URLhaus Database

You are currently viewing the URLhaus database entry for http://kotob.top/dl/build2.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1786597
URL: http://kotob.top/dl/build2.exe
URL Status:Offline
Host: kotob.top
Date added:2021-11-14 20:54:41 UTC
Last online:2022-01-19 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: benkow_
Abuse complaint sent (?): Yes (2022-01-19 22:32:43 UTC to timoteo_perez{at}claro[dot]com[dot]do,abuse{at}codetel[dot]net[dot]do)
Takedown time:2 months, 6 days, 1 hours, 38 minutes Bad (down since 2022-01-19 22:41:03 UTC)
Tags:ArkeiStealer link exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-01-18n/aexe c56621b4054263a18a5585713bb0e1e27a92914aa4089408ecc80e6a1e5b422en/a ArkeiStealer
2022-01-18n/aexe 415b2a4ddeaafbf631b7dbd90e7f890e304d1cfdd66cd2faea3d3011154c8b76n/a ArkeiStealer
2022-01-18n/aexe dfd0237a1df251793d4b1495faadbde233eb50e1b78601978963259a339d4471n/a ArkeiStealer
2022-01-17n/aexe 5dade017a4ed56f3795a13f89d6ece948a0efd96316061d4c646a1f8d6df817eVirustotal results 50.72% ArkeiStealer
2022-01-03n/aexe 118fdc1f91f1d3ccd8afeed03bfbc1c51e6bc7e316d9b1c0d88640872ed3e17en/aArkeiStealer
2021-12-31n/aexe df71148d5c047d3d46ce71ca4f68487b0a487a0b52ea4f5bb3f8eda035fd771aVirustotal results 76.47%ArkeiStealer
2021-12-27n/aexe 12f67b777aa65271b2e5773b042cbf8bc1c0bf8cabaf356aa05b583a1e581b94n/a ArkeiStealer
2021-12-26n/aexe 347417a340793f09888460d3af86f7fd2dfee072016d443130b2e24a06899ad0n/a ArkeiStealer
2021-12-23n/aexe d2f136baa22d61c72002b33e5e66b03e58309d35b0f2abb968ebc8d1fa159359Virustotal results 49.23% ArkeiStealer
2021-12-18n/aexe 229b06ba702bdde53a3f4a89d9da20d47b972ddaf45b00997fa517014e4d5becVirustotal results 53.62% ArkeiStealer
2021-12-10n/aexe 0241e8302dd7f1dbb90ad8f26e6d852b665c4068dcd02903f0eac1b7208cf9c3Virustotal results 76.56%ArkeiStealer
2021-11-30n/aexe c19a32b2c1b56473245cb672da9d589227f52966b40c9b761765e85418052f35Virustotal results 37.50% ArkeiStealer
2021-11-23n/aexe 9d4f3c4a7bce15559a9501b2c7d2ecf8f005a1b325dd407dff8054ed0e3e9b17Virustotal results 41.79% ArkeiStealer
2021-11-17n/aexe a4a31db13374418337c98302d3e7dd841351826743fb2face7d2058597dd581bn/a ArkeiStealer
2021-11-16n/aexe c186d29d3e7c1183a931e1c7116884d60cff668baffcea4b349851ca083ac187n/a ArkeiStealer
2021-11-14n/aexe 050cc4823e9f393e290fa9c758bc09f63344db1319728348cde18a3598e935f4Virustotal results 50.75% ArkeiStealer