URLhaus Database

You are currently viewing the URLhaus database entry for http://guseyn.best/MediaPlayer.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2031061
URL:	http://guseyn.best/MediaPlayer.exe
URL Status:	Offline
Host:	guseyn.best
Date added:	2022-02-05 17:19:06 UTC
Last online:	2022-02-06 19:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	benkow_
Abuse complaint sent (?):	Yes (2022-02-05 17:20:42 UTC to support{at}majordomo[dot]ru)
Takedown time:	1 day, 2 hours, 3 minutes (down since 2022-02-06 19:23:45 UTC)
Tags:	ArkeiStealer exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-02-06	n/a	exe	3702b5512d3d37bce8f288b800d11743b6f3a280df0d40aa57cd5080dffb1839	n/a	ArkeiStealer
2022-02-06	n/a	exe	c68b545f5d61152690f274c81e12ce294a4e64a6595a820540ff7ed3bdde2750	n/a	ArkeiStealer
2022-02-06	n/a	exe	8cbd131b98c4ee25e152907ad770f7cdfd982700b9d711733f0c828aa3d0ad3b	n/a	ArkeiStealer
2022-02-06	n/a	exe	e68f2cdb540fd95af998f10798ff5a6c3a2fdca0d3c3783a7c333ad7907e09c7	n/a	ArkeiStealer
2022-02-06	n/a	exe	55e2d64987ebc94f1ad0a9b0368a36064d63397f8c1143a8d2411e140bc5a1d6	n/a	ArkeiStealer
2022-02-06	n/a	exe	16c97e9b4cf2b609db8f80345aff4dc3062ff2c6e1a60bc4a8ebeba18ffdd8c7	n/a	ArkeiStealer
2022-02-06	n/a	exe	47ac985c17912f7de1cedc6662ebb4241595bfa1f54b08a81360521033edd987	n/a	ArkeiStealer
2022-02-06	n/a	exe	ebc9e5a3cda11d0c8a43155a2647f0c4647127d323d053f30f791e9331f2241d	n/a	ArkeiStealer
2022-02-06	n/a	exe	80cd0d21b194dfe51e804ae9cc8c310c9dad7f7a7c29158bfc1b06cb5598918d	n/a	ArkeiStealer
2022-02-06	n/a	exe	83c6bfec5a612c2dbbbeef8375e75ba1faea51434a094eb321a73cf87575cde9	n/a	ArkeiStealer
2022-02-06	n/a	exe	63f1a21311fb0aacb94bbc908180355feda19788c656f2f258a38e3daca00131	n/a	ArkeiStealer
2022-02-06	n/a	exe	513edb7b52fdc6175372da6c8c0e77686e3eeb0031069b7f1be66ff28bb171fe	n/a	ArkeiStealer
2022-02-06	n/a	exe	82594b278ca2d7266ab93e81bbe06b2f95e3f46922b5f9d074c7d5a60310a222	n/a
2022-02-05	n/a	exe	5c5d9711ea8ddb520646c0ac33e540c3860b795914749ee377040d8626ecc93b	n/a	ArkeiStealer
2022-02-05	n/a	exe	7c2744fc926928de15df923b58294b6c1318fb7b01a96399e661f328220d005b	n/a	RedLineStealer
2022-02-05	n/a	exe	0ba7dc012a6d64f8759b1d30629f56daa130bcec36e42c318cada88a2ad1d351	33.33%	RedLineStealer
2022-02-05	n/a	exe	9f157ceaee5858d2f77f1f828d9dc8417c7c99a65b4412896ac0231416336393	34.38%	RedLineStealer
2022-02-05	n/a	exe	ba195a9f090cb803df55df40d839f95e335234a13d3207f65efa46c3d0f837d0	n/a	RedLineStealer