URLhaus Database

You are currently viewing the URLhaus database entry for http://212.192.246.120/gntek.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2001965
URL:	http://212.192.246.120/gntek.exe
URL Status:	Offline
Host:	212.192.246.120
Date added:	2022-01-24 07:07:07 UTC
Last online:	2022-02-24 01:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2022-01-24 07:08:34 UTC to abuse{at}des[dot]capital)
Takedown time:	1 month, 0 days, 18 hours, 44 minutes (down since 2022-02-24 01:53:15 UTC)
Tags:	exe Formbook

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-02-01	n/a	exe	0d0a72e23a95a6e537d344e6acab903e09793a4b652cad815daf9b8bab23b47f	n/a	Formbook
2022-01-31	n/a	exe	fc35540b602ba860b10c2b43261657a7e2b9fc1d3aa8104272f2255a664fabd7	n/a	Formbook
2022-01-28	n/a	exe	9af4d9ef8b2a850854ae23411d44d3603147c26898bca1010fd2f9b16f6d456e	n/a	Formbook
2022-01-27	n/a	exe	0dc0fe1def515829cc10ee31577be5f7dab8be62fe20ef09a96485c686162cc3	n/a
2022-01-26	n/a	exe	cfb1885ffc36b477e82c2f725fe625c38018760da2531d3a2024f0c24752997a	n/a
2022-01-25	n/a	exe	02c848711be5356cc435b98837bdf0120cac86fdeaa5238793a3ab6300482147	n/a	Formbook
2022-01-24	n/a	exe	b96d8904afc128bf96f360fb2702b6eb0d4d70ae6cbf32e7e4bbdd90ff884a04	n/a	Formbook