URLhaus Database

You are currently viewing the URLhaus database entry for http://65.21.223.130/BlueStacks.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1664842
URL:	http://65.21.223.130/BlueStacks.exe
URL Status:	Offline
Host:	65.21.223.130
Date added:	2021-10-11 00:12:04 UTC
Last online:	2021-10-11 17:XX:XX UTC
Threat:	Malware download
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2021-10-11 00:13:04 UTC to abuse{at}hetzner[dot]com)
Takedown time:	17 hours, 23 minutes (down since 2021-10-11 17:36:46 UTC)
Tags:	32 ArkeiStealer exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-10-11	n/a	exe	7540108b5c30735445077f1adfc4268d9cba1b9884f232fdd463a1cd9d0a91f8	n/a	ArkeiStealer
2021-10-11	n/a	exe	c9ab08c8320398d7f838528410b3719362a134f47faa082140e99f7d9efb7bbd	n/a	ArkeiStealer
2021-10-11	n/a	exe	233882e82dde195473315add03d2f1d5deec83cb88093b3ac4db1bceee9edd41	n/a	ArkeiStealer
2021-10-11	n/a	exe	6a08aa6115be450fd778db36f93921aef0bdf6066ceff28a5783d3358a088a82	n/a	ArkeiStealer
2021-10-11	n/a	exe	380c3345104dce3e6f92d6beff767dae5dce433e92527b354e301e390cb4d53c	n/a	ArkeiStealer
2021-10-11	n/a	exe	279854585fb6532e91c1adcfdd4f97a3a4e9092334e016d5b6d8f691ef8ccf0e	n/a	ArkeiStealer
2021-10-11	n/a	exe	7ad304132e7b3f453705eda81d661e9fb3126fb050c52efc7fa0ae45a1b0a7cf	n/a	ArkeiStealer
2021-10-11	n/a	exe	d202d7bf72a9cbe6d6358875bce8cd9d32b9519a547c9339e725e21bf86ece12	n/a	ArkeiStealer
2021-10-11	n/a	exe	a57f4552ec863d4e58197558473e4b0ec79dfc7646c10a85b6a0328804c80958	n/a	ArkeiStealer
2021-10-11	n/a	exe	78c0a1b853246efd627da57f84eb37c01bb69b87849d0b55cfd18748be8f6ab9	n/a	ArkeiStealer
2021-10-11	n/a	exe	c3043c1eaf748a5a84ff1a8de859b52f50a8ac6e13a266ca7dee7a623895c1fd	n/a	ArkeiStealer
2021-10-11	n/a	exe	7f20d6c0083981026c4161c55e3ab3bafdbb02ab2349302700b6ef1249ec8949	32.35%	ArkeiStealer
2021-10-11	n/a	exe	43456daf98a2241d831435468cdbba953aaad71c3b9c85bbc9b7a662176b4793	n/a	ArkeiStealer
2021-10-11	n/a	exe	9c793c5500d0a6f9b938cca8246364fee3b9dd11302dc0f6cc4861c68e3aa8fd	n/a	ArkeiStealer
2021-10-11	n/a	exe	4ee345a59975385ea140e14f5a6cabf42bae6a2f3ed7203d735116457f35c4a7	n/a	ArkeiStealer
2021-10-11	n/a	exe	5af4713e278169991e57d16517d6c12ca149d25f3cc859729e6ed7fe990c0d9a	28.79%	ArkeiStealer
2021-10-11	n/a	exe	556b2fee8edd9ce4d5e5e710b01602d47d89bade73a059ba76425f7c10878aa3	n/a	ArkeiStealer
2021-10-11	n/a	exe	76205924829f9c01c9c3d75198d1ac92194eee416db07a7ac870375d761f0d30	n/a	ArkeiStealer
2021-10-11	n/a	exe	268ec4f8d063ae01124b39afc39a08e73001308f8c6a5c9dd2c645e6e4127695	n/a	ArkeiStealer
2021-10-11	n/a	exe	bf8d471ede265f105db3396d5f9a93743eb792648c2068fff4591e975fb82684	n/a	ArkeiStealer
2021-10-11	n/a	exe	5771b0be4f936de2daa203325548eed8604d12b85b6ffc0d9b8c4c1aa64dd8ab	n/a	ArkeiStealer
2021-10-11	n/a	exe	a03a82def98db18ed5401f6c597dd0693c9f90b1a9a3fee5f99efc6d5327ac73	n/a	ArkeiStealer
2021-10-11	n/a	exe	d8b60c04d8afce12aa497f929b4d7b8b2cd15f79bd8ebb1d68357f8eea271d79	n/a	ArkeiStealer
2021-10-11	n/a	exe	01e8d2aa2d98fdb35d6e20007d1d919884e2bb71ef7a815417c23336d7153dd8	n/a	ArkeiStealer
2021-10-11	n/a	exe	3959a10d715c4da846fb6b56b80270bfdefe57552adb43d229e0e78ee051e5ea	36.67%	ArkeiStealer
2021-10-11	n/a	exe	0793806881cb1dbedfef2915436b24ce78e91bc43652e8f7267835d2d63bdfbd	35.29%	ArkeiStealer