URLhaus Database

You are currently viewing the URLhaus database entry for http://advanceddiplomaaviation.com/wordpress/1.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1808350
URL:	http://advanceddiplomaaviation.com/wordpress/1.exe
URL Status:	Offline
Host:	advanceddiplomaaviation.com
Date added:	2021-11-23 08:03:05 UTC
Last online:	2021-11-24 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2021-11-24 09:14:03 UTC to abuse{at}vdsina[dot]ru)
Takedown time:	1 day, 1 hours, 18 minutes (down since 2021-11-24 09:22:47 UTC)
Tags:	ArkeiStealer exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-11-23	n/a	exe	d931fab4f34f6d028837e9846db16abd2ba7f9274bafcbcab696cd002c79e771	n/a	ArkeiStealer
2021-11-23	n/a	exe	2d909c807702c23859178ef1a9561b2266954771d7d41308ce7d1ce17e556ba4	n/a	ArkeiStealer
2021-11-23	n/a	exe	6934b28f01a7d47ec4441dd8eb97f17116ff3862bad89e0df085adadbd1b8a10	n/a	ArkeiStealer
2021-11-23	n/a	exe	023e35dc4d69e7046714a6035d365603ad67a614520bdb325534f7da4bd3d4ea	n/a	ArkeiStealer
2021-11-23	n/a	exe	bd230bb2b4f83fbc4d39ac6e3e0f65a8756c6b815dd91f094e8ebad7d702735f	n/a	ArkeiStealer
2021-11-23	n/a	exe	abe83dc101019f51f9523f92f50a8f3a62a4b5471a833f621cc14aede5642740	n/a	ArkeiStealer
2021-11-23	n/a	exe	9b02090b0b32e5c7eb8587a397f656959bf32e8487b8706713a52ebd103f6fc8	n/a	ArkeiStealer
2021-11-23	n/a	exe	27efd366c042e167e2237736acd34ba2b834ff6ddfacc419e7889c71d1909723	43.28%	ArkeiStealer
2021-11-23	n/a	exe	5ce76ea8d59e8453d9e47c4314c9d85fbdc9a700c2bc7ea7eda09af91d440d21	38.46%	ArkeiStealer
2021-11-23	n/a	exe	26d62525d904a1739ff73041a2dc0522a31225fc0c696e061bde265c98027e9c	n/a	ArkeiStealer
2021-11-23	n/a	exe	05ff656fb5b23351cd5518f6580bbf8b75160897cb71dd32b14ecb13f7791eb6	n/a	ArkeiStealer
2021-11-23	n/a	exe	ffd10221005211f090f34086ba86a046bf7e44410e6f0163dd5bb82ecdadecb1	n/a	ArkeiStealer
2021-11-23	n/a	exe	3005c1cfe842e0a7c60ca9bb94abe954272f86c34b8d5eb1f8cf10ce8e3b126f	n/a	ArkeiStealer
2021-11-23	n/a	exe	3cd7a38de58e172dcf25ec4c7bc422b4e09bb8d7ca30958bc54bc4f1c8aee41f	n/a	ArkeiStealer
2021-11-23	n/a	exe	b2d52473495aa829e2c2c468ff219bd5f4eae5915329c4f48365df37eca942e7	n/a	ArkeiStealer
2021-11-23	n/a	exe	b0ad1f203a57048c9814cfc1e94f1cfe9123b1680aa87fad90ad04df1f37207d	n/a	ArkeiStealer
2021-11-23	n/a	exe	90fba76a6aa18dabe691bf76697a6160fce021d3e4a468868308053260184861	n/a	ArkeiStealer
2021-11-23	n/a	exe	ac5b0acfd212a0bf9dc3d0749b89d53f96054991d2d20f4e5e9c1727f0154c43	23.88%	ArkeiStealer
2021-11-23	n/a	exe	16da0951b94ba253c1d407dd921e258fde374a26cf83d095f6d5e975bf293137	n/a	ArkeiStealer