URLhaus Database

You are currently viewing the URLhaus database entry for http://gfmodd1.webselffiles01.com/download/idman623build12_ws1032687615.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1054739
URL:	http://gfmodd1.webselffiles01.com/download/idman623build12_ws1032687615.exe
URL Status:	Offline
Host:	gfmodd1.webselffiles01.com
Date added:	2021-03-08 14:25:15 UTC
Last online:	2021-10-24 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2021-10-24 21:45:07 UTC to abuse{at}amazonaws[dot]com)
Takedown time:	7 months, 20 days, 19 hours, 6 minutes (down since 2021-10-25 09:33:00 UTC)
Tags:	exe sality

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-09-10	idman623build12.exe	exe	6725a074a268c9fc08c18edb6f7150c2f204f0f0131e7f26c3fcb990d0a027e4	n/a
2021-09-06	idman623build12.exe	exe	6ed0b0ec8c7c24f71c7cece54c5e0f75c733b55d6a118773e77087e215e82392	n/a	Sality
2021-08-29	idman623build12.exe	exe	edcc709bf7baf9d6cb4e6381dae1c0af0c21185f4d8f9360bdc64b5192ca75ca	n/a	Sality
2021-08-27	idman623build12.exe	exe	181b0e1b3a6af1da57cb489edae533edacaed7a862881d2db051c0e263fa0a12	n/a	Sality
2021-08-24	idman623build12.exe	exe	ab032d1f3bb23b098c539a718879ea1f1f4fe4da842ea9c5d73b389d0c89b123	n/a	Sality
2021-08-20	idman623build12.exe	exe	9cc2e0b93208f466de29ae81940be988cb4a87406986f6d19343421c47454db4	n/a	Sality
2021-08-14	idman623build12.exe	exe	537b10cf8e13513c59002c768458b911fb39b95a9d5d7cf28455577b26f86af3	n/a	Sality
2021-08-13	idman623build12.exe	exe	1a01e198f114dda369db7002b3ab6689c015405ed3837b458eb914eb48b0be45	n/a	Sality
2021-08-12	idman623build12.exe	exe	80f3701558105ee8574e8583b1f43ead2f00570493a888e7e3e75c07ee8cb80d	n/a	Sality
2021-08-08	idman623build12.exe	exe	d4a178ccf949185f1d6f206c7c18ebfbcbb4493dcbdd6b0e80a537ad6fa052a7	n/a	Sality
2021-08-08	idman623build12.exe	exe	a1b91ef3db3a98cfe9d8e4f016a2f010dde0f64fc34909f85ad4b1a8b0a5efd9	n/a
2021-08-07	idman623build12.exe	exe	f9eb63edb10136fb61280dcc0bb0fb5e740d2f9831431e9c899438dfdfee2a2d	n/a	Sality
2021-08-06	idman623build12.exe	exe	3a1914e8383da5af10f2e323db2f8047fb21260bc2f4d820d7eb28f26634e9ad	n/a	Sality
2021-08-06	idman623build12.exe	exe	7d7fd027832e9cec19854297565bca6787b4b13c6e3274b86d93cce548306ff2	n/a	Sality
2021-08-06	idman623build12.exe	exe	fdf52a7cc01290786d000aa051c66251cb252d9b9ef881d1a8d85cbd53755744	n/a	Sality
2021-08-04	idman623build12.exe	exe	205db731aaa6b3910bd82a2e80d206b88ae5d0c49f291a3f4afecd9395290550	n/a	Sality
2021-08-03	idman623build12.exe	exe	74c7518dfaa90b2b97b7b11ca6f96dcfe5673a31a1a1cd1232e6e4148b37d22c	n/a	Sality
2021-08-03	idman623build12.exe	exe	5c2325b4dd7d8fefbea28b35594558793e19c4ab02e83a78397d7bef2af4287e	n/a	Sality
2021-08-01	idman623build12.exe	exe	a57987a79deb7485ac71061ed7c870d52e7cfb71a02e780154d083a30927e21b	n/a	Sality
2021-08-01	idman623build12.exe	exe	c0d6dff2cacc663f7e60a6638728d8600ebdba6caeb18e28acfbbcd4e5445a39	n/a	Sality
2021-07-30	idman623build12.exe	exe	6cb8f418e58fde301ff334fe24fb79b1c8169ccef26cf95b78b4da59413d5ee4	n/a	Sality
2021-07-30	idman623build12.exe	exe	fc689c492d2013ed8d900802263858d17f6988a8533290b012f3843539ff212f	n/a	Sality
2021-07-29	idman623build12.exe	exe	907ef4360e3116d96a666f7f450a67cf8690f2ff00f643f527d841f1a8ce6947	n/a	Sality
2021-07-29	idman623build12.exe	exe	44157bec798ce454263c5b5e7cd9f34c18d65ae47b1e3d17544d4f154d3a687d	n/a	Sality
2021-07-29	idman623build12.exe	exe	56707688d509b1863fae986a887507669955481889559a583075a6c402dd263d	n/a	Sality
2021-07-28	idman623build12.exe	exe	ea45a730c2137b085cedc3ea7b25eb1395d2b9b522123c31a92ab946f071d9ab	n/a	Sality
2021-07-28	idman623build12.exe	exe	39a77ef363317beea8cad0c8dfe80791ee12647f61396cbfa0128b73113bab8d	n/a	Sality
2021-07-26	idman623build12.exe	exe	c794579426ff2b6e316cdd434491f34a34b98d1fae347a7caf70d7a58964160f	n/a	Sality
2021-07-25	idman623build12.exe	exe	5b2d64e8461ac20b302f1bb674295c65119ca3a21dd7bba74893754cd6421265	n/a	Sality
2021-07-24	idman623build12.exe	exe	fc5370b0b9bbacce3c0e79794759ca43f2345eb6e15d2be4034fc2f2ac3879a6	n/a	Sality
2021-07-24	idman623build12.exe	exe	c2ca0f41fd550e9ca250f9b7f52ed09ba525b311d99adca119b2c4c6c82cac7b	n/a	Sality
2021-07-24	idman623build12.exe	exe	f3dda8f48606c448d22a7b407f61757605acc028d3deddd0ad8c1e2742efcf86	n/a	Sality
2021-07-22	idman623build12.exe	exe	4ee41060b8f1c5679b10bebb8378f353ea62eb38ab27f041e3727dd8cb06b19d	n/a	Sality
2021-04-06	idman623build12.exe	exe	f9c3c38f6837a5d82de6828c487bafe2f750e465390ed782e2ed6bd68b56b7f7	n/a	Sality
2021-04-05	idman623build12.exe	exe	53c2d7c52b1f070184837cccf05b5c03029dfaf7efe2d93f7036f407eff9371b	n/a	Sality
2021-04-05	idman623build12.exe	exe	ffa7e83fec734f54bf50807426c9096de0eb2659fbaad13c2f36d147fc4af80a	n/a	Sality
2021-04-02	idman623build12.exe	exe	2c919da93a9768fcdba3f82c7ba2bd73093878b4a8d5b9601f4b1ea5fc17ed23	n/a	Sality
2021-04-01	idman623build12.exe	exe	c7e4827930c014c024211f1da350aeae17e6c062e253453a5185e609ca1bbf47	n/a	Sality
2021-03-31	idman623build12.exe	exe	d4ee24d07bcf6e9ca1aa0d774b56b672ca178ba130924e13a061aa14be4cd925	n/a
2021-03-18	idman623build12.exe	exe	bdb1b6c2151038f1023b551d26ef4eab2d5321066d3352d5357b8bee301b67b0	n/a	Sality
2021-03-13	idman623build12.exe	exe	8fcae9789671c1a8d3c5badff355e36ab708330df8a14ce7ad6af486a625d38b	n/a
2021-03-12	idman623build12.exe	exe	7bfba52e66cc0890bca919536e659607b0430cff83fc70185c1e468dffc997fd	n/a
2021-03-11	idman623build12.exe	exe	a9d5890d01e78976930240912d1b44a65cdd32565808f8140ada2f218d54beaa	n/a
2021-03-11	idman623build12.exe	exe	68aede6e1d6fd2267742e9ce3f1f2e50d472be18e55eeb251263e7398ecf711c	n/a	Sality
2021-03-11	idman623build12.exe	exe	1c9fb73a9ea17d973e9873f695a5706c0da22c47091f22eb280c964f4cf41518	n/a	Sality
2021-03-09	idman623build12.exe	exe	0e7906a400e153960b156d1d61e5f08890d2887935a5d73f3fc36a025f6a8f87	n/a	Sality
2021-03-09	idman623build12.exe	exe	6d8d32f33ba7a5ab87262020c39b67bf149de9ab97607f35cbea25483fe3579e	n/a
2021-03-08	idman623build12.exe	exe	7d0c6a122569bd9c1d9e7ce1027e46a8ccedf0a99d429bb2756e35b64c9274fd	84.51%	Sality