URLhaus Database

You are currently viewing the URLhaus database entry for http://swanseacitydc.com/pub3.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1734636
URL: http://swanseacitydc.com/pub3.exe
URL Status:Offline
Host: swanseacitydc.com
Date added:2021-11-01 03:53:05 UTC
Last online:2021-11-01 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2021-11-01 16:47:06 UTC to abuse{at}melbicom[dot]net)
Takedown time:13 hours, 21 minutes Good (down since 2021-11-01 17:15:19 UTC)
Tags:32 exe RedLineStealer link Smoke Loader link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-11-01n/aexe c2eaf11049d03566247876e50a57458e4e7fb03e87d179bdf6391c0d2ea8e976n/a Smoke Loader
2021-11-01n/aexe c647d84db2e09d3eda8c871379fbc8984e85374a99f61c4838b1f1ad41350b6cn/a Smoke Loader
2021-11-01n/aexe 31d0902ae8b19d065f369c22e01da11f2c28b6bacc8a93dad49a041b1cb09609n/a Smoke Loader
2021-11-01n/aexe aa14435b035ec42a88d4f0572a065a43ad7c31e82973b2c8e186aa8d95f8f271n/aSmoke Loader
2021-11-01n/aexe 74a49eff08a11e6b1d15f6dc3579300a3173f175dd1f3ceb970d181e0891e067n/a Smoke Loader
2021-11-01n/aexe 5431474e1d771c9114d9b9aa55eba69cae19ad680e4b3474f8022a0e22cd46d7n/a Smoke Loader
2021-11-01n/aexe b089d104a071a1ca2534e19cdcc6082eb39ac584d641625995d94fc5b937fa52n/a Smoke Loader
2021-11-01n/aexe 63d31d420a19459522b41338a1b03c23249b685a14be050971a7d6d09bf20e73n/a RedLineStealer
2021-11-01n/aexe d7456498be3e05ab24db7321ba4950cfabe3793f009e435f05a41cf3d77e0c73n/a RedLineStealer
2021-11-01n/aexe db4745c80adc712c8fcfec058370c5aca7805b4ec525edbf34e8c00acad2efddn/a Smoke Loader
2021-11-01n/aexe e4e3acdf9ccd2922988cc969aeb9d2dde5bbe8aec5fba6264a45be1d581dbaa5n/a Smoke Loader
2021-11-01n/aexe 6b329a6c8796f39a8f0fe9eb06c8cff2b0558805b2729d2e9d3ec2ce53e72170n/aSmoke Loader
2021-11-01n/aexe de91e456d436a843b1dd01aabaeddfbc51284987b569cb20ea793db6ccf212cbn/a RedLineStealer
2021-11-01n/aexe 8d4597e4476949f659a54cc2c5bf56723808759b39832c73a0a40314d7a50703Virustotal results 29.85%Smoke Loader
2021-11-01n/aexe e5c4aea991beccf26b59afd2f00e6e02e41cca77a2bc17a84c23d390a04c3f43n/a Smoke Loader
2021-11-01n/aexe 4d528f022475f9df71855bf5204d7a00341677f98b22bb776f8d517eb377a201n/a Smoke Loader
2021-11-01n/aexe 33e0a31e5876927fb5b5447f5b866c8742b74757cd59861b840054b529059786n/a Smoke Loader
2021-11-01n/aexe 3cfe067ce8dd1d38f03327bdc55882dd0552aa970caa559913fa4381d5e87081n/a RedLineStealer
2021-11-01n/aexe de52a5d8a6a1f1689bfe110b5466c1850c96460a64aaba1d9bd30a71d5a77ab0n/a Smoke Loader
2021-11-01n/aexe 82312caab81ecc9a62fdf58470b41fcdb324616a6bc99747895eac045e46fd23Virustotal results 46.27%Smoke Loader