URLhaus Database

You are currently viewing the URLhaus database entry for https://cornstarchsa.co.za/bundle2.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2488381
URL:	https://cornstarchsa.co.za/bundle2.exe
URL Status:	Offline
Host:	cornstarchsa.co.za
Date added:	2022-12-27 16:32:11 UTC
Last online:	2023-05-05 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	jstrosch
Abuse complaint sent (?):	Yes (2022-12-27 16:33:06 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:	4 months, 8 days, 19 hours, 23 minutes (down since 2023-05-05 11:56:17 UTC)
Tags:	exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-01-05	n/a	exe	274cef6cb8bad3fc5c018d679f367b96a8daed8850091797c11aa2ad3680f346	n/a	RedLineStealer
2023-01-05	n/a	exe	60c7374f2b9c46f6580b622670ea0d7d238deea4a58b176f82c62b03567e90fc	n/a	RedLineStealer
2023-01-05	n/a	exe	65bcb269e7832979294df0abc0a52f458bc01a5f88d3f0abd8a21bd92815a46a	n/a	RedLineStealer
2023-01-05	n/a	exe	7778ab6f71ce16ba1a758fd5527e64e9df5b84019a96fb0395393173f203df66	n/a	RedLineStealer
2023-01-04	n/a	exe	70a3a66755f1370b7c25c41d7126f72ac9b5e3225a9ece08ae1a6bba355ace64	n/a	RedLineStealer
2023-01-04	n/a	exe	c10be29a8627038dae52891fb7dd2a3ba63af3709e5bc6dd27032db367d2e7db	n/a	RedLineStealer
2023-01-04	n/a	exe	c67b19d1724140c9d031fd5ae3f4d2150d309172bf1089fa4813dca4c41276ae	n/a	RedLineStealer
2023-01-04	n/a	exe	3454aa44ad847bdf2116f26331eea656bcde6e3fa6519a199ae1bbf57c74e141	n/a	RedLineStealer
2023-01-04	n/a	exe	7271322c3cc4f827511a3be8eed60273a1204ff5435f167134945e83cb82f7e8	n/a	RedLineStealer
2023-01-04	n/a	exe	9711f85fbe695797579d4d92d1f45d50064e965beb8f0474427d40fc6fc3fc99	n/a	RedLineStealer
2023-01-03	n/a	exe	04bfa9f40dc7f954b5ac6ba398d15fb12945f5d408c26508b564f673863ebbc8	n/a	RedLineStealer
2023-01-03	n/a	exe	fc4f20c24c3ecb6dbd589b91f4f5e94b1db387580953959037b02ae704366d51	n/a	RedLineStealer
2023-01-03	n/a	exe	1252c645133dd074bccd374f0993f2d7706ed49eaef55cb90b83e33acd16259a	n/a
2023-01-03	n/a	exe	bb30ff75972593af7f71a11977b475bef66d60c345ed346f5df93a5f1835cf60	n/a
2023-01-03	n/a	exe	799b80ec4e9cef55ea56033f3547ff5f46d72ab701b4dc882734007ca4fa8985	n/a	RedLineStealer
2023-01-03	n/a	exe	eef77f5f93cad5895d93d499ef471e11944cbf455188d7c3550b7445c8067222	n/a	RedLineStealer
2023-01-02	n/a	exe	fb390dd81f3913643c5bc18892b4bc35620a4d35007d1ecae8d32d0a9cf11fa7	n/a	RedLineStealer
2023-01-02	n/a	exe	dd14b18a44ef6ac49edfe5952d5fd8d5c83fc887d405e97da15e572ed092b221	n/a	RedLineStealer
2023-01-02	n/a	exe	dd2c461e9d5751698741cc28f2a4500e4309ea408dbc67cf7582bbe569fecb19	n/a	RedLineStealer
2023-01-02	n/a	exe	ed4320fb73fad0d9a29408ea33f43d364b0678cf0bbeb5ffc4f1c01e0cf20d85	n/a	RedLineStealer
2023-01-02	n/a	exe	87e2a2bde61f533bf3616de31a2996e8750a5c37d677036b6a3a8de1dd24bbf8	n/a	RedLineStealer
2023-01-02	n/a	exe	f61e7d49de6510d86810de1e8246361599cb4e1e81a0930d68fcbe085916ad2b	n/a	RedLineStealer
2023-01-01	n/a	exe	5541c6380475d6a483932b8a930623495fe0bbdc845e7b1aee907d4a7fc9266b	n/a	RedLineStealer
2023-01-01	n/a	exe	cea34dcb475cbb1e834f6a212c42627aa0e5071d41a1c64e14fc41807d3764d3	n/a	RedLineStealer
2023-01-01	n/a	exe	71145e75457853bacf5847461894918e3f163323d099180a661f7936ac3a0c47	n/a
2023-01-01	n/a	exe	7abd760c568791a53db511ae2f3120dbd7858d15e6676522d8d5d230029f87bd	n/a
2023-01-01	n/a	exe	d4f7b8da1f8146c3e1d85f9d671346bfac871daeeb43a7fd34219ea286a5e644	n/a
2022-12-31	n/a	exe	0e02fde96f26a05bb7d179dd1f867925ba19377a73438ab5751a88b4d864623e	n/a
2022-12-31	n/a	exe	4c5ef82f0ee107bfca3db7bb90f802fa735759af0ce913dfafef8117ac761dc8	n/a
2022-12-31	n/a	exe	a013fc29c0100cb088a0fc301fd00646b7165b0d1e414403505970f24faf20ab	n/a
2022-12-31	n/a	exe	5dd815b47ae7d337a60bd342de6e25dd551a9fd62b0d1b5016dfe5551c042928	n/a
2022-12-31	n/a	exe	4168c47b2901f0366371b443f4af318bf64c0e061ab9d3542626ba40f396bfd1	n/a
2022-12-31	n/a	exe	52aa33a5cd07209f6ec903643e965245ce2fdb828aa9929135d3f25a860675d0	n/a
2022-12-30	n/a	exe	766f39634b2a8106f9f161bc8a6a8b9dd2e8474a87d59188a8bbf347f873df91	n/a
2022-12-30	n/a	exe	55161b95a5b586a191ed1f6602c65ada226c5e9cb3f3cda744a59a7b4937bf38	34.72%	RedLineStealer
2022-12-30	n/a	exe	2113baaef9a3c98e3df3615974a6a651dc773d52befb14ce72b1f5348730b3f8	n/a	RedLineStealer
2022-12-30	n/a	exe	7d0ac2251f81c87501123384bc1101e6c633e6351f29d3cbe867eea0039c80ba	n/a	RedLineStealer
2022-12-30	n/a	exe	9ee2cf390eca899658a18aec79417bdbc33a3361a3f9052363d6af3137f53231	n/a	RedLineStealer
2022-12-30	n/a	exe	957ffb24446c47186ba3d4d04577d73dd20d971034dbe0e052950fc890437604	n/a	RedLineStealer
2022-12-29	n/a	exe	962e64f15c970feda5dfee18047564438fedb6bced8f95cc9359b093c1ac0c10	n/a	RedLineStealer
2022-12-29	n/a	exe	8161be894546ad69d7cbb9232d7527acd8684f3ee143603ddc28e2828479bbd0	n/a	RedLineStealer
2022-12-27	n/a	exe	1f6f91f5e6fe6a8f0bf9033f46c80601962600a63456decdd77216166952d5e6	63.89%	RedLineStealer