URLhaus Database

You are currently viewing the URLhaus database entry for http://onholyland.com/HAY/OSI.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:219298
URL: http://onholyland.com/HAY/OSI.exe
URL Status:Offline
Host: onholyland.com
Date added:2019-07-24 11:31:04 UTC
Last online:2019-08-11 11:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2019-07-24 11:32:03 UTC to abuse{at}cloudwm[dot]com)
Takedown time:18 days, 0 hours, 26 minutes Bad (down since 2019-08-11 11:58:25 UTC)
Tags:exe NanoCore link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2019-08-05n/aexe 7c5999cd87cd3f4b0b9c8e247741e6802399f2eea9545550ccf50831585e4226n/a 
2019-08-05n/aexe 48f51236812a8e91b8bd242dbe60fa2efb9c807cd3e643237284e13607f047b1n/a 
2019-08-01n/aexe ff26101bc666ddab3c7c56bf6e258cda5e7391be4b6019adde0d6faa9c0b5a07n/a NanoCore
2019-07-31n/aexe da153fe006a2373bfd6c746b7490b91cae6f23e5e2970e44c64b01ed48d89223n/a 
2019-07-30n/aexe 5a86312c62b628079b5a6d5a18e5f9de5e75ca771003d1aa2cf6a76ba1626239n/a 
2019-07-29n/aexe e4b0a09e124ca8d2fdeafb06ff8e1c3f5dab60dda11c0e29402e49401bdf4d36n/a NanoCore
2019-07-29n/aexe 1fd5774f2140e86b6a35d5b78c302790d698283c53126b7899d262a0913b7bf5n/a NanoCore
2019-07-28n/aexe cb8b08daee2cb80035974c1f9decdec8345527e52c5213cf5e033dc8c0eb7682n/a NanoCore
2019-07-26n/aexe e88a7d7a0737333d6d1d97faef58baa01ce0ef878a638caa983826ba65935f1eVirustotal results 19.12% 
2019-07-24n/aexe 1e1933eae5359527ed969437bd35e5f5b1859b259c6f6752e57bcddca364503cn/a NanoCore
2019-07-24n/aexe ccc03457a3d6bb862d68fdee3102c686c9e2eeac295beea92616b44010972cd2Virustotal results 29.17% NanoCore