URLhaus Database

You are currently viewing the URLhaus database entry for http://acropol.com.eg/pdf/sales.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:117321
URL: http://acropol.com.eg/pdf/sales.exe
URL Status:Offline
Host: acropol.com.eg
Date added:2019-02-05 02:23:08 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@shotgunner101
Abuse complaint sent (?): Yes (2019-02-05 02:24:01 UTC to abuse{at}tedata[dot]net)
Takedown time:2 months, 25 days, 3 hours, 15 minutes Bad
Tags:exe HawkEye link payload stage2

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-03-01n/aexe a02ab6b13cb263a3d22ec3f1d39be71a03af87ab63b2544d89d9a135dd2cbe9bn/a
2019-02-19n/aexe effce72cd124a18fcfe5a13df544c73f6aec93e7ab1c7d0c198620f1a480337an/a
2019-02-18n/aexe dde9c96925d7901ac2984b4db063e42d8606fc6dac0d10569300078ac6abc051n/a
2019-02-13n/aexe 24195d5262ab4e4c3d9b30883dcff882f96c322d386ce2fc9d204ac93913d742n/a
2019-02-11n/aexe 93574d7fb245448a95b73fd41bd018188d2d0c82361b8d2084a929f35de8da47n/a
2019-02-10n/aexe 41a1e78521f654a270fd99e710373fc538f23d2a18b41237d6222600f5d84e77n/a
2019-02-05n/aexe 1f33c11827a3951a99ebd3f404a38e44995d4c663a6dbccbfc1b8064b50c7338Virustotal results 28.57%