URLhaus Database

You are currently viewing the URLhaus database entry for http://down.54nb.com/%D0%E9%C4%E2%BB%FA%BC%EC%B2%E2%B9%A4%BE%DF.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:110236
URL: http://down.54nb.com/%D0%E9%C4%E2%BB%FA%BC%EC%B2%E2%B9%A4%BE%DF.exe
URL Status:Offline
Host: down.54nb.com
Date added:2019-01-25 12:14:07 UTC
Last online:2019-06-19 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Blocked
Spamhaus DBL :Abused domain (malware)
SURBL :Not blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Not blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2019-01-25 12:16:02 UTC to abuse{at}chinamobile[dot]com)
Takedown time:4 months, 25 days, 0 hours, 2 minutes Bad (down since 2019-06-19 12:18:45 UTC)
Tags:exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2019-05-23n/aexe fa1f96a804322e0009a389e7aff7b7a9b5310bd866f13b9aa262073acd44cd16n/a 
2019-05-16n/aexe cdb5404c61ef65b6a88e097aa54c624141a0e07123c9ab85ade2007db04069d6n/a 
2019-04-22n/aexe 88514e181ca2a3d01c00ff01c56375a42ef522c972d2b7c0c5064b658699b571n/a 
2019-04-19n/aexe 1934ba3094a24574860f43511d078828704f362ba2704fb8b74bcc1b16aed266n/a 
2019-04-13n/aexe 67be7ae2954e9db68efd017744598591869cf38f26fd666c500256ab37b8bcb4n/a 
2019-04-12n/aexe 92560c8829844daa8329a8d504ee287dc4e8841caa22a8a1ebf900df47e3e62dn/a 
2019-04-09n/aexe 3d4a05718efdb63bf7cc34ea45179ab69970a48cac32e0ff3894640cced317a0n/a 
2019-03-17n/aexe e8fb8f07e4931ad7448d4bd26da6809446be077c819ea819790ebe76b4236737n/a 
2019-03-09n/aexe 16555eca4ae72657870ce41cefb0e2486b621fa40138b679803de5a4005375a7n/a 
2019-03-07n/aexe 55acfbdc8254925bac2f5adc1b9e1cbfccd84675fde21127caa48ee75974b4d4n/a 
2019-02-27n/aexe 29e01cf1d4f9fb53687aa3a52ae895a1d7caee1da0f97489eb0179916afd49c7n/a 
2019-02-11n/aexe a2d31c2a1562ff85f886b1b2483796ac08298548efc3e8c0dc7699c3e735ae4en/a 
2019-02-06n/aexe 26cf67e5349781661fd1a9e27581c23d4415e532449e3affe5b0058200a4a3f0n/a 
2019-02-04n/aexe 929b0a9d20612dc613f0f268b33a304e61d4b858f60c209e4a6ca77d6aa05c68n/a 
2019-01-31n/aexe c9a97a296f44959f32b1e696ae6f7822f18ae6fc9bbd85e4fd3e1ab812ac8cfcn/a 
2019-01-29n/aexe 7716ee3519da59d57dcad8980c246c8255525e79a91ce42e0f9a5df8b2c1d0a8n/a 
2019-01-28n/aexe 5c39f88f0e192b6424583b41851f2e694261f50c53b3f743a2971a667938cf6fn/a 
2019-01-25n/aexe 628a7add37648fd5774fd6042d5a98a42d40bcef28503cde1c1112eee42d489aVirustotal results 35.29%