URLhaus Database

You are currently viewing the URLhaus database entry for http://portalinfosaude.info/.well-known/acme-challenge/1c.jpg which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:224432
URL: http://portalinfosaude.info/.well-known/acme-challenge/1c.jpg
URL Status:Offline
Host: portalinfosaude.info
Date added:2019-08-13 16:33:08 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@zbetcheckin
Abuse complaint sent (?): Yes (2019-08-13 16:34:03 UTC to abuse{at}ovh[dot]net)
Takedown time:20 hours, 37 minutes Good
Tags:exe Troldesh link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-08-14n/aexe 722ab7461218d5a733c866c6d470baa316ecfb01a37949292d6817cbad8adc05n/aRansomware.Troldesh
2019-08-14n/aexe 63452b9cb4233523d2f300efc62eb73dad956cedcba5f92d8c952544a8bae986n/aRansomware.Troldesh
2019-08-14n/aexe bcdd124f8532399f7bf44182d478f484dac952ec24513865b76a04c5511cc4a3n/aRansomware.Troldesh
2019-08-14n/aexe d9f7285aab6306d9caa0084b795bce9f73f121820442ce737c85f564dc55391bn/aRansomware.Troldesh
2019-08-14n/aexe c28aa29b149c2f978333d9597edd07bbcd3fc292b8a7d525df3b05db0a355bb9Virustotal results 24.62%Ransomware.Troldesh
2019-08-14n/aexe cb6b4ea936a7d76f778540a4e25ac81d08e37f060531f86d9fae012f6c4fc195n/aRansomware.Troldesh
2019-08-14n/aexe 3b3313e0241fa7d3725330f80afd2709395d217615a867cd83588d70971f4018n/aRansomware.Troldesh
2019-08-14n/aexe 635c0ffa30a36640706cc642e242647ee9d51d3913c22f60ca4801dcaf5e0867n/aRansomware.Troldesh
2019-08-14n/aexe ffe316ff34a86602ff0f0a76644a5e953b583e5131362722f7118b1a692883f1n/aRansomware.Troldesh
2019-08-14n/aexe de9c5aa0df6bd6a982236f032f9b2cb0feee6c0b30c70ffad0a07b685ac52600n/aRansomware.Troldesh
2019-08-13n/aexe 26eb6ebc5d7a0d9d55408c5137b076c674094350198a8ff4a50decfb527a00a8Virustotal results 47.69%Ransomware.Troldesh