URLhaus Database

You are currently viewing the URLhaus database entry for http://jrfurnace.com/wp-down/mmgaserver.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2249229
URL: http://jrfurnace.com/wp-down/mmgaserver.exe
URL Status:Offline
Host: jrfurnace.com
Date added:2022-06-25 01:38:05 UTC
Last online:2023-02-11 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2023-02-11 11:31:06 UTC to Abusix ContactDB Test point)
Takedown time:8 months, 25 days, 11 hours, 2 minutes Bad (down since 2023-03-17 12:41:25 UTC)
Tags:CoinMiner CoinMiner.XMRig exe XFilesStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-08-25n/aexe 4e25c5c75583674105f700bb02ee858a1ab3dd8d61c3f2fce50ba0be791950aan/a 
2022-08-21n/aexe de893bb4e14ab490295a7d7b0ad8e7f59d1c86bab836f006b9c3e02fb67fc24bn/a 
2022-08-20n/aexe ef3c6ade1a09ab12f9859b5cf06d9512383645edf515b0a3c31f1cca06cbb04cn/a 
2022-08-18n/aexe 22e1fb03f32fcefcd6914d8a5ec06b0c17d94e20d7384137d7c920baa95e32ban/a 
2022-08-15n/aexe 397daadb66ad7d7bc4c538cc8ffe94d50840dd958dee641c8596f031b3e91ef3n/a 
2022-08-13n/aexe 104d4083089b0457dbc7af9ed7d065679d2117bd5babfba0abef2b6db7f8fe0en/a 
2022-07-26n/aexe b8f5c078267e4fc507c98ce18714bb2bbfeecbf8940dbec630503e4ef7cc55den/a 
2022-07-22n/aexe 61820fc5ccaff7f1ce37dbd4592440cecede3306b9fd326ee4528d732b9b2aa2n/a 
2022-07-20n/aexe 875f56192584a7a35bed5b540d1ef31cab03027577455f39fc16f28887e4815an/a CoinMiner
2022-07-17n/aexe 058e5be57a89caaaf3b266bd19f4bc00210315e46af068b40b28927a3afdc1e1n/a XFilesStealer
2022-07-17n/aexe 8e5b093360284734d36868d0c502c7903e6e19bae34242995e7921ab301188bdn/a CoinMiner
2022-07-16n/aexe 48454a306392ebf503921190bc8d389163f4ecf02f41ad56db92c5572384e581n/a CoinMiner
2022-07-15n/aexe e01031275ef9cee42de309d2e23b5d8bb5831aaf8adfad8289472a27192331f2n/a XFilesStealer
2022-07-14n/aexe 664e88014ff16a27bcd0a18142322810bf38851a965a3db17e760afbf6aa6489n/a XFilesStealer
2022-07-13n/aexe ced543542a762752a146ec222212c90fb1cecac0f2b47996e06324867b846213n/a CoinMiner
2022-07-08n/aexe 91bdf71dfffe073aa7fe63173bdd2f918ae1e5057f8d476951112b7321e63ba2n/a CoinMiner.XMRig
2022-07-06n/aexe 44de4a2ae9ff36f47d9c4466e1680af53b64345804b2d5bca650c15a3de7f998n/a XFilesStealer
2022-07-04n/aexe ed403ab46054f7fcf5ba5c7a6f1a91e1b81e65d69ca7cf3822d8e41e88d84819n/a CoinMiner
2022-07-04n/aexe 98256a8f5a61c8c7545813245b78b22d1386aadfba7f5d4852ec54dd31ad956an/a CoinMiner.XMRig
2022-07-02n/aexe 6368589f69b2a930c7c94387d980ad3956b9e379c2ad50594a1e508bdf0a7c3en/a CoinMiner
2022-07-01n/aexe 874528fb19c576e666d147ac5438beb506179a2105d379e4ba9a603f20a47923n/a XFilesStealer
2022-06-30n/aexe 8a2ec5cdd7e9014e206b7bde7ec45c2b9b42e46c49df52abca4d5329f05f5490Virustotal results 25.76% XFilesStealer
2022-06-30n/aexe 91b10409e2bef553d6d08c6b2c90887fbc937d6092ab9c8b287d5ccd7094b062n/a XFilesStealer
2022-06-28n/aexe 29b8b3b0e939ecd6e10b9c1f761853a0a7dbd7233a67e2770e08b5df61a5d113n/a CoinMiner
2022-06-26n/aexe 620b017cb8cb6b5d41732a0d63777f163e2d4bf0e44a90d88f788427b9ef26a6n/aXFilesStealer
2022-06-25n/aexe be377af05da4cbfb3343986969c696ec6360a98bf492b674d11d468f64137a63n/a CoinMiner
2022-06-25n/aexe be9497ee6942602149bce132239b797ac9c9735fa9ef2d980bea6ea6376a8801Virustotal results 27.27%CoinMiner