URLhaus Database

You are currently viewing the URLhaus database entry for https://nordic-food.ro/systems/ChromeSetup.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2526689
URL: https://nordic-food.ro/systems/ChromeSetup.exe
URL Status:Offline
Host: nordic-food.ro
Date added:2023-02-02 08:52:15 UTC
Last online:2023-02-03 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: andretavare5
Abuse complaint sent (?): Yes (2023-02-02 08:53:07 UTC to abuse-lir{at}mediasat[dot]ro)
Takedown time:1 day, 8 hours, 18 minutes Poor (down since 2023-02-03 17:11:48 UTC)
Tags:drop-by-malware PrivateLoader RedLineStealer link Rhadamanthys Smoke Loader link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-02-03n/aexe 30c06bafae44cd57f824a3c46aa9e0422e03d0c768b5c3b677b1fffb3eb39c57Virustotal results 32.20%RedLineStealer
2023-02-03n/aexe e2145cb74caf435887344832b31954afd855e60d07cfa5fe2a0bcc4a32b8c363Virustotal results 30.77%RedLineStealer
2023-02-03n/aexe cdc05a9a57bc6d5c7232d415f9c68bdc6d7ce709a0efbe8c9753300273ee955dn/a Smoke Loader
2023-02-03n/aexe 88354b37427492c5730a4d0d8576c612ae355dcbddc8e3260e1aa5e5f429909cn/aSmoke Loader
2023-02-03n/aexe 2735371bbffec3c5d97b7b5f060485920a152a70629215cba0d66c91142009f0n/aSmoke Loader
2023-02-03n/aexe 90988c815a0d7bca3e0e8cc3ebde74d55e3eda874687ed7b92bb3528c2745d57Virustotal results 23.19%Smoke Loader
2023-02-03n/aexe dcbd0a559aa1138a8e2330c5590c96f791217bac951a6c7c1ba4ff7419cb525dn/aSmoke Loader
2023-02-03n/aexe 084c0aa92e9a0cc7c14f9bf1215cc72f56aabb22d8ec7283abf77d4be03c7c98n/aSmoke Loader
2023-02-03n/aexe 323d285f670c92118fa148f0511a13c2d3fb12806a3c50e050946590ebc19881n/aSmoke Loader
2023-02-03n/aexe 9ce9dffd37ec53a9834ca8176c8c8515cb6882fda39afa9dc748f427541b7922Virustotal results 32.86%Smoke Loader
2023-02-03n/aexe 9769412727355afacbe12462bf964f8f1f509ef80ed52783f1fbad5b3cfb8983Virustotal results 35.71%Smoke Loader
2023-02-03n/aexe d88d2826c07358bf80c09379121d77e21077f7261a6ac7bb3daaea95e7692cb8Virustotal results 34.78%Smoke Loader
2023-02-03n/aexe 437876224ddcbd7bed8ba033396a181bbc60110878f3e7256b8a5229901c7b2en/a Smoke Loader
2023-02-02n/aexe ebf3d58e41457acc722c1abec57661c7a8bbb580db62177a3d25ba4405f4dafcn/aSmoke Loader
2023-02-02n/aexe 51f9775a943c2a60a5a91a735db752920c2a5caad51ba190e4f7e3af3c7d144dn/aSmoke Loader
2023-02-02n/aexe 33e4be47dba8a097c9b1174eaed44c1a9825a5ffdfee822587e72383b838b079Virustotal results 35.71% Rhadamanthys
2023-02-02n/aexe 9407b94b5ecbf2073ec7f8483b713b853666d62b8b639ffac115e3e89a4ac9deVirustotal results 36.23% Smoke Loader
2023-02-02n/aexe 695c14d27171f9d8606571fad11404b5cbda354b1e17cb014e3e2d95fd77fa36Virustotal results 31.43%RedLineStealer
2023-02-02n/aexe 26ed2ea16e975988d86c5acc23b4dd8024f995f42c5737a709e1824f3fd65c6fn/a Smoke Loader
2023-02-02n/aexe 69ee6e56b921740b25218f8b5afc04a87fbdae0fc447bfe2d2af2f034d09ceb1Virustotal results 35.38% Smoke Loader
2023-02-02n/aexe 2935b22cf4d1cd82e84031196d4fb50ab47f75bd0a4cf5d652a3a0c7a05630ecVirustotal results 34.29%Smoke Loader