Report Overview
Visitedpublic
2025-01-22 20:00:17
Tags
Submit Tags
URL
kpdown.szhtxx.com/web_down/up/BKMonitor/20220916/MonitorFPKPVer.exe
Finishing URL
about:privatebrowsing
IP / ASN
61.160.192.96
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
kpdown.szhtxx.com 2 alert(s) on this Host | unknown | unknown | 2017-12-19 | 2022-12-11 | 521 B | 1.4 MB | 61.160.192.96 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2025-01-22 | medium | kpdown.szhtxx.com/web_down/up/BKMonitor/20220916/MonitorFPKPVer.exe | Scans presence of the found strings using the in-house brute force method |
OpenPhish
No alerts detected
PhishTank
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
kpdown.szhtxx.com/web_down/up/BKMonitor/20220916/MonitorFPKPVer.exe
IP / ASN
61.160.192.96
File Overview
File TypePE32 executable (GUI) Intel 80386, for MS Windows, 8 sections
Size1.4 MB (1389120 bytes)
MD50b8fbbbcc76f6d7ba30e9ae3596574e0
SHA1bb6cf7c6bb935b52977f913388e355c37b7cb391
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | Scans presence of the found strings using the in-house brute force method |
| VirusTotal | malicious |
JavaScript (0)
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|