URLhaus Database

You are currently viewing the URLhaus database entry for http://www.act-mag.com/wp/klzb.jpg which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:141431
URL: http://www.act-mag.com/wp/klzb.jpg
URL Status:Offline
Host: www.act-mag.com
Date added:2019-02-21 06:50:15 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@oppimaniac
Abuse complaint sent (?): Yes (2019-02-21 06:52:02 UTC to abuse{at}staff[dot]aruba[dot]it)
Takedown time:20 days, 5 hours, 19 minutes Bad
Tags:exe Smoke Loader

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-03-10n/aexe 45a027254157986201da004f13ed45560d9cb2c60d1d4d64532a34973ad9cddfn/aSmoke Loader
2019-03-07n/aexe 646dc0241d70ad9142683ee063b9c6d3c65a5e7e817f8173f20e94f602fe431an/a
2019-02-26n/aexe d6f3bb242d18c324a87e0d88ab3db4777a0acaac592e5762841167df0869e93bn/aSmoke Loader
2019-02-25n/aexe e989f796f109ed251f0080fc3018dff3a3775eb10776419cb96d3945dbe59ab3n/aSmoke Loader
2019-02-24n/aexe 4cf5d72a38d64351c206929283006e69ee61414815be089eb43e4ee8a4fcb09dn/a
2019-02-21n/aexe bbe28d3803e3b545e2c16e76a4f2a8bc58edcc5d60dd0be4b6570e09ff8b3de3n/aSmoke Loader
2019-02-21n/aexe 46aec41c3bc850cf147e9d2e4fad4a1b60b22c0e8d238bd67e68bc1784a42a17n/aSmoke Loader