URLhaus Database

You are currently viewing the URLhaus database entry for http://thedownloadprivacytools.club/downloads/toolspab2.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1549209
URL:	http://thedownloadprivacytools.club/downloads/toolspab2.exe
URL Status:	Offline
Host:	thedownloadprivacytools.club
Date added:	2021-08-20 13:41:04 UTC
Last online:	2021-08-20 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2021-08-20 13:42:05 UTC to abuse{at}selectel[dot]ru)
Takedown time:	7 hours, 23 minutes (down since 2021-08-20 21:05:41 UTC)
Tags:	exe RaccoonStealer RedLineStealer Smoke Loader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-08-20	n/a	exe	9c1b6f7ace3dd0f531cef6ac08ab5c42b8aeb23f20df3abe69a6f0d5bf5d4323	n/a	RaccoonStealer
2021-08-20	n/a	exe	5211efbe90d0cf889c1869e64ab6395e79804114fb2050d76fe856e3566e404f	n/a	RaccoonStealer
2021-08-20	n/a	exe	f6a8aa29264495625e7a74ada5f3a792c06c3f9ef472e01c4761bed7d1e4ff96	n/a	RaccoonStealer
2021-08-20	n/a	exe	6b8c2357f802c77582699b2df19fb222d44505810717680706d1d2eb990a9470	n/a	Smoke Loader
2021-08-20	n/a	exe	321b8f87df4dd22bdfc9631a0d84f39b90f16cd8ea0e72f4a1f70df4b39b3468	n/a	RaccoonStealer
2021-08-20	n/a	exe	cba27621d4b7c92fd50bf37135e150b45097ca9306061ed7049f802047bbd1b9	n/a	RaccoonStealer
2021-08-20	n/a	exe	4438b42e4f50ac1ce75fcd9ee82157146b85ca83ea5dfac25b5965e033a0e557	n/a	Smoke Loader
2021-08-20	n/a	exe	d48c402b275e25c7929030ceb7d41accf93ac02c0050c0113db3abeb30a3345b	n/a	Smoke Loader
2021-08-20	n/a	exe	8c6e8a02877680a2b503cef0b068b452221f95e68f9131a59421ca95c4339eb2	n/a	RedLineStealer
2021-08-20	n/a	exe	8657e386693f95e28e69b6a24876daa5f54052fabb2b6c2e1238bc55b6d85b09	n/a	RedLineStealer
2021-08-20	n/a	exe	f2dc381b529cbc75c03ca8bf1886b0ee6b1e2622f8918a27a876c50889e2ae7e	n/a	RaccoonStealer
2021-08-20	n/a	exe	b46fa39b04cb5928c3dd9c1bbcbd9008401d98faff5e42115102b00c60fbd486	51.52%	RedLineStealer
2021-08-20	n/a	exe	142483644d21d3bbdde166a2848e7819f91197a51ffdb64567168ec11dd0b321	n/a	RaccoonStealer
2021-08-20	n/a	exe	78f958d430a4dec84e4126958d0bde722beab77f03f1ecd733ba94827997dec7	n/a	RaccoonStealer
2021-08-20	n/a	exe	8a0c92492986fc6dde9450672a3f76d05beee65f95b997a7866c7bba341bbaa2	n/a	RedLineStealer