URLhaus Database

You are currently viewing the URLhaus database entry for https://proyectoweb.net/assets/vendor/animate/notepad.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2298428
URL: https://proyectoweb.net/assets/vendor/animate/notepad.exe
URL Status:Offline
Host: proyectoweb.net
Date added:2022-09-10 05:17:10 UTC
Last online:2022-09-12 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: andretavare5
Abuse complaint sent (?): Yes (2022-09-10 05:18:20 UTC to abuse{at}bluehost[dot]com)
Takedown time:2 days, 3 hours, 54 minutes Poor (down since 2022-09-12 09:12:20 UTC)
Tags:dropby PrivateLoader RedLineStealer link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-09-11n/aexe dabc32cc27fee344390ce8de6e7dc23befe2819b1ed19c06166c9df1f3e6b056n/aRedLineStealer
2022-09-10n/aexe 48b7969c0e98ceeaf092239414881993f0a55152956fd59e1da14e2da01ee4fdn/aRedLineStealer
2022-09-10n/aexe d671ad5ae7f3211b7582407339bf7bac0a6c861e400749f8a612d86088746ea7n/aRedLineStealer
2022-09-10n/aexe 57edb17976437e8a4d8ccfa21d83fdfcc3ccfb6077482bf2138b4553f6922afcn/aRedLineStealer