Report - ftp.vector.co.jp/77/30/3963/Excelpasswordremover2024.zip

Report Overview

Visited public
2025-04-24 00:32:57
Tags
Submit Tags
URL
ftp.vector.co.jp/77/30/3963/Excelpasswordremover2024.zip
Finishing URL
about:privatebrowsing
IP / ASN
180.214.37.141
#15830 Equinix (EMEA) Acquisition Enterprises B.V.
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ftp.vector.co.jp	unknown	1994-01-18	2012-05-22	2025-04-22	524 B	472 kB	180.214.37.164

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
ftp.vector.co.jp/77/30/3963/Excelpasswordremover2024.zip
IP
180.214.37.164
ASN
#15830 Equinix (EMEA) Acquisition Enterprises B.V.

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
472 kB (471910 bytes)
Hash
768c21b3e9ae967097e7912acdc89f17
e60cdea67ff1527ff64f04759b22fb240cd784bd
af74cc315bc3a0f967187b541178e482e2f0441e9b0878c27bac11f50bc9a055

Archive (3)

Modified	Filename	Size	Md5	File type
2024-11-04 12:58	ReadMe.txt	4.1 kB	85a577f86a747e8f16fc8d57dce8eb27	Non-ISO extended-ASCII text, with CRLF, NEL line terminators
2024-11-04 14:38	�A�h�C��C��X�g�[��p.xlsm	228 kB	cf6fa16024e303221a6ae2df5913297f	Microsoft Excel 2007+
2024-11-04 14:18	�G�N�Z��p�X��[�h��炭�炭 For Excel2024.xlam	278 kB	f3a5f43fe02b8f8f0a6bfd08d853e07e	Microsoft Excel 2007+

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 9/66

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

GET ftp.vector.co.jp/77/30/3963/Excelpasswordremover2024.zip

180.214.37.164

200 OK

472 kB

URL User Request GET
ftp.vector.co.jp/77/30/3963/Excelpasswordremover2024.zip
IP
180.214.37.164:443
ASN
#15830 Equinix (EMEA) Acquisition Enterprises B.V.

Certificate
IssuerCybertrust Japan Co., Ltd.
Subject*.vector.co.jp
Fingerprint20:C8:2B:DB:3E:45:1D:25:B4:63:B7:27:4F:6D:FF:D1:03:88:E5:6F
ValidityTue, 03 Dec 2024 08:11:44 GMT - Fri, 02 Jan 2026 14:59:00 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
472 kB (471910 bytes)
Hash
768c21b3e9ae967097e7912acdc89f17
e60cdea67ff1527ff64f04759b22fb240cd784bd
af74cc315bc3a0f967187b541178e482e2f0441e9b0878c27bac11f50bc9a055

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 9/66

HTTP Headers

GET /77/30/3963/Excelpasswordremover2024.zip HTTP/1.1
Host: ftp.vector.co.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 24 Apr 2025 00:32:27 GMT
Server: Apache
Last-Modified: Mon, 04 Nov 2024 05:39:28 GMT
ETag: "3f006ff-73366-6260fb547a400"
Accept-Ranges: bytes
Content-Length: 471910
Content-Disposition: filename=Excelpasswordremover2024.zip
Connection: close
Content-Type: application/zip

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (3)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers