URLhaus Database

You are currently viewing the URLhaus database entry for http://wooq.link/CERT.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2041783
URL: http://wooq.link/CERT.exe
URL Status:Offline
Host: wooq.link
Date added:2022-02-12 19:53:34 UTC
Last online:2022-02-13 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: benkow_
Abuse complaint sent (?): Yes (2022-02-12 21:43:16 UTC to support{at}ruvds[dot]com)
Takedown time:1 day, 2 hours, 23 minutes Poor (down since 2022-02-13 23:12:32 UTC)
Tags:ArkeiStealer link exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-02-13n/aexe 54c3bb30df4081c466e00420885c6953491f09d193d8397a31908dc59cdedc8en/a ArkeiStealer
2022-02-13n/aexe f74acb705d02c071c3bdb02f60a86cd554d8800251c98f1485c8f80a5be5e115n/a ArkeiStealer
2022-02-13n/aexe a268cefb29655149369b231946733f1e2409a940c0ac56b10201afd368d949e8n/a ArkeiStealer
2022-02-13n/aexe c66486ee55d4221218b24f4c33d9f857aaa23d2a2ca6b4d8bf37cabba1cd9280n/a ArkeiStealer
2022-02-13n/aexe 4651ad55200989d20043dd2de97454987645c4e7c3c0642e935734b565bc95b5n/a ArkeiStealer
2022-02-13n/aexe 45fff1aac281bbe83e69c09c3f66efe3c38e16433a822bbd2fb16daf13ff8fabn/a ArkeiStealer
2022-02-13n/aexe eff61bbcc4fb5dc8e7cdf916bd0341e05ecdceea59893fd3f048b9ff97a642e7n/a ArkeiStealer
2022-02-13n/aexe 303d14829da3ae885d93efcd36f71c8a2fc3428213591a242776906bac53c778n/a ArkeiStealer
2022-02-13n/aexe a3b12e280259b7ed16cf405f54ce0dfc7331165893caafce1994ff5908366439Virustotal results 34.33% ArkeiStealer
2022-02-13n/aexe 76a4f5e2d39039f85fb14681dd6a64785973407a06799a48b3ec65bd9bff7515n/a ArkeiStealer
2022-02-13n/aexe 8ab7cd42f6b90e250f69f4c96efb32d36135bb1479acfec28344a4910a3a329bn/aArkeiStealer
2022-02-13n/aexe 61b00eaf8df198caa3cbc58ca74b748538c88f55cbe7c7a702a7d4fb29879e9bn/aArkeiStealer
2022-02-13n/aexe 31ad34787916e6d563c01153058489ad060f3d6f445a2ecbe7e5f6e031d677f7n/a ArkeiStealer
2022-02-13n/aexe 10769a2c8c8c7bfcce384961db461a731fb650a18052facbdb979ed788fce983n/a ArkeiStealer
2022-02-13n/aexe 779a8e7fe0ff8cb2036ec126030a2a3ea4c354f31a16b05b4fa55c8cc211ab81n/a ArkeiStealer
2022-02-13n/aexe 969056d8fd647fa92a67a740c4bd4b76cad0e51ec670b281e04acc590a1ba4fdVirustotal results 36.23%ArkeiStealer
2022-02-12n/aexe b0fc7a2a5bc24543f56dc08e65950baec2b3d28bd900309321b912bb09a37e90n/aArkeiStealer
2022-02-12n/aexe 3133fa158ceed84616d846bee91ef670425cc5568b5a96c34b48a9c8bcfe52ean/aArkeiStealer