URLhaus Database

You are currently viewing the URLhaus database entry for http://filetops.com/1006.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2669041
URL:	http://filetops.com/1006.exe
URL Status:	Offline
Host:	filetops.com
Date added:	2023-06-22 06:46:12 UTC
Last online:	2023-07-01 01:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	andretavare5
Abuse complaint sent (?):	Yes (2023-06-30 23:24:05 UTC to abuse{at}amazonaws[dot]com)
Takedown time:	8 days, 21 hours, 17 minutes (down since 2023-07-01 04:05:19 UTC)
Tags:	AsyncRAT dropped-by-PrivateLoader RedLine RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-30	n/a	exe	0373eb783358fbf3b810fe1156efffd5847913c62db0e6c690e802300a5640ab	n/a	AsyncRAT
2023-06-29	n/a	exe	dc813f0190bf6e0339c33fb5ef149bb7a7561f46bbad75c4a843c126d3be4b30	n/a	AsyncRAT
2023-06-29	n/a	exe	2e6a4680aa9b24612ca07e1492964a84e2fc9bdf5086e1311f05d8e3d034b65e	n/a	AsyncRAT
2023-06-28	n/a	exe	5f43bce4792640507ddfa1ea8e64a778a1b15181b8d5378f826689cf80366728	n/a	RedLineStealer
2023-06-28	n/a	exe	63bb45ea73cf72e77adcc80288c6e31f8fdff3271509246202aa47d3b6b787d1	n/a	RedLineStealer
2023-06-28	n/a	exe	5ee56307c6fc01f08cf1c73c8770f137d9e91d993e8fab9a66463c411d1b3523	n/a	AsyncRAT
2023-06-27	n/a	exe	423b40807bdeece25c9201c5bbab748c81a1db366b419896bd984caea6f4a406	n/a	AsyncRAT
2023-06-27	n/a	exe	aaf4dbb1cca8ed102227d3235c529fd1a67268910a1f5435218970aae8955343	n/a	RedLineStealer
2023-06-27	n/a	exe	3a23f25fbb533df0fdc29eebe8f5f2434a5169683a74097a8a18d554e0d071fd	n/a	AsyncRAT
2023-06-24	n/a	exe	67b88597352598d94af1e7cdfaf07007e87dc6891a9564518c664afcbc1eb20f	46.48%	RedLineStealer
2023-06-23	n/a	exe	6e742f6cd8f6230a7f46a4311d69bb78a4d0465d90425225316d39380c401742	30.99%	RedLineStealer
2023-06-23	n/a	exe	e5d22623dde11524e6c4a8feb21412ab0bf1f0d5548b53cbd685bfeece673ec5	33.80%	RedLineStealer
2023-06-23	n/a	exe	1b6ecf9eb37b1712b76059a336821ce10f6d83f76bdad29d465fa916b686c085	28.17%	RedLineStealer
2023-06-22	n/a	exe	3135cb02651ef142e39283472f7e214147eede727b35eb0ac03f3c09a98e3644	30.99%	RedLineStealer
2023-06-22	n/a	exe	7ad1b7c93dbecccbc9b1f4430c9af55cef775f9ca8378c4076fb391f1a4b1757	18.31%	RedLineStealer
2023-06-22	n/a	exe	0a67a8a928699bf7aadf237a835b834e4280d310fe76f77283e208a03354a56c	41.43%	RedLineStealer
2023-06-22	n/a	exe	a7d68c7c2a7b49ba8e11e345efe7de931b7c97394c2c1409e11f071729f5c343	n/a	RedLineStealer