URLhaus Database

You are currently viewing the URLhaus database entry for http://fujhi.com/f/sups.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2280743
URL:	http://fujhi.com/f/sups.exe
URL Status:	Offline
Host:	fujhi.com
Date added:	2022-08-27 12:47:06 UTC
Last online:	2022-08-28 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2022-08-27 13:30:08 UTC to abuse{at}mtw[dot]ru)
Takedown time:	18 hours, 19 minutes (down since 2022-08-28 07:07:06 UTC)
Tags:	ArkeiStealer dcrat exe Formbook opendir RecordBreaker RedLineStealer Smoke Loader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-08-28	n/a	exe	1d920c50ce79e794105a447acf288cbbf54afb05ccb81b63fc1e50e65430e2a1	n/a	Smoke Loader
2022-08-28	n/a	exe	df590bceb693fc56770c4d38593029a55a9089861fdf9dc16d66a28e9937538e	n/a	RecordBreaker
2022-08-28	n/a	exe	5354e8f3b71a8fc97815eeb1ce7378fac5f5904c4fbd4a2e54f2a514746746c7	n/a	Formbook
2022-08-28	n/a	exe	6ed7bcd055c39d73d9931abe8e3c72dd5eedc515abe2f804d6eafde208a69e71	n/a	RecordBreaker
2022-08-28	n/a	exe	d7b4d2dc55f5cccd3c78faa681a66bb34410844b1b489871013019fd3a0a592d	n/a	RecordBreaker
2022-08-28	n/a	exe	1ebafaefbd38b0dc21a2e8948eafc886e237f078fb9edeffab85f5c904afe50a	n/a	Smoke Loader
2022-08-28	n/a	exe	79c7761ce2cc7a7650dc448e49af453e0c9371bbd4e8f18c2e76fce42134951b	n/a	RedLineStealer
2022-08-28	n/a	exe	fd582f2eac99165e184680af6cad7a54bc49be0d81062a84a8b7ed89c6264d54	n/a	RecordBreaker
2022-08-28	n/a	exe	0d932c75aaa05e080f148244d3bb662f029700d0f93db45016bc7e832f4ec97b	n/a	RecordBreaker
2022-08-28	n/a	exe	6bec1b0031afd498aa61e08c7862bc1bc1a8b4a5dc431af109fc8fa5928d39da	n/a	RecordBreaker
2022-08-28	n/a	exe	e6377f8eab328be9e7e44ab527745930e2e7f2c5bbd12002e8bbd067d433c554	n/a	RecordBreaker
2022-08-28	n/a	exe	f86844e38cbb4a00e629866014e2783dd0a4ad27e93cb1571b313cf24ff8f50e	n/a	Smoke Loader
2022-08-27	n/a	exe	aa242d4c8a5f67afd47de854a31bb5bdc7d26a56341561b0651a4084e89849a8	n/a	DCRat
2022-08-27	n/a	exe	fd3c3fae617c274ad21ce3dd7ed5bd7917f1cc4c05c3e2eb7970bc4a13e5f677	14.08%	Smoke Loader
2022-08-27	n/a	exe	1d14424e22e231fbdb8059c1c1f1bba3bf51868d820e68900a9274484ac3fe9a	n/a	Smoke Loader
2022-08-27	n/a	exe	9d2e0af3b8bff569350605fdb9a8b335e0927c3a79ead19e0e22b68be9485fed	15.71%	Smoke Loader
2022-08-27	n/a	exe	0a4440a7a52617208ec855783b6d8c3f463cf252f55daabb91e1f077f7851147	17.14%	Smoke Loader
2022-08-27	n/a	exe	7e1e6f593554832937d7ba69b5621c2cf62b0dee645af38d135ca87b8af41fe6	n/a	RecordBreaker
2022-08-27	n/a	exe	fc2e70d71b95648d7877ff7122a5f495907c0001ba18f62ad99ac5a189af2053	15.49%	Formbook
2022-08-27	n/a	exe	9dd0e772737b8d16a0cdb8b201469b6e615665bdd377469f0e5f93b9ba8ac479	n/a	Formbook
2022-08-27	n/a	exe	b9e95b6fa3070fb53792cb09341e8f2e62a1bd129303b238a94928d39ca0071b	n/a	RedLineStealer
2022-08-27	n/a	exe	16b2ea0885770cabb95f34302cc5fbbcc3e5da09b54de30a62332f7d714799bf	n/a	Smoke Loader
2022-08-27	n/a	exe	cb2564dcfdc61a2ea6154055a1bd85adc99b6161e93d87a6bc6770a67528c810	12.68%	Smoke Loader
2022-08-27	n/a	exe	9112a7346d78a2ae8877aa00b74654c6d09247b3db7fff02c78dc11235ce37f8	n/a	Smoke Loader
2022-08-27	n/a	exe	a1bd3b7bb3bf0ef48ef8b3c12fe5b8afdea0387fd6f502a00618115b4579e2cc	n/a	Smoke Loader
2022-08-27	n/a	exe	7f444354800083e450df5aa31a7b2d17cfe47add520fa630b1fa1a58b2c8a45d	n/a	Smoke Loader
2022-08-27	n/a	exe	ef21ae74a71b4723917307e94623bea6f6bab6786c44f4a1a6ac6dc85b8840a5	n/a	ArkeiStealer
2022-08-27	n/a	exe	38499e2889590574aa401acf16f8aba05e693e3da4aa0ac6e71f5d690446d29e	n/a	Smoke Loader
2022-08-27	n/a	exe	19d1b12586618c4e46339df126a1f097a8450b4baf34c22e485b8daa5ff6624c	21.43%	Smoke Loader
2022-08-27	n/a	exe	a70beb61ac3aa68ed844f8bf3a5c9ada717363fc372948c2ef88abb647665f39	n/a	RedLineStealer
2022-08-27	n/a	exe	12d0f4e279c8b87d94fba44d8e4a85c553cd96b90256716bd98096ca4c2ba359	18.31%	RecordBreaker
2022-08-27	n/a	exe	b5938ac3434dba249dd144d180b2d9d1fae0918b81630497c458781acd3afed8	29.58%	ArkeiStealer
2022-08-27	n/a	exe	4decc3a50373ff5bfc927f1ddd70bfc1473a4d56a4fbda327d8c88309da5b14a	n/a	Smoke Loader