URLhaus Database

You are currently viewing the URLhaus database entry for http://getspeak.top/office_sync.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2611449
URL:	http://getspeak.top/office_sync.exe
URL Status:	Offline
Host:	getspeak.top
Date added:	2023-04-17 05:22:17 UTC
Last online:	2023-04-17 13:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	crep1x
Abuse complaint sent (?):	Yes (2023-04-17 12:56:05 UTC to abuse{at}cloudx[dot]ru)
Takedown time:	2 days, 10 hours, 21 minutes (down since 2023-04-19 15:44:22 UTC)
Tags:	Stealc stealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-04-19	n/a	exe	de1b4e3f29b28ae17a717c6d9fa2d5641f22606e440b73c3121535def8749e26	54.29%	Stealc
2023-04-19	n/a	exe	b2aca143071281b281d2d8c9898dfd8bae8b1951b5687429b6898d0206dc3294	n/a	Stealc
2023-04-19	n/a	exe	0348bce2cd6d0abc0a62bd3e5be229aa6503f2c4f6df94af956e9ec752b24f0b	n/a	Stealc
2023-04-19	n/a	exe	717c6f46324a7faf76dcf261ef77c62a2ad4dcbcc5a472313efa93e1bd0feeea	n/a	Stealc
2023-04-19	n/a	exe	082611f987dbd42157cd596d2c0e93bf0b1df810353f8103e58072dc55f29155	n/a	Stealc
2023-04-19	n/a	exe	2282d258009cfd0e0ca8cebf57247abadc08e85ce95eabdc29b7294238ddeb1e	n/a	Stealc
2023-04-18	n/a	exe	a02c27b60dc3e7f43634776ae0c25e48d2e13e14cec84ca89a72c6d747977594	n/a	Stealc
2023-04-18	n/a	exe	ec7466d7287c9985145b2e2b4160fd48dab8f797771d44f2e9a10b4b9c9fccf5	n/a	Stealc
2023-04-18	n/a	exe	56d914e4c6976ee5d5f74f94f05dea55601fc330dd1e38c2111357283323708c	n/a	Stealc
2023-04-18	n/a	exe	29dc138ff8b2d1300e7fb8c9d48a49b5635ef4eba48fed6fe96ccaea4633860e	n/a	Stealc
2023-04-18	n/a	exe	e6a8d3eb1c77904b0ff942d6f09e447de5dd647fee2852309ad34be4649b7967	n/a	Stealc
2023-04-18	n/a	exe	f358c69f97a21103827f4610b2abb78d080d0bbca7c80ff84c89669087ec6fdb	n/a	Stealc
2023-04-18	n/a	exe	f8d017d9c88085b7dcc4bdbed65fa663245b5e059d020326dbb48027f7725dea	n/a	Stealc
2023-04-18	n/a	exe	b928004fd2b7c050ada3466b5bd24f8ec927a7c07b18b9320da05534d3661f5e	n/a	Stealc
2023-04-18	n/a	exe	d6e7469a849e7d135fca0bb2cc550d63a9c492512351dfeabd1626969a386286	n/a	Stealc
2023-04-18	n/a	exe	1cf5b1b0aad520e70829f535b1c611dc3af390aefcd3549084ae2f3213b74fc7	n/a	Stealc
2023-04-17	n/a	exe	2c7e8e454d431166c3dc747ab9bbc221364717eb47e74b5954bd3f8220c976f0	n/a	Stealc
2023-04-17	n/a	exe	1e9005f7fc31fee9bf791cbfac65b9de4595fc7c2d4fe9c4f48271102d55780d	n/a	Stealc
2023-04-17	n/a	exe	c386a97f615713a4b1e1d29a12018ec39e6ba7ff3a91133ea3fd016f2f9d6dcc	n/a	Stealc
2023-04-17	n/a	exe	cfc5345450d207803d5d23000da9d22ce9e897a7497ba2d6c5584346fac93a6b	n/a	Stealc
2023-04-17	n/a	exe	7d5da29d2b278e323d0d2239a95e77c4923920917b114c2e06f46a85018ad33c	n/a	Stealc
2023-04-17	n/a	exe	46f66b6376c7b9466019e3e6b23e46edf488ab96f99b1f6ec0b7ff0a35d02793	n/a	Stealc
2023-04-17	n/a	exe	8d2ae0363e3aef4a75785737bbfe64fa85ec9af8a2e297cc8dfb56b8e5a62d01	n/a	Stealc