URLhaus Database

You are currently viewing the URLhaus database entry for http://privacy-tools-for-you-901.com/downloads/toolspab2.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2188519
URL: http://privacy-tools-for-you-901.com/downloads/toolspab2.exe
URL Status:Offline
Host: privacy-tools-for-you-901.com
Date added:2022-05-10 13:52:06 UTC
Last online:2022-05-11 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2022-05-11 13:33:06 UTC to abuse{at}vdsina[dot]ru)
Takedown time:1 day, 0 hours, 3 minutes Poor (down since 2022-05-11 13:56:14 UTC)
Tags:32 exe RedLineStealer link Smoke Loader link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-05-11n/aexe 12b478effea6b488f9602e2a1bba86d43cd6b590170973557a51af34464536ecn/a Smoke Loader
2022-05-11n/aexe e9d042c4c99c1b43504afe96e4d763b9001c1a4a0cec08e1cafb4dcb81885c3bn/a Smoke Loader
2022-05-11n/aexe e14070670d9d6ee5ebf8a6b39e0de868a2a1d8e77ec55e5a161152c566e0cc51n/a Smoke Loader
2022-05-11n/aexe 1158d35cf94f9bb033624663f9dc265ae5e7834c85b6a6c2f5702c847c0b9108n/a Smoke Loader
2022-05-11n/aexe 1e0df847b9f71671817c5bb70090f84c3b02b998097c5ab986c01401f804866cn/a Smoke Loader
2022-05-11n/aexe b173fb28b145bba4caaa6e8a8c02e8ece6d4030947bec0ac4f46cd60e008f2b2n/a Smoke Loader
2022-05-11n/aexe 8217573107ca562e7357b8347ad0ac44ecbbf70590ebca3f620aeed5ab051210n/a Smoke Loader
2022-05-11n/aexe bbd91da105ea52d6251c733f6d1ed8ea2819f29091e5f50c6a1fc54d2d0fc4c5n/a Smoke Loader
2022-05-10n/aexe a27c7d28a43b05e5c7c3498cea04f3b6b58b184df21c1be077187fdac2f00ed7n/a Smoke Loader
2022-05-10n/aexe d5c4c202169d1caef4853d6fe688d8c344d5bc595630eb4a46d100bf28d74c81n/a Smoke Loader
2022-05-10n/aexe b7b7923173922012b612ca603948802ac550683ffc47af5a183a2dd1e671b428n/a Smoke Loader
2022-05-10n/aexe 60fa054c7e84cd8bbdd36ebd46cad5b91e96ef8aeed837027c1ac5e5efc6c071n/a Smoke Loader
2022-05-10n/aexe 11b872992c304fb910212afa4e5bd169b71c6c95d73f10f7c52d68d438e595b0n/a Smoke Loader
2022-05-10n/aexe 58d6d654c38feecc02e71a8a238fc24c9602fd82a1819b4e0cfd34d7a18f5c9dn/a Smoke Loader
2022-05-10n/aexe 71c18cd10a0fae5784243e07cd547d0eb07e5f26220271ecb821b8c276b85c8fn/a Smoke Loader
2022-05-10n/aexe 6c29537bffd5f34f02bff20a8089ff8bb6f19182463bf62e3d0b4dfa3848b481n/a Smoke Loader
2022-05-10n/aexe 8890dfef6183c9a1184937470ae188f9227da675a6c8f2c43b41097a3637254en/a Smoke Loader
2022-05-10n/aexe a25c494ea58784066d1aab3d3b2617633b3db1af48671876ed3abf83520a2198n/a RedLineStealer
2022-05-10n/aexe e1b3723bb1bf8692036aef456431983075edb7f761832c334e1a23ceb15e71c5n/aSmoke Loader
2022-05-10n/aexe e135f62a3a586f02299473e4c1bbb7899f205b59b74758358fb4e4b8bf881601n/a Smoke Loader
2022-05-10n/aexe c7f2f64579b27adeec667dde785a53d61d243adac45a1092a946479cca93181an/aSmoke Loader
2022-05-10n/aexe e14ad5c73b829480cb86f5a34d7557d0b82cf47259f179c225343088a87f3dbfVirustotal results 37.68%Smoke Loader