URLhaus Database

You are currently viewing the URLhaus database entry for http://newsrus.wiki/dec/runvd.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1532715
URL: http://newsrus.wiki/dec/runvd.exe
URL Status:Offline
Host: newsrus.wiki
Date added:2021-08-14 06:29:07 UTC
Last online:2021-08-15 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2021-08-14 06:30:03 UTC to CloudFlare Anti-Abuse API)
Takedown time:1 day, 7 hours, 2 minutes Poor (down since 2021-08-15 13:32:55 UTC)
Tags:ArkeiStealer link exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-08-15n/aexe edf0c8016d4968b1784a0121e2dbaac68445f8a8280a0a590b44e31a15bf3355n/aArkeiStealer
2021-08-15n/aexe 867545d71554bc607129c8c3f68c01a71179a0bfecb1888ea56aa69d812881f9n/a ArkeiStealer
2021-08-15n/aexe 7b3655992ed1e66c5f1a3677f4c6072804da151b887583d32cff266ff47745ccn/a ArkeiStealer
2021-08-15n/aexe 076fba2a85bce2280461b292c72769be959e9140497e61a7d0558b57ecd361d5n/aArkeiStealer
2021-08-15n/aexe d64d0dc40d1976a9bdda529d5a01d294b16e768e79038ed29eef4a06eb66d658n/a ArkeiStealer
2021-08-15n/aexe d74d00160e9f58beddad5784e39f5132e1622514d4375b15c89a0b2751d337dan/a ArkeiStealer
2021-08-15n/aexe 4b2026a4ef88df0c62b62dbe154ab734bc8dddbdadd9522725199848424ef8b0n/a ArkeiStealer
2021-08-15n/aexe a01b1dcf3c535d5df4c6385d8e253e9d25f00e5005983f9f1824b7e7ec48f94fn/a ArkeiStealer
2021-08-15n/aexe a1f092460783043d22e1211c62c2958034caa480ef87ac93117b38835ecd87c2n/a ArkeiStealer
2021-08-15n/aexe 1356399cbeb825a6b7f442ae62e22d3a79f4565a806e34f04c98220f45dfdc85n/a ArkeiStealer
2021-08-15n/aexe a4f4ad55de2c1d3dc13820e67b74726f5e2fa5efe8efe799c5ea3b49da7b713en/a ArkeiStealer
2021-08-15n/aexe 24276b8d24c362a4c8090f9d6b6aafa3d117b1698b416d8e18763e7a38e6489en/a ArkeiStealer
2021-08-15n/aexe 186222dfd1022a5dddcc30234bee2b5abef15699d744680017ae7f50dd181594n/a ArkeiStealer
2021-08-15n/aexe 677393e2333b712609ff612b8ec90c1244fea6a423af0e885de61c0464e4d2f5n/a ArkeiStealer
2021-08-15n/aexe 91edf35aacff08c3e5251cab8d998c385fa8a147e7a8658c306bb060e7c021abn/a ArkeiStealer
2021-08-15n/aexe 10132e29a73d015287cec5dbc6bed15a98bb5920d98ed269042a0349ce677114n/a ArkeiStealer
2021-08-15n/aexe 22028cf6ac18f067f710513dd61a751355d055c6c632172f39bae9317036c737n/a ArkeiStealer
2021-08-15n/aexe 60f211a1b893254c2a7cd10cfdc8d1165ca3a83b1d005e27607487e83d949eaen/a ArkeiStealer
2021-08-14n/aexe df48e334fe3c810c0a81c5cbf6872070d7b47e01066a3b1d94e4317aa89986f0n/a ArkeiStealer
2021-08-14n/aexe c16f7e0180171553f021277389ecb3404dc277b1fd741daeb30fdfde53eda3f9n/a ArkeiStealer
2021-08-14n/aexe 3ba6ad65ea1f324fa98e8958702a4bbd3a5e9888b64933170c6c76ff1026c934n/aArkeiStealer
2021-08-14n/aexe d957edbab7c7f1bfd12258f523f692e733b651cac348015f3a603b93f92026dcn/a ArkeiStealer
2021-08-14n/aexe 0f0178dc0b755c5f60ba27a0d15ba391394e71bbd948b016dcafc620304f3586n/a ArkeiStealer
2021-08-14n/aexe c14ef442698e3a613e47deb6a6fb477235a88f857ce3f5a8f5cfcbe43c4f7742n/aArkeiStealer
2021-08-14n/aexe e410f0f20286eb82dc9ab7a184bb9743238ce872e622ae159a07e3a2d7b37103n/aArkeiStealer
2021-08-14n/aexe 607b9c1a8aee003955b0715d05e9a044ec8937e6f169b5d166bef5ce8d269d39Virustotal results 32.35%ArkeiStealer