URLhaus Database

You are currently viewing the URLhaus database entry for https://kiff.store/links/uploads/PlsWnEU2.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1493684
URL:	https://kiff.store/links/uploads/PlsWnEU2.exe
URL Status:	Offline
Host:	kiff.store
Date added:	2021-07-30 21:20:12 UTC
Last online:	2021-10-08 06:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2021-10-08 06:42:25 UTC to abuse{at}greenfloid[dot]com)
Takedown time:	2 months, 9 days, 9 hours, 59 minutes (down since 2021-10-08 07:20:55 UTC)
Tags:	32 exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-10-07	n/a	exe	2553df4a9377b9130be7ac754e3a562e12ed518958574fcfe2cf979925e3a4c4	n/a	RedLineStealer
2021-10-05	n/a	exe	4e3aa3a3bc4a924d39440b7c7db4da2b2896d925e3114781532abb366e488819	n/a	RedLineStealer
2021-10-04	n/a	exe	9a636d4ed2ff7b4e0c54ebc9e395b825512a5734744ac3c556cee74295cf692f	n/a	RedLineStealer
2021-10-02	n/a	exe	0b67e5f12c073b9fcd46323a98226372df0b6c2b5d85d76deb5f6986192ccd94	n/a	RedLineStealer
2021-10-01	n/a	exe	ebdf4584996176cff09f646ee75bb3abfb21ec6b08d56a3bbe2166c162c30801	n/a	RedLineStealer
2021-09-29	n/a	exe	7e23f8ef88c8dcbf3836e97659798d9874ff0ab852366547ddd88369351645d9	n/a	RedLineStealer
2021-09-27	n/a	exe	da1eee55cafa2885d83fe8f3b78e184a869e67976e344c81d4f5eb3d675371e1	n/a	RedLineStealer
2021-09-27	n/a	exe	5327f332ce8fb1393180d26229a2166c1182a3e1b3d3b29c5f8b753f26fa5a07	n/a	RedLineStealer
2021-09-25	n/a	exe	78efd6901608ccf794a8fca6f33147aafd874fcab46a23aa09becb2dbf159fd2	n/a	RedLineStealer
2021-09-21	n/a	exe	99f6d5723f93ac9689ea1f428b9a090b55f068ecdebcfdff854bef0dbd26db6d	31.82%	RedLineStealer
2021-09-15	n/a	exe	8501ecc1e81ea29bd1be1dde7523c712c1a5ce63479346bdd1750a7aa52838a0	n/a
2021-09-14	n/a	exe	6a7fe1fbf54901dcdad6368d5ba172c225a23101bfe7725c2e5a40cc3a66d5f0	n/a	RedLineStealer
2021-09-13	n/a	exe	9e4f1265989f3ef1ea4ea6ece2e0d45bf22e8d13d14c41f184eee9dc66f10cd2	n/a	RedLineStealer
2021-09-12	n/a	exe	154608f407e2e4dbf358167360b83b6ec98774e4684628781ce1f5af5e825fb0	n/a	RedLineStealer
2021-09-11	n/a	exe	dcf02bc210374bf568da665cfa4ba4699365274bfe3cab05764bf5ed0704cd63	n/a	RedLineStealer
2021-09-10	n/a	exe	b612f7e8119f6fdf15fc92a4cd62ec6eca06b27cbbcd609bdae0c1a5ddd6d436	n/a	RedLineStealer
2021-09-10	n/a	exe	5dbea37bc85ae4e19f2ac5dff110664e2a4383c9a483d9478a2dd5ffda06c802	39.13%	RedLineStealer
2021-07-30	n/a	exe	035746e04151155cd17968d895bc7ec8d03f2b50c26e569102999d39bd1dd179	18.84%	RedLineStealer