URLhaus Database

You are currently viewing the URLhaus database entry for http://cusara.xyz/f/all.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2281631
URL:	http://cusara.xyz/f/all.exe
URL Status:	Offline
Host:	cusara.xyz
Date added:	2022-08-28 05:04:05 UTC
Last online:	2022-08-29 19:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2022-08-28 05:05:06 UTC to abuse{at}mtw[dot]ru)
Takedown time:	1 day, 14 hours, 36 minutes (down since 2022-08-29 19:41:58 UTC)
Tags:	32 dcrat exe Formbook RecordBreaker RedLineStealer Smoke Loader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-08-29	n/a	exe	b41275fea84503eb1e56b720327fb2d5eece7287568cc54f84845edc245b5c20	n/a	RedLineStealer
2022-08-29	n/a	exe	a135de0bc925ca68c6cbd9e69ee8daa49fbb0506b1d0b800fbd23758c79aa42f	n/a	Smoke Loader
2022-08-29	n/a	exe	da193ad371593619011f60b3d40a7feaf7162a3a948838e054309cafab0c3283	n/a	Smoke Loader
2022-08-29	n/a	exe	89c57de1f13b4a2b6139bd722c6c8bfa477885abb1d3e7a5401630573ed52825	n/a	RecordBreaker
2022-08-29	n/a	exe	bab61d943d02a6f18ba905499487421cee214e3aad2babb3eed0cdedcdbb9103	n/a	RecordBreaker
2022-08-29	n/a	exe	be6a5a7a03c9d543b771e9564d7093825193479e7b12a6f2d1a1fa5678a5ee98	27.14%	Smoke Loader
2022-08-29	n/a	exe	1950bce8cc25f261b560d4d8f31e3ff70b2164a75b159a46672bf76cbee3388b	n/a	Smoke Loader
2022-08-29	n/a	exe	f0689272170b7aba434b412632308a2a50a270be432b222ba61cc94c3c9fd78a	n/a	RecordBreaker
2022-08-29	n/a	exe	2df55c7b27b60884509e881651d932807df8bd3264ed4b32a8485a5499b4f710	n/a	RecordBreaker
2022-08-29	n/a	exe	aba33c7d68b6f2390b433648069f9a9ed20a402c6964e1e6d0f2b5d881dc134c	n/a	Smoke Loader
2022-08-29	n/a	exe	12d9f8130dc4b1fd2ce25a9900ea8d7f519599a64c272ea3e6d6f2337f367dd1	n/a	Smoke Loader
2022-08-29	n/a	exe	29c64df5c9f4d80fb262c63ac46b04f4b4dfdcde19fa0b1e2e9f955e25c29416	n/a	Smoke Loader
2022-08-29	n/a	exe	4f7ad0e22d4587766d583ec889c0062801ca9edd6ed50b9ad7154fe9e305b858	n/a	RedLineStealer
2022-08-29	n/a	exe	9b80c2bd0c5ec2dfe2582f49a7b58332d8a2081032bdf29ff8929c1ba0701c00	n/a	RecordBreaker
2022-08-29	n/a	exe	cd26588073ff73f8aba7766303e0963c15b2a848e8971fa086f87a6ed355fca1	n/a	Smoke Loader
2022-08-29	n/a	exe	5c9b485eebb9a1fb8301d5bc8ea80a1bf18af72ef3b885fdb7ae24c5d3fa9277	n/a	RecordBreaker
2022-08-29	n/a	exe	1d4a3cf7719a5214e5dbb705e32ffb0f20af374d74e96b22256f96ce9eede77d	n/a	RecordBreaker
2022-08-29	n/a	exe	cf63e96adc79ab401b894087eb6117e69735e4d36cc5f2bc5c6abf156a463121	n/a	RecordBreaker
2022-08-29	n/a	exe	c9be74e0f09e7121dda6dbeef885d161c31c547ace3b662716674d2f3b3be668	n/a	RecordBreaker
2022-08-29	n/a	exe	720a3fc2c7b9723b5636253580667a58f3c0bb9650f6bda724f7868f63daa057	n/a	RecordBreaker
2022-08-29	n/a	exe	f350aca2f9d006666d3db133138e81016910ca7a9fa759e94d99b66a49ec959a	n/a	RecordBreaker
2022-08-29	n/a	exe	829211e85341e401813b02bb507b55fe9c2cddd752d33bc0cf369501b257756e	n/a	RecordBreaker
2022-08-29	n/a	exe	6f1155982f74d5b0d8727602e52d1f7eb30626ee21d9a1f3e8c0ce7881ae40a9	n/a	Smoke Loader
2022-08-29	n/a	exe	b981f3c18ff9b8fd79ff43cddd3490d453d373581e0e261ab71398a59e69b1e2	n/a	RecordBreaker
2022-08-29	n/a	exe	93e8d2f461d816df6f97ae2ec41ebfa063d571a54fc69c0ce00aec7b39969722	n/a	Smoke Loader
2022-08-29	n/a	exe	eb2d7dd26e33a5cc56c9a94252bc9f04eae93e41bbbcd1b23e37fdc07a62fad5	n/a	Smoke Loader
2022-08-29	n/a	exe	3bd622b55a64a74a2452fc882cd26f3adef86400b4d4000aed0791682dd43a25	n/a	RedLineStealer
2022-08-28	n/a	exe	113b4a475304071ca2045537f2af8ba4c5db14a4ab20b2f97fa0037bbb212fda	n/a	Smoke Loader
2022-08-28	n/a	exe	1f83450c7f819cbc0bc0da8a49df801a21a84fb14de988b7891573f3fd2d1903	n/a	Smoke Loader
2022-08-28	n/a	exe	1e38e469af2d0d9f33a489f9114180bca53a8e0ca74ab47dfb765591bd95c549	n/a	RecordBreaker
2022-08-28	n/a	exe	a6620b369dee6c28694126b0082095615115654e5bc3b71f333f4a3fe21f6738	n/a	RecordBreaker
2022-08-28	n/a	exe	8a3fbe98382adc07249d50db1aab8377b9587018be3598ef35cfc5d35495519a	n/a	RecordBreaker
2022-08-28	n/a	exe	e591b90146b4483163c89abfb8186c2cb3612419210b995d44da912a0edbb3f5	n/a	RecordBreaker
2022-08-28	n/a	exe	c6f08559551f3db557a40537c7686831bffc968df3aa6221082fa2479be4a5fa	n/a	RecordBreaker
2022-08-28	n/a	exe	15b548aafc5ac7f52f93dcb7196e2849b85d1e8c7719dcfa9c7e96f662504997	n/a	Smoke Loader
2022-08-28	n/a	exe	e6173a0a906d3259d4a9006b61901262705e309a6e5bc1cdfc035e3a78e2f225	n/a	RedLineStealer
2022-08-28	n/a	exe	eab2a4f88825eae139972e135ec60f49f0953dcedefb4a576b5c1d340d107560	n/a	Smoke Loader
2022-08-28	n/a	exe	2693f493149e484c923c585e1d7898da38ee5825f3f042dddf22e59a50e14f3e	n/a	Smoke Loader
2022-08-28	n/a	exe	f8fbc50db8de41fbcf7dcf31883c086b50d0cc74fbbd94979893fc26c9898f76	n/a	RecordBreaker
2022-08-28	n/a	exe	0eb97fb695ebe78dde211a7d2e35ab953d56237ec6b962b235b9a5f454d8f102	n/a	Smoke Loader
2022-08-28	n/a	exe	2f780fbe426ec668667aaa54a902cfab80f47cc1e3ef39017ef15845279384db	n/a	RedLineStealer
2022-08-28	n/a	exe	1ad8658b455b05bf79c32fd8208f58146257532c4fd13db8f43a190f33d3f0fd	n/a	Smoke Loader
2022-08-28	n/a	exe	23927d5c66a669ee4de6bc093d60493340abadd32a289fb251d59c9291c2ebae	n/a	Smoke Loader
2022-08-28	n/a	exe	b9d28d8a8f354997beb084fd8816c92f7fe9c310ba8d250836d0f8770285e42e	n/a	Smoke Loader
2022-08-28	n/a	exe	d8db36a3dd6410eac0216b0dbc0b045e27058567baafa3f47309516beb5e8641	n/a	RecordBreaker
2022-08-28	n/a	exe	d0c600e71fa864e6d1f64e66790dcc94539d31795eaa8c46c0c65bce8e7bad59	n/a	Smoke Loader
2022-08-28	n/a	exe	b5a9eca90210cba99cc89787df2d893b7c0ef29236003bf5f63dc586014c4030	n/a	Smoke Loader
2022-08-28	n/a	exe	906f43bc29e5ab1a50d52d4ba6669fecde6a2fbcc782409ca0878f805fb1f817	n/a	Smoke Loader
2022-08-28	n/a	exe	a2f421679070ff711eb6470fba8001e9fe886a050419f529d7f1956c6647989b	n/a	Smoke Loader
2022-08-28	n/a	exe	5d449947c7add30c405dc1210c15026bbd1be1e6888bcaef8cf40318192cae19	n/a	RedLineStealer
2022-08-28	n/a	exe	bd70d4eb636884a814558adce76844188ac186a283fb8e6aaf9f154ae74f8513	n/a	DCRat
2022-08-28	n/a	exe	2368195d636eeaa64af2606c602dab0ae07f06db61ca0e792337063c277f314d	18.31%	Smoke Loader
2022-08-28	n/a	exe	79f68e5ca30b0b726b17f15598f6a1e72b03f9b0b0267b7d7a1171b0881ab418	n/a	Formbook
2022-08-28	n/a	exe	46f41c1b023ccaf12655173362f16bd8fe501686191162f4dac75a02fe31f89d	15.49%	RedLineStealer
2022-08-28	n/a	exe	df63ebccda1abc8744bbecfa8c8932bfe0d05539a90d0be599a5ed59c9c8ed4c	n/a	Smoke Loader