DigitalSide Threat Intel

update.zip

First submission 2024-10-16 21:22:07

File details

File type: Zip archive data, at least v2.0 to extract
Mime type: application/zip
File size: 4110.13 KB (4208776 bytes)
MD5: cab5048b100a05a99c7f5e57676a7102
SHA1: a863bf0733480be8bcccd89d6a9f4fa6093ed23e
SHA256: 6aaa0608f3719f17f06d2f5cc4de3dbf7a1d2a3fd4dc8b5e45255b5fe2c9e4c5

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 40/74 VT report date: 2021-06-24 09:57:57

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXp://www.providence.net.br/arquivos/chat_suporte/update.zip VirusTotal Report www.providence.net.br VirusTotal Report 2024-10-16 21:22:07

Strings analysis - File found

Library
Suporte/SCHook.dll
Suporte/vnchooks.dll
qtintf70.dll
midas.dll
DelZip190.dll

Strings analysis - Possible IPs found 4

7.0.4.2
6.1.5.3
6.4.2.6
1.5.3.7