URLhaus Database

You are currently viewing the URLhaus database entry for http://bs-forum.com/pub3.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1715225
URL:	http://bs-forum.com/pub3.exe
URL Status:	Offline
Host:	bs-forum.com
Date added:	2021-10-26 09:36:21 UTC
Last online:	2021-10-26 19:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	benkow_
Abuse complaint sent (?):	Yes (2021-10-26 09:37:08 UTC to abusemail{at}contell[dot]ru)
Takedown time:	10 hours, 5 minutes (down since 2021-10-26 19:42:38 UTC)
Tags:	exe RedLineStealer Smoke Loader smokeloader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-10-26	n/a	exe	8577213832eecf00f77003ddf49fb6630af4906b10b350f9dd88a899d9720a98	n/a	Smoke Loader
2021-10-26	n/a	exe	191e78371c86b9985b98712cd56c985ab9f1e4e678ae703995e0b15dd690f970	n/a	RedLineStealer
2021-10-26	n/a	exe	aa623d934b75fe56b08d2fd34b3027cf76a888512e08a9dd7402a2bcee401958	n/a	RedLineStealer
2021-10-26	n/a	exe	a8445ad207972262f1f77543a9619b3255e99e9207f05dbe4dc78e6823ff26dc	n/a	RedLineStealer
2021-10-26	n/a	exe	11a3c2f9bfa57c07f1a8fd8afe0071f775ccde87e3abdfb5f8f06caf3d18435f	n/a	RedLineStealer
2021-10-26	n/a	exe	dbd6371e98b399d3bb27f8b822a1b2f588036b158922e29c40c70b7712282e97	n/a	Smoke Loader
2021-10-26	n/a	exe	09887a106b5bbd343d36559f9b3cb403a80c1d7c849630cea84e4bf2e5fab7ff	n/a	Smoke Loader
2021-10-26	n/a	exe	7a058c3bcbc137bd33b888b48e0a465aa14a908ef8fa69ce9c1731dd477d5768	n/a	RedLineStealer
2021-10-26	n/a	exe	55be4d57bbf956b6575bb81e90145321da60cf4c13879f6160505a5f638e1f97	n/a	RedLineStealer
2021-10-26	n/a	exe	6852f6a45606c34709a3713cf67836e53b44fb5832f6c94a94c74e80575706c4	n/a	Smoke Loader
2021-10-26	n/a	exe	97247f56010511a82492c3febbc0a1f2cbb0dae097178b76331373ed908a3434	n/a	Smoke Loader
2021-10-26	n/a	exe	c2627a1344d6b428c0f47f4695c0fd7df2d8040015595ff5d149b81bebeae5a5	n/a	Smoke Loader
2021-10-26	n/a	exe	29cc5c140effd19120124fa46d42b27c474af45b8e31ee2de85ca9d18eed097a	n/a	Smoke Loader
2021-10-26	n/a	exe	0c234eb09ebee0e484dca3d0f6bf3072843b89527ecd6cfa4680eb27f0b8f032	n/a	Smoke Loader
2021-10-26	n/a	exe	1581f37ce254b6ae489d3119533e69408d6236933cd2d3036f24500c6e03dcfa	n/a	Smoke Loader
2021-10-26	n/a	exe	649c27ade517aa8c4a85d43cb8f5b40b8543c0305bc110eedb08dc70ec758738	n/a	Smoke Loader
2021-10-26	n/a	exe	93929f6eebae9f8d20b1807b0d49bd983d51ebd5b223bcefb8cfb1350906cba8	n/a	Smoke Loader