URLhaus Database

You are currently viewing the URLhaus database entry for http://tg8.cllgxx.com/hp8/g1/rtst1079.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2202623
URL: http://tg8.cllgxx.com/hp8/g1/rtst1079.exe
URL Status:Offline
Host: tg8.cllgxx.com
Date added:2022-05-19 15:17:06 UTC
Last online:2022-09-08 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2022-05-19 15:18:06 UTC to abuse{at}scalabledns[dot]com)
Takedown time:3 months, 21 days, 18 hours, 20 minutes Bad (down since 2022-09-08 09:38:34 UTC)
Tags:exe fabookie

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-09-06n/aexe 4a7a127d35080483b89c5aad47d199c9eb6f05fde38d8446b46e16c77121c40en/a Fabookie
2022-09-05n/aexe 26d1867afcdb878469d2b612fd4b8abf644e7643621332c597ec6dd307dcf9afn/a Fabookie
2022-09-04n/aexe 17a80db96503eeb7c411d7985b7330e5de86ce23deb9850bafb9a413aa26b3fcn/a Fabookie
2022-09-02n/aexe 17bd285725e872f2fa2085b5ba8e0ea11340a05d4a3efe3ad9c597f2a1ebb64an/a Fabookie
2022-09-01n/aexe 3b15e39e4296cde54eb918492eb6e276b0bde9e31091dc816c2b52101f7c8d3an/a Fabookie
2022-08-31n/aexe 64c1d2201c3fc4e395a9224652fa614fa69f31f18ddda09e08dfdbbbca32d1b7n/a Fabookie
2022-08-30n/aexe ba338fa76f2e97b82733aed390d22b10170b38ed1906318de26ccc1e6d2403d3n/a Fabookie
2022-08-29n/aexe 4b9044c5be4809e965ad8ce54ddeb686be59d2396bb123815f6fc2ec9c3ea84bn/a Fabookie
2022-08-28n/aexe 4f3f16457a61862c069ce1caf1e333b49167202a219d1ce1271a25c4c955e242n/a Fabookie
2022-08-27n/aexe ef9e6a20f8c2e06fc90fea11295d44b481cd0a135bf69fcd3807e5b2b539ec32n/a Fabookie
2022-08-24n/aexe 6a8663a14e9a6a465ca8b476121394dcc37dc22d0929e969e1999177bb37167bn/a Fabookie
2022-08-21n/aexe c8b965e7ec247fa0fd59b8a894ed422e247ef2b9513c5d05804caa63b07cc915n/a Fabookie
2022-08-15n/aexe b4de20935d8a97821500309b764ea0803d4c69b0194dbf7da64bd0969fd0494dn/a Fabookie
2022-08-03n/aexe a7a10ea5c39ce62906ad59a066661124f267d5c115412d738c62f0ad3a6f9652n/a Fabookie
2022-08-02n/aexe dc885f7fec6130b824769020c3fe06dd80a6f7282aa3cbed01ac8d98c23700f7n/a Fabookie
2022-08-01n/aexe c3f577a43b7821fa98697bc3a47a1cafc074583c74a9f9d48e1b53698efa2476n/a Fabookie
2022-07-26n/aexe 98985d4704b7484303e37ac50c1f38e9dd75d93eaf83d2f97b8bfe0e69def744n/a Fabookie
2022-07-15n/aexe b9371f0d1ccbf47c64928aac2325c75581e0adb0e3298b42d4db133fa3118718n/a Fabookie
2022-07-14n/aexe 593db5495fff15ccf79dd1ed70b27a16f00853c259997ef1f686e5600917ee31n/a Fabookie
2022-07-09n/aexe 6197d69ec72906152458399e75125e2b7f310dc22d1208478489e755abc5d839n/a Fabookie
2022-06-28n/aexe ad4e265b38bedcba91e2bca61bf1f5ddc5d3aae6e95bdcdaa4976573033def70n/a Fabookie
2022-06-20n/aexe d29df92ec7b9f8115f43020c11311ee7ad07774d0ed4382fa0e846c2d6b222e8n/a 
2022-06-15n/aexe 5e5f2d41a588a3a14b98be41baf965598f795ce4cce2cfcaddbd3118b3862d64n/a 
2022-06-13n/aexe 35341c0cf05497e9c6ee35e19f255ca0d69436d371262f0386e52716565b7f21n/a Fabookie
2022-06-06n/aexe 6c49edabd61702b5254163c19c7fedb5f009730cb1eb63e9f97f2a760cfbeaedn/a Fabookie
2022-05-30n/aexe 4f59be85cbc0a6e8f9309baa278273f7c18ace32a7db4f77ad85bdae87efaeeen/a Fabookie
2022-05-23n/aexe 1b0cdb12615e14003d2b0aa750a393d79630a53e034691e7d87073c26654483bn/a Fabookie
2022-05-19n/aexe e737048deb3ca3d547b7ba94d7b0dc5eba03f7a05ec9c9fbef2d5a3f0fc20882Virustotal results 29.85%Fabookie