URLhaus Database

You are currently viewing the URLhaus database entry for http://kfdhsa.ru/asdfg.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	261539
URL:	http://kfdhsa.ru/asdfg.exe
URL Status:	Offline
Host:	kfdhsa.ru
Date added:	2019-11-29 21:59:04 UTC
Last online:	2019-12-30 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2019-11-29 22:00:03 UTC to abuse{at}morene[dot]host)
Takedown time:	1 month, 0 days, 17 hours, 11 minutes (down since 2019-12-30 15:11:07 UTC)
Tags:	AZORult exe NetWire

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-12-28	n/a	exe	dfcc13bc3f0ce4265a473d078cabb900080b5ecdd1c4f75c8b69f2e773a962c8	n/a	AZORult
2019-12-27	n/a	exe	b9a9dca99b7042376ea763c5e194b5eb2f37c798a8790dc39530a99f8fc83e74	n/a
2019-12-26	n/a	exe	8f3572f1eb7e013e9eb14de088e159d44f139df51b6d78b0eb81128e010b3fb0	29.17%	AZORult
2019-12-23	n/a	exe	b1681133adb241e7eca86703da1cf77b7907785d670bee595bebb8074a22a3c1	n/a	AZORult
2019-12-21	n/a	exe	3032c581091576e78447af575a5e14394f45f7599317f5fc138b8ff80eba60d9	n/a	NetWire
2019-12-20	n/a	exe	075c18102f7389dab6173a503b42c997ff27e66e71b8fc468b25e359e9963e77	28.77%
2019-12-18	n/a	exe	fb0dff8c7e3049d7038a7e0472c75f24f117f0940a75655bd5f5a871c18e830b	n/a	AZORult
2019-12-17	n/a	exe	b5ef21302dbd344198a70b1b3e8b05ca28eaa328cfdaea04be4f1ea7aef8de48	n/a	NetWire
2019-12-14	n/a	exe	816d77d5f9b0331b4762edb4ff7536a7fdc86f4437eabd2cc8bd24a240ecc7e9	n/a	AZORult
2019-12-12	n/a	exe	06a3c5b5f348b42acd769b18376f7f11fdee4ac07ecb4dcec0fcebda0150d456	n/a	AZORult
2019-12-11	n/a	exe	c2a515695e5ce6c9b6db95e26963aae8ed657346094f23ff6fb080b07430f9c2	n/a
2019-12-11	n/a	exe	6b5d88b2123163650379a35547381b7fda144110bf57828daf70fe33ec497191	40.85%
2019-12-09	n/a	exe	dae5e0036fe04446a78cce3e5bf8d884751ed8d68fa8c825034fa449dc40f4c5	n/a
2019-12-08	n/a	exe	167d857799fec4d5aba8bb72c0999cfdfb2364a6306daf03f7e52ef630e3baef	n/a	NetWire
2019-12-07	n/a	exe	02e83a34d40cdc813b0baf6f47c0790fd55d67032c60ad6bb137aa8e64f0d26d	n/a	AZORult
2019-12-06	n/a	exe	79ddc90fe9d6791bdad50e078d3d5193375f2299a76d07b841e4e0aca6efd4d2	n/a
2019-12-05	n/a	exe	63535df75734734eca7d2c1ffbb16c2ac7f96e7b598b1ddb1ccc266dd439a03a	n/a
2019-12-05	n/a	exe	c9c963c27a5b429cbb7fda91863a1d3349ed6d8fad24c89e5360c458e9ed6e99	19.44%	NetWire
2019-12-04	n/a	unknown	0d150f13b516abc1e9964d65c4f0549020c725b4c640dcbe7a4bbbebdcc3d859	n/a
2019-12-03	n/a	unknown	a23223cbde7d039db93dafe35855f21eea86c7734b8f6cf1c453b6e8445f208c	n/a
2019-12-02	n/a	exe	cac27a3dd9bc302f80f8041fb5c1466d8f685dd76f3284d5475c9ce0d70788c0	n/a
2019-12-01	n/a	exe	c5f6c71f6f5ee458d5f0976ba6d7913e54db92922559efd215306d444f9deb65	n/a	NetWire
2019-11-29	n/a	exe	fa4b04331a735cfe79580c664eae546766238123b713f22d777a126de90562d7	30.00%	NetWire