Report Overview
Visitedpublic
2025-05-10 05:05:46
Tags
Submit Tags
URL
github.com/Sombody101/APKognito/releases/download/v2.0.1/APKognito-v2.0.1.zip
Finishing URL
about:privatebrowsing
IP / ASN
140.82.121.4
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
github.com | 1423 | 2007-10-09 | 2016-07-13 | 2025-05-07 | 545 B | 7.1 MB | 140.82.121.3 | |
objects.githubusercontent.com | 134060 | 2014-02-06 | 2021-11-01 | 2025-05-07 | 977 B | 7.1 MB |  185.199.108.133 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
objects.githubusercontent.com/github-production-release-asset-2e65be/864304677/6a0ddc29-524d-40b2-8c78-b2d2561f9d0b?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20250510%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250510T050513Z&X-Amz-Expires=300&X-Amz-Signature=5983ffda2788fc242bcab83462cb6609d8455aeffbf03c40e1b7f68d6d208bb7&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3DAPKognito-v2.0.1.zip&response-content-type=application%2Foctet-stream
IP / ASN
185.199.108.133
File Overview
File TypeZip archive data, at least v2.0 to extract, compression method=deflate
Size7.1 MB (7088680 bytes)
MD582bc8fd47e6d1fd84826b25bb916ca55
SHA1a269d3aa872a70177dc3e596f73faeb10a8752ce
Archive (9)
| Filename | MD5 | File type |
|---|---|---|
| APKognito.deps.json | 051341e7e464daf8a6e3f6a75000ae5d | JSON text data |
| APKognito.dll | b651649c7d4c14af46b2d4dd4ce208be | PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows, 2 sections |
| APKognito.exe | 8ea4ae89dcb786858eb8e0e3387144f4 | PE32+ executable (GUI) x86-64, for MS Windows, 6 sections |
| APKognito.runtimeconfig.json | 6acedb2465ab37838b02a92fc5e2e345 | JSON text data |
| System.Diagnostics.EventLog.dll | c2fca477e228801d910579c9da4c014f | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| System.Diagnostics.EventLog.Messages.dll | b98dc97a3052a03b3b03e9941712ad47 | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| System.Management.dll | 858a25ba1400cc4d4d333fbb58432a92 | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| System.Text.Encoding.CodePages.dll | 9c1c86679e0125d8c64003f94ba9c98a | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| System.Windows.Extensions.dll | eba8b4e8b7cf13f8ef8dd5e2174cf429 | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| Public Nextron YARA rules | malware | Detects suspicious file path pointing to the root of a folder easily accessible via environment variables |
| YARAhub by abuse.ch | malware | Detect pe file that no import table |
JavaScript (0)
No JavaScripts
HTTP Transactions (2)
| URL | IP | Response | Size |
|---|