URLhaus Database

You are currently viewing the URLhaus database entry for http://freebeeskatobi.ydns.eu/obi1.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1411505
URL:	http://freebeeskatobi.ydns.eu/obi1.exe
URL Status:	Offline
Host:	freebeeskatobi.ydns.eu
Date added:	2021-06-29 19:39:11 UTC
Last online:	2021-07-24 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Blocked
AdGuard :	Blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2021-06-29 19:40:05 UTC to abuse{at}des[dot]capital)
Takedown time:	25 days, 3 hours, 37 minutes (down since 2021-07-24 23:17:53 UTC)
Tags:	AgentTesla AveMariaRAT exe NanoCore SnakeKeylogger

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-07-24	n/a	exe	d2a096f8c60ab403d98bd1785f7c074df26ff83bd70d963263e0e9d63132cdf4	27.14%	AgentTesla
2021-07-19	n/a	exe	662fbe23c87844a881ca233876ff75ee05ddf2ac0a1b5546fb5bc7603474860a	n/a	AveMariaRAT
2021-07-15	n/a	exe	9a43609c46cec1f0c75f41ced6910a66b00d05aef9c9c976f4a37f47d05d1d54	n/a	NanoCore
2021-07-14	n/a	exe	7320273731dbce41f47cc62a196383cbe81764c7285277c153498818d1135b8f	33.33%	AgentTesla
2021-07-09	n/a	exe	aebb7fe3721ab50e0758981b2817beee86fba2797abea2bd19192abc7811761d	n/a	SnakeKeylogger
2021-07-08	n/a	exe	dd779d251eb7d27fd513b44de8286b6168e7af9b741ad1d390a34dafd58e48f0	n/a	SnakeKeylogger
2021-07-08	n/a	exe	03d0aac6f093a70220228119cee9b391830fb5ec500c2fe95d488a037cb37f8c	n/a	SnakeKeylogger
2021-07-07	n/a	exe	ace97b3dca438dbb3245a1d5329b1f9f3da814b2a5907c5e769a5962322c52f8	n/a	SnakeKeylogger
2021-07-06	n/a	exe	510a312fcfeec1d100edf69e1f8a6f0acfbb0116be390849550743a39349b84d	n/a	SnakeKeylogger
2021-07-06	n/a	exe	ae593f20ea06c4527661426877be98fdb0bdf7cc0a7b07cb679167277ce7c996	n/a	SnakeKeylogger
2021-07-06	n/a	exe	9cf85e58b7cb62b39376e36ebc8fadf0c40f21ce98f36fa9016521a8158b4881	n/a	SnakeKeylogger
2021-07-06	n/a	exe	59b7b6c0abf702ed3af7efb41f41378bf126fc718606ca3ff97db27e31f9b1d7	n/a	SnakeKeylogger
2021-07-05	n/a	exe	54312ea9106139b43ff7ab38cdee369e00aa1b5d6433971e167716e9a55ee4b8	n/a	SnakeKeylogger
2021-07-01	n/a	exe	790f0af1ab6f93fa126688c3fde6655be666994b4dc5db719d31ac8a2648019e	n/a	SnakeKeylogger
2021-07-01	n/a	exe	f354ab2b18c8fcabbc94123f41ce225fb9ec4adaceafda7c5fefd61dee656f70	n/a	SnakeKeylogger
2021-06-30	n/a	exe	cb9797415542f1f8decb64021d470b5debb10f17c5e37b3b5a3ed6b1bb2d4024	n/a	SnakeKeylogger
2021-06-29	n/a	exe	43b482ed9c25983fb5b1681d25315e57e12c4268f003ee57145f33059541cf8b	37.14%	SnakeKeylogger