URLhaus Database

You are currently viewing the URLhaus database entry for http://cdn-10049480.file.myqcloud.com/jd/jd127.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	105996
URL:	http://cdn-10049480.file.myqcloud.com/jd/jd127.exe
URL Status:	Online (spreading malware for 7 years, 5 months, 15 days, 0 hours, 47 minutes)
Host:	cdn-10049480.file.myqcloud.com
Date added:	2019-01-19 21:32:05 UTC
Threat:	Malware download
URLhaus blocklist:	Blocked
Spamhaus DBL :	Abused domain (phishing)
SURBL :	Blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2026-05-20 12:33:16 UTC to zhaoyz3{at}chinaunicom[dot]cn)
Tags:	exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2019-08-24	n/a	exe	d400226ffaf52231d1b27cc28cec95731733cceba46cd113fca80d71f0fac54d	n/a
2019-08-15	n/a	exe	b27d54ea08c8568a3de3ee5206d19fe58b3c24355784ee3651d0aad807f95518	n/a
2019-07-12	n/a	exe	adf141a6349879336425cb82c4b7446c24feea3236de9c4a48f871dac0c7601a	n/a
2019-06-30	n/a	exe	bf0f3b5f72ba9e4a22dd35b361ebc948f1768f720363287ee729b00f681c7e78	n/a
2019-06-23	n/a	exe	d528b865a2c978b6311dcb3755ea7cd86d49f4b297555178fdfca7c54011cb1b	n/a
2019-06-16	n/a	exe	2e26b03deff9a85b76eb548a6481216f6801f13e8ea6c180db97d3674817613a	n/a
2019-06-15	n/a	exe	3197769eb65091e3eba04557bf41f3d72bd7549a1324ade48bd380dee7a2cb66	n/a
2019-06-14	n/a	exe	d41c24838f7412ce9138079c39d3e1ba6f33cb0c80157a4a9d2d450e7d932740	n/a
2019-01-19	n/a	exe	dba409f04f7b64e2a5e734cf759d902b27058d0540e27ebb6a65ffb03b51429f	43.28%