URLhaus Database

You are currently viewing the URLhaus database entry for http://ring2.ug/files/penelop/5.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	256377
URL:	http://ring2.ug/files/penelop/5.exe
URL Status:	Offline
Host:	ring2.ug
Date added:	2019-11-21 11:35:07 UTC
Last online:	2020-01-31 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2019-11-21 11:36:03 UTC to abuse{at}selectel[dot]ru)
Takedown time:	2 months, 10 days, 22 hours, 50 minutes (down since 2020-01-31 10:26:23 UTC)
Tags:	ArkeiStealer exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-28	n/a	exe	d6aa20ade21e868d805129996d5a17c162f8cbe3e665d5d73bf93074dcf53a46	27.40%	ArkeiStealer
2020-01-26	n/a	exe	caac46bbaa0af95fa8b39ef8d208f3348ae69a613c3f2d0bfa4bdfac5abb2ede	30.43%	ArkeiStealer
2020-01-24	n/a	exe	bfdb7462d51b623eb91758581a6fb407f7ce030067e66d70118c9c8577d9fc70	n/a	ArkeiStealer
2020-01-19	n/a	exe	64f10e6c27e3dadc19a0013268711a31d5b140cca723121c1d80dbdb72c2a62e	n/a	ArkeiStealer
2020-01-17	n/a	exe	c19e76e44d406ef05df822cfec73f69a37ccb5915221c822bc11d15da2cba8a4	n/a	ArkeiStealer
2019-12-22	n/a	exe	c133d5801f5adc55193fa2a6461d9890328c666c4388659a22662849035d0505	30.14%	ArkeiStealer
2019-12-19	n/a	exe	95284cb30d012d74a568fc2822da4e2bfac17b5102e4eb0ec5f85d0c9245ccaf	n/a	ArkeiStealer
2019-12-18	n/a	exe	e15cf84a6a07293bb9c55a9c6366576b32f68c84a23b49f0504ba473f83940b7	25.00%	ArkeiStealer
2019-12-13	n/a	exe	855f53e65918a7f0dab3d4972990c08dce585dda18bd6356448e8b6c85b05ee2	n/a	ArkeiStealer
2019-12-11	n/a	exe	4b8d2954a3ff4511565777d7830b92e7d9052165e057b5091559ef5e64f883a7	n/a	ArkeiStealer
2019-12-09	n/a	exe	083e2ea08ad92be34a99ba549ab58b982ea4b2218d2b150b2f95ce2296a8921f	n/a	ArkeiStealer
2019-12-06	n/a	exe	a5af8db42725070872d1c71bc34f132e1dd6b2d4fbb9d8f49e324035ae8fece2	27.78%	ArkeiStealer
2019-12-02	n/a	exe	7966bc8f42b15bb738a4236110a151754d9dea7f188837294666052e7ee9e584	25.71%	ArkeiStealer
2019-11-28	n/a	exe	703bf6e8c4f52d364eee5871e8047278e06d8fb9e0468688213adaf656be60c1	n/a	ArkeiStealer
2019-11-28	n/a	exe	931dc88f4ba0d0f7dde2fdbd91845a7dc8a4a668122a27caa7e305569eccd0bc	n/a
2019-11-25	n/a	exe	8e0583c73e92efde9f026bd911879c83f61c3dfab853d283a3073defe33503bc	26.47%	ArkeiStealer
2019-11-25	n/a	exe	3dccbfa1a585dd00d4b5bc4caa459bb5d1d46986897a616678853bb6879d7272	n/a
2019-11-23	n/a	exe	a3397077c5044a165e50644c8ab820712c86515f627cc1254899e24cd2e1a3a8	27.94%	ArkeiStealer
2019-11-21	n/a	exe	5d170b193e01dd93981d73028ac970cb8f12f35b2ba5193e53be4340b9c05c7c	57.97%	ArkeiStealer