URLhaus Database

You are currently viewing the URLhaus database entry for https://drive.google.com/uc?export=download&id=1sAtMEXZN3QpVqzfxNc-5Dtnnn8lIHDXH which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2719389
URL: https://drive.google.com/uc?export=download&id=1sAtMEXZN3QpVqzfxNc-5Dtnnn8lIHDXH
URL Status:flame Online (spreading malware for 2 years, 7 months, 28 days, 12 hours, 49 minutes)
Host: drive.google.com
Date added:2023-10-12 06:07:06 UTC
Threat:Malware download Malware download
URLhaus blocklist:Blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2026-05-23 03:10:16 UTC to network-abuse{at}google[dot]com)
Tags:AgentTesla link encrypted GuLoader link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-01-05tKLucnEsP94.binunknown d9118b4f180acb7357a497c23b2ce5bb72a62de09d4370f473d6d86c32142effn/a 
2023-12-09tKLucnEsP94.binunknown 860ed42ae080d8295e019213622eed32e9deb51754f91b744d88377d7efc707fn/a 
2023-11-21tKLucnEsP94.binunknown eb78c5854ef9ebb8e5a05fb1546a1e74c49946283e3a710c4b166ee722020785n/a 
2023-11-10tKLucnEsP94.binunknown c22e833dfd222f83d20b97f01d1a0b73b227125f5096cfee07fbe252fe2b78d5n/a 
2023-10-12tKLucnEsP94.binunknown 4f87809ed558bb0fe6d4b48f54487dde4b1248df004a858a145f5bc2f24cd77fn/a