URLhaus Database

You are currently viewing the URLhaus database entry for http://jrfurnace.com/wp-down/setspn.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2249228
URL: http://jrfurnace.com/wp-down/setspn.exe
URL Status:Offline
Host: jrfurnace.com
Date added:2022-06-25 01:33:19 UTC
Last online:2023-02-11 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2023-02-11 07:53:07 UTC to Abusix ContactDB Test point)
Takedown time:8 months, 25 days, 10 hours, 59 minutes Bad (down since 2023-03-17 12:33:31 UTC)
Tags:32 AgentTesla link Arechclient2 exe SystemBC link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-03-02n/aexe e0b88b36b4b334ab15c19ed9aa6bf30a3812cc596371351e9e97bb72689dc616n/a
2023-02-20n/aexe 2d318b862acaefd6eca1766af328b87e3a111b8c58fc0ad9bec35924d41a676bn/a 
2022-07-19n/aexe d22727a796d337b56dab027f8ab29794b2de14f37e4307d51509418bea5f48b2n/a 
2022-07-18n/aexe c1c07edacf90d257f385aecfc40fe808ff8e07ed86754bbfef888c88b088d1a3n/a
2022-07-17n/aexe da0a9e46bd773cb16f6477c248467d956c099693e7d215ef8d716d5c51a83f3an/a 
2022-07-17n/aexe 178cf68f8aa72d7c90410a0dc217a68916849706b8b6c390058cf59608d20e34n/a 
2022-07-16n/aexe 179d89092c08b54f59f93e2eeebcdaf614ffd7480b03241d22de4b0b974b4eebn/a 
2022-07-16n/aexe 807c1379da571d42e23e7eea5f4209cad55df5ddfde27ffe8b9135c75d5559ban/a 
2022-07-15n/aexe 42922679f1b1e35f810a82fe3c9554adc522e25a6b8458942c556a7f52983b07n/aSystemBC
2022-07-15n/aexe 32a0236a76435a2a0a83b72366bcc03e90246687c3bf1ad5933d680595dd7c2fn/a 
2022-07-14n/aexe 31ad8910c2bd446281f2553e4afeb2f9a0eafd39aafb24d969c97765ce7f29dan/a 
2022-07-14n/aexe 4e9474194a84f802fce6592296c9bc279517d441c282be0f50770d72ee66ac7an/a 
2022-07-13n/aexe 195c08e37de18c2ad655cf211056abb74181d330099c085b6c5cb835f8e89a26n/aArechclient2
2022-07-08n/aexe 383f4b14f696674826980a6363a0387e57f4d0455661a46e5ae9fa635b79ae0fn/aArechclient2
2022-07-06n/aexe 9552c04e48230bee6cc07b661604c4e6f94d8d2f1513212e3b00c7ec35aaf943n/a Arechclient2
2022-07-06n/aexe 352ab9d73959789834f137fa167cd42e3827aa6bb6329bb153cfabaa5ce0be9fn/a Arechclient2
2022-07-05n/aexe 13fb0012bd520bfbdd63d357832efa5834f8e853acebbba0677c076a49dcc06en/a Arechclient2
2022-07-04n/aexe f550243c83fbfc3e1711739f118baebb00cbdda219faeadc134d93bc76b4012cn/a Arechclient2
2022-07-02n/aexe 527e19cd539e5d15bef1fcf472df30ba0534d42a7d01ec5d20600640e567adedn/aArechclient2
2022-07-01n/aexe 4e71a7ae354a8be3b6934d302ca09042c35db4348537bac30c1265b75ec48a72n/a Arechclient2
2022-06-30n/aexe c9ad3867af188afe9352fe5f2354c5768f6d4244a2112bee37177a17612112b0n/a Arechclient2
2022-06-30n/aexe 14dd3d5af1e3991501b6f68b843f526ad1dea3879dda9408c42f506e105faf97n/a Arechclient2
2022-06-29n/aexe faad008ad5e0f75f334e2d6ef1fbbc56facf1b3cc7b49e0d4b31c1a4b6d5c195n/a Arechclient2
2022-06-28n/aexe 59a8941ca12a3f267e6baa14070c72225dc74acdbfba67c6b75a2b9d72b9c9c7n/a Arechclient2
2022-06-27n/aexe 31d9316f2de3406011714dca58a8653f45a15d2613838c29649a55f5aecfda76n/aArechclient2
2022-06-26n/aexe 24972cecda20154015c31f4a8820764cbfa958d2968ab2b4a7c9e3e43510b888n/aArechclient2
2022-06-26n/aexe eacd13378e99f2a8dac59a134fa9adb81265f22c64a1d9eafd44c02643fdf4cbn/aArechclient2
2022-06-25n/aexe 9027302b65c696c2e079f70c18f55abc1fd10c497b4cad63bdbfbd8ac110b916n/aArechclient2
2022-06-25n/aexe 923d5230f8a2049305382197bb5209fa9dac355b3b3836973fc0426dceca17f4Virustotal results 38.81%AgentTesla