URLhaus Database

You are currently viewing the URLhaus database entry for http://telsiai.info/2013/wp-admin/css/colors/blue/2c.jpg which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:233549
URL: http://telsiai.info/2013/wp-admin/css/colors/blue/2c.jpg
URL Status:Offline
Host: telsiai.info
Date added:2019-09-20 10:36:19 UTC
Last online:2020-06-22 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: JAMESWT_MHT
Abuse complaint sent (?): Yes (2019-09-20 10:38:23 UTC to abuse{at}iv[dot]lt)
Takedown time:9 months, 6 days, 1 hours, 53 minutes Bad (down since 2020-06-22 12:31:37 UTC)
Tags:Ransomware Shade link Troldesh link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-04-11n/aexe 52678aa4d857e0adcef924a804e942e0c5472c16531718cda9643073ddb90b2bn/a 
2020-04-09n/aexe 1dbf569bb921168437dcb358e861908e30179be4c39ddbdf4e7c8d96344d929bn/a 
2020-03-26n/aexe 6383ffe2f7458b871e49dc87a757b72d131b6f9633c2259e723fcc9f69fce344n/a 
2020-01-13n/aexe 6aed6a69233531cc46ab295a83c76a738af397e2e0745ae1d24c763a3af31d37n/a 
2019-12-27n/aexe 5862c5aa3896ac6a88ff2c48b7502750aaad1ebf4399cf8179c2e6810eb7cec4n/a 
2019-12-11n/aexe 2a19163cef2ba69baad046459777e1ebf62b5a94ff776fd162bb2b3036bfe9a8n/a 
2019-12-11n/aexe fa541be1a356c14a12d29608725202570714e4bec6d21a4cf39badcdf9254df0n/a 
2019-12-04n/aexe aa39a2b100b6e182c1fe8372c426bb09515087441d20b578c58881dfc2a32a17n/a 
2019-12-04n/aexe a6aa702493438ee2bc8ec4b10d33771f988b9d65dc2c0fee45351edb364e4fccn/a 
2019-11-25n/aexe 8fc7d3fd286271d549c3c1cbd32ecb50858bbb592e322ced3fe97444fa18a0a4n/a 
2019-11-14n/aexe 421e73ab9bdceda54f3e90b650f186cb3437f0a6484a8e2f82df1248ce8157f8n/a 
2019-11-05n/aexe d6b52121cb057cbd6817e924e5da0bcbcb8230991953bebc657fef309ac27dbcn/a 
2019-09-20n/aexe b7d5c66725810c90c16eac28adfed02a40ea845d38f7a2ff2d6020c1092f21b7Virustotal results 18.84%Ransomware.Troldesh