URLhaus Database

You are currently viewing the URLhaus database entry for http://kotob.top/dl/build.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1978544
URL:	http://kotob.top/dl/build.exe
URL Status:	Offline
Host:	kotob.top
Date added:	2022-01-15 08:46:13 UTC
Last online:	2022-01-16 19:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2022-01-16 19:08:07 UTC to RIPE[dot]Abuse{at}a1[dot]bg)
Takedown time:	1 day, 10 hours, 50 minutes (down since 2022-01-16 19:37:15 UTC)
Tags:	exe stop

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-16	n/a	exe	fa57465bc6bd89407e4b37bf7f386bacae9417b6e715d2ecf3f5bf07b46602b4	n/a	Ransomware.Stop
2022-01-16	n/a	exe	5f65e2fb594b820822e7f39654f7f1707413229ac9baa371d53e4fa31161818b	n/a	Ransomware.Stop
2022-01-16	n/a	exe	fe2544e8fd10576580c5b8d5576f27cbfa189a8e1347fa69eadf9329c46a560f	30.88%	Ransomware.Stop
2022-01-16	n/a	exe	c052c0b0f0a7d8164462e471a1ec8cd89fde221cc5a701cc1b284508f521f2ba	n/a	Ransomware.Stop
2022-01-16	n/a	exe	81adf4e24ef020ea7fdfd1d1b24729df39d314400525d4a36a0ccfe71ad3945f	n/a	Ransomware.Stop
2022-01-16	n/a	exe	dda8a0671f754691b271c7d46a4af7a24cc5ccb96adf96c203a64d45ac843ff4	n/a	Ransomware.Stop
2022-01-16	n/a	exe	b0ede3f150eb0ffec3c31643b19cac0628f8b0cb2d16697b8ccc0f802b0fafb6	n/a	Ransomware.Stop
2022-01-16	n/a	exe	932c45414bacba0e753030307ef9935db70403db429f2fac3b03fda2951435bc	30.30%	Ransomware.Stop
2022-01-16	n/a	exe	fab4f5f2927e0316af5800ce6496c21212d34ed7ba62a6293a41d7d89d782df6	30.77%	Ransomware.Stop
2022-01-16	n/a	exe	89d19a7283d500a633bca1c6709ae5f23c09c8401649804151cdda0dfafcb643	n/a	Ransomware.Stop
2022-01-16	n/a	exe	382c7de5da72bb639a088fd547ecb43e9b6cf67375233a0b6cab3100a7aa4459	n/a	Ransomware.Stop
2022-01-16	n/a	exe	16394cd0aea8ff69c522d2fe0afe5ddb82284e3a380cc280d2c3741af091781a	n/a	Ransomware.Stop
2022-01-16	n/a	exe	9c09b71026adeb01eb5793431bf79cf57b1768154c4e4bfc62541dce4a5eec80	n/a	Ransomware.Stop
2022-01-16	n/a	exe	dd6b4af249f85102d3313d3045824e06da7e782918b3edc8dbcb5af7b507b66b	n/a	Ransomware.Stop
2022-01-16	n/a	exe	d0b7ab594959e67805f11a8293482c2f24ec924603deea71c35663dbeaf2c9cf	n/a	Ransomware.Stop
2022-01-16	n/a	exe	469dac8c5f0b08d91e498beb7017e12bd3a40c0d377a2cce20fa820a3dbde36b	n/a	Ransomware.Stop
2022-01-16	n/a	exe	0dc1056659f6011de065a45806fd778335d170dd72ae40a2f7e8bd54d5df763a	n/a	Ransomware.Stop
2022-01-16	n/a	exe	33fed03b6d8d5a4801eed46fc9b02c75a381026d718288bb331f51d302682933	n/a	Ransomware.Stop
2022-01-15	n/a	exe	a7f61244ad567af21da869ef7ec9eb99b7c022945246c969cf86db2224bc0c34	n/a	Ransomware.Stop
2022-01-15	n/a	exe	b5f21d908676ac52d9e231a74e56537bebe81d7d4bf49d96260eef1461165b98	n/a	Ransomware.Stop
2022-01-15	n/a	exe	a9578e2c25a176e288c419743d1627e23d329c5d4ec73e7c29ae17ae904f70f3	n/a	Ransomware.Stop
2022-01-15	n/a	exe	aba7ef8ce7758b2725ea7c34118287930f4586c549e37a91d41ebf3b4f2fd3b6	n/a	Ransomware.Stop
2022-01-15	n/a	exe	46a589865914e68326dab27f567e6f527a30422e86ec5dc3462bada3146e07b0	n/a	Ransomware.Stop
2022-01-15	n/a	exe	eda3d3626bc278a9ea9b9b3d386fa1af520613d9771e8b922de96d21db176eb3	n/a	Ransomware.Stop
2022-01-15	n/a	exe	3a3be0837ad5ae71174431afb72ea3c7c7743efd2b2ae2250e183ff94e0b813f	n/a	Ransomware.Stop
2022-01-15	n/a	exe	16b5b8acd69eb572d83775de64199705fb6ed22d0df1ddd84592e784b371a98d	n/a	Ransomware.Stop
2022-01-15	n/a	exe	7f7ff528316f81b2a9d349b4b522d2aa824ce6512d6be91b67368a24904bb898	n/a	Ransomware.Stop
2022-01-15	n/a	exe	d80c43408ab8681bff30f4ddbe5655a050a77d73975951f81ab0361fddde97a5	n/a	Ransomware.Stop
2022-01-15	n/a	exe	50aaffd939210c38e58d47decd3f8eceb3b6369501cac77c32ea2a1c445eca66	n/a	Ransomware.Stop
2022-01-15	n/a	exe	a1637978bf5c17d54cd0447ec49ead040daeaf8e3bf58d84419ab8d0d05dbff5	n/a	Ransomware.Stop
2022-01-15	n/a	exe	d3daa188cd6249ef55901e879d69c6b7bd998b9397ed628cced509c63f6728a9	n/a	Ransomware.Stop