URLhaus Database

You are currently viewing the URLhaus database entry for http://reinroot.top/calc2.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2690247
URL:	http://reinroot.top/calc2.exe
URL Status:	Offline
Host:	reinroot.top
Date added:	2023-07-26 09:54:06 UTC
Last online:	2023-08-24 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2023-08-24 09:14:06 UTC to support{at}ruvds[dot]com)
Takedown time:	1 month, 0 days, 10 hours, 9 minutes (down since 2023-08-25 20:04:16 UTC)
Tags:	exe MarsStealer Stealc

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-08-03	n/a	exe	03eccfa5dea23fc185bcca277520d7ef473ff752649aac485ac055dd4111b2c1	n/a	Stealc
2023-08-03	n/a	exe	8036714ca93787e19b4f2dac0f02e87470c6213a1f96252cf4cc289236067dda	n/a	Stealc
2023-08-03	n/a	exe	221c64940f1138997536f4b87e049670610a02bf5456eee5a7112f15d8c668bd	n/a	Stealc
2023-08-03	n/a	exe	b0885cbf90b761a57d1580f4df5d950e0b97896b014c9f20b1919f8975b1c2f8	n/a	Stealc
2023-08-03	n/a	exe	944a67737eb23446b7707ef7e05392f42e7fedd2a972904512b086bdf6245f55	n/a	MarsStealer
2023-08-03	n/a	exe	454f0534a73490868f3deb9ebae76c00e187104e206cb74da7f47724556732a7	n/a	Stealc
2023-08-03	n/a	exe	5d818a96c25ab660e15720a914dd07a5174214be72f1d4e72019f598cee4d983	n/a	MarsStealer
2023-08-03	n/a	exe	763cbb507dc213f754da4b976a95cf540463819d09febbabfed7cd2d765eb862	n/a	MarsStealer
2023-08-02	n/a	exe	a92930173bf8bf72d14d75e6b1482960eb0cbde4813e499c752cc35f374e7a22	n/a	Stealc
2023-08-02	n/a	exe	e11c46912ff1c8edbf5c772c40d6f9f068066c602ee5589cd4e74a91e5f83253	n/a	MarsStealer
2023-08-02	n/a	exe	80005014c473a541fe67db84f0632cfee3c5e932cb186a781f93141d857fec09	38.03%	Stealc
2023-08-02	n/a	exe	ccdb4a51cd16599b08533d58df487f0f6d2a0906c3cf25efbf6f8c4f1bc41139	n/a	Stealc
2023-08-02	n/a	exe	6000015952764b1f85cdff562dbb132354a9c21184fbe8538300573e5d9465c0	n/a	MarsStealer
2023-08-02	n/a	exe	7eb59b0bc6f07235a42b7af6135a0256bce760f599f341cd0b1508fe767efd5e	n/a	MarsStealer
2023-08-02	n/a	exe	3357368c0de34a4cef5c6d90e92b5876586f302f7b9255c00d7009e64c51dc87	n/a	Stealc
2023-08-02	n/a	exe	1b55b50f667e98d203fe7a9066697090ac7c16c7a577a7c362c43ad6cd55c033	n/a	MarsStealer
2023-08-02	n/a	exe	f5ce102f8dd09ba17a75251376398e6d2462595fec120c7914eb09927b33eeb8	n/a	Stealc
2023-08-02	n/a	exe	459c657cb3ebf8b8ac1233ab4544f8b497b68cb1ee7a471a6a111367cbf5de6f	n/a	Stealc
2023-08-01	n/a	exe	85017aadf4ef69b0d9f9ae7a8796dce5e4fbc37e1b9b65b3d4a0e6fcb7876662	n/a	MarsStealer
2023-08-01	n/a	exe	a52921112e0ccf922d4dbf38d241e5d03fb77bf9940354b37581d4d1c6d86054	n/a	Stealc
2023-08-01	n/a	exe	9a34f51bda3056e9f9f721277cf9f6b9c890afc4196b590d016edbb45753b505	n/a	Stealc
2023-08-01	n/a	exe	fa117f704146848a5582058c90a591c994d9e12eb5292a1ebc847db2947a6100	n/a	Stealc
2023-08-01	n/a	exe	bae95eea0f91e7db8bb837dddb487b90b9cc30530302423dbc7baeab2353c90e	n/a	MarsStealer
2023-08-01	n/a	exe	0d46b13d71ca5d6f0d261313969c6e35cb061407339fd3751ea496bdfa06f0f7	n/a	Stealc
2023-08-01	n/a	exe	32fa14add9901eb3a5e94d1fff522323338a0bf665afb0cd019386f1c678b818	n/a	MarsStealer
2023-07-27	n/a	exe	9c07fcf957a083aae4c527c3b0a44f4d2601d563d93e3d2aad7cd81ced0745bb	n/a	Stealc
2023-07-27	n/a	exe	285c80ceae1ddd19aef2fb360c680c69c15d7a8d8dc0774fc26d59668f2230ff	n/a	MarsStealer
2023-07-27	n/a	exe	0af8a593f9aaaab4c2c339b6a4348ff75ba368c3db300ef02e0db5cc25f9cb88	n/a	MarsStealer
2023-07-27	n/a	exe	bca7c162b24acbb117dfc1d51b7a0eb2548230281b064aa43d9007218670675f	n/a	Stealc
2023-07-27	n/a	exe	7e7871564705112a24ed3167a40f41acf57dc536ec273aedb3104c00751105f1	n/a	MarsStealer
2023-07-27	n/a	exe	716857f5e8b803a240c78b87ed060fbef2c96695eadb0e5ac8b83e3d5e817c4f	n/a	Stealc
2023-07-27	n/a	exe	609c47fbb1578ae33704c5fbf4e6508bb8df111e197d29d954559fa2a906083d	n/a	MarsStealer
2023-07-27	n/a	exe	3e073144bb200d405c0b92618d6264dadaae9f7f3b43232a5f36db8fc1ea2641	n/a	Stealc
2023-07-27	n/a	exe	e3963384741ca0ea48a1606dd175879458765e8d7f94cf64bc79725ecbd01442	n/a	Stealc
2023-07-27	n/a	exe	d0e7a341fe199dbabb5f0798dba0564e9b60e4736a405c46eafc7232cc10dc40	n/a	MarsStealer
2023-07-27	n/a	exe	28d2d3f89f2b35af444964926c1bce39f7ae2d86e3f0864cb6028252b37fca21	n/a	Stealc
2023-07-26	n/a	exe	dad7e37e790b7fe49cb37bbd4947d5feac52fcf2240490b36f52ef97dc84bc4c	n/a	Stealc
2023-07-26	n/a	exe	29f23979e3b541ca8955fcbd3a0f9cadbdf92c0df65ba495eeb98bd1e154bc6d	n/a	MarsStealer