URLhaus Database

You are currently viewing the URLhaus database entry for http://hhind.co.kr/intra/fant_buseo.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:120645
URL: http://hhind.co.kr/intra/fant_buseo.exe
URL Status:flame Online
Host: hhind.co.kr
Date added:2019-02-09 12:22:09 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Abused domain (malware) link
SURBL:Not listed
Reporter:@zbetcheckin
Abuse complaint sent (?): Yes (2019-02-09 12:24:03 UTC to ip-adm{at}skbroadband[dot]com)
Tags:exe

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-10-02n/aexe ba452bfb0f98c195a49052ef0f2a5c8656ebaa10521791b1fc85620090015bc3n/a
2019-06-18n/aexe 6ca39264aafe2557de81213e74f040c0275ad0969e2b7b19bb3b86a119231b66n/a
2019-06-11n/aexe 39817046a893b5e1fd3f8ac6f0f693f4f1cf9b753156d1b6e71fe9d5b593ef23n/a
2019-05-03n/aexe e669dd27c888bcfce64455f98e6e8ea41c11dff8df8862ef781b96c1cc9a52ben/a
2019-05-02n/aexe 28effbeaa30dcae2bc61cbbc8a840c901249cc0c44387bcb414f008bafb1227dn/a
2019-04-05n/aexe 9fb57999f64587da748d3d7d56202b35ec0fa5f73a37a4b41e57ce626f03db8bn/a
2019-03-13n/aexe 9b4845b72118b29b3712e76ea4a4155310aba2344291b8c51e6cf92a95594656n/a
2019-03-12n/aexe a92726e56d8de6613509ea0c347105644aec517541c3aa16428e13a07ddd9f5bn/a
2019-03-04n/aexe b1bdaa00218e3a1dcb020163ab6546580e2c008c788ce1a554d9c90be5ed823cn/a
2019-03-04n/aexe e919446023b9faa7d7cc95b76064d38c5b456974a01f0101f01ccd4f24aab026n/a
2019-02-28n/aexe f2a434f00b51f44705c8e91b9407233807226ecb67f2cdd5188c658f7c230c66n/a
2019-02-28n/aexe 6d50f25bc1910f271f8541c3bc71a01fd043826d6aa59dc8c6a96a84bfbb57d9n/a
2019-02-09n/aexe a3afb9ed8dfdb5591bd71cdf051e76ec17002b934c0e08fd32ed817b1b3cff73Virustotal results 56.34%