba8c4d0e6fb0aa0ca

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Detect pe file that no import table

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

GET root.kobil.com/driver/KOBILTreiberSetup_x64x86_v2.3.08081.exe

144.76.57.228

200 OK

27 MB

URL

root.kobil.com/driver/KOBILTreiberSetup_x64x86_v2.3.08081.exe

IP / ASN

144.76.57.228

#24940 Hetzner Online GmbH

Requested byN/A

Resource Info

File typePE32 executable (GUI) Intel 80386, for MS Windows, 4 sections

First Seen2025-05-08

Last Seen2025-05-08

Times Seen1

Size27 MB (26741416 bytes)

MD53ddcfd7ff8a240901047a2c93e0ffd10

SHA19f054f6e5cefd09b25f168c22799d1f4770a8715

SHA256d03e7e394f40247e02701c15b0242f5703b9f71abd88886ba8c4d0e6fb0aa0ca

Certificate Info

IssuerDigiCert Inc

Subjectroot.kobil.com

Fingerprint1F:AB:8C:A6:27:0B:03:E0:89:42:CE:73:2B:B2:73:BE:5C:FA:05:D0

ValidityThu, 27 Feb 2025 00:00:00 GMT - Thu, 26 Feb 2026 23:59:59 GMT

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Detect pe file that no import table

HTTP Headers

GET /driver/KOBILTreiberSetup_x64x86_v2.3.08081.exe HTTP/1.1
Host: root.kobil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 08:23:11 GMT
server: Apache
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;  mode=block
content-security-policy: frame-ancestors 'none';
strict-transport-security: max-age=31536000; includeSubDomains; preload
last-modified: Fri, 03 Aug 2018 09:37:43 GMT
etag: "1980aa8-57284adf027c0"
accept-ranges: bytes
content-length: 26741416
content-type: application/x-msdos-program
X-Firefox-Spdy: h2