URLhaus Database

You are currently viewing the URLhaus database entry for http://albertwashington.icu/timeSync.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2726210
URL:	http://albertwashington.icu/timeSync.exe
URL Status:	Offline
Host:	albertwashington.icu
Date added:	2023-10-27 09:43:05 UTC
Last online:	2023-10-30 19:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	andretavare5
Abuse complaint sent (?):	Yes (2023-10-27 09:44:05 UTC to abuse{at}des[dot]capital,abuse{at}serverion[dot]com)
Takedown time:	3 days, 9 hours, 45 minutes (down since 2023-10-30 19:29:52 UTC)
Tags:	dropped-by-PrivateLoader MarsStealer Stealc

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-10-30	n/a	exe	a26dc029cbda5105a0cb0a4a21b0f0001e6b1d957c5b5f8196cf01ea7b039d15	n/a	Stealc
2023-10-30	n/a	exe	7437fef5a4dd5ad59cf1930c3cf181c17a4724c74ca2a68280092b0b7edee6b5	n/a	MarsStealer
2023-10-30	n/a	exe	64af94fc80d0295702a599ad9a8845c3a869b61ae5b41e5360c679cba6f32c2b	n/a	Stealc
2023-10-30	n/a	exe	fafe7d66e5bd7b863c859d329c390978d7e2db8627664e1427f7f184ba7dc24e	n/a	MarsStealer
2023-10-30	n/a	exe	005f76287b4b4e288286334fd24c360f2487c004fdc4aa51c6edb879ce4733bc	n/a	MarsStealer
2023-10-30	n/a	exe	b8f2cb5028b5655afcde46d75a2cdc34142c2c00024cb9077942fdec286b7a8c	43.06%	MarsStealer
2023-10-30	n/a	exe	9c9306c968318a95791dee86bbc6c16f6b1d0f53b5b7d682c2a48a5c6cc1a75e	45.83%	MarsStealer
2023-10-29	n/a	exe	f1ffae3fba1359eb7e6756134268ebabe97102c3674d964469a718e258ff0130	n/a	MarsStealer
2023-10-29	n/a	exe	afdcc4632e5f4bae6bec0b82c91f9dcba2918aca8c75797f7f9dea5bbdc4063f	n/a	Stealc
2023-10-29	n/a	exe	546a88deccac12d32cb3a91f1216e63753d3b221d8f20b63b455bc76f3601bec	n/a	Stealc
2023-10-29	n/a	exe	ef47dd1d41c6600f29de3428794a8770aa8061a40fa98f64f2d2bd3d883f6e45	45.07%	Stealc
2023-10-29	n/a	exe	2af1996c9bdeac76c07143527a4512cabe28a9b7aba7bbf7ccf81539b05379af	n/a	Stealc
2023-10-29	n/a	exe	1a14ada02f5ec8dd008e77d46356b987d8b349e9b721ecea3e99579b43be386d	n/a	Stealc
2023-10-29	n/a	exe	4d68a9de37a4cf522c8d7a776d7625da11458a18549e1f17eaf33ef821b8f093	n/a	MarsStealer
2023-10-29	n/a	exe	e1a44604533a1b1d897da2c3263b0252043a9a5e8acc2c6d20a46e59f84e4a52	36.11%	Stealc
2023-10-29	n/a	exe	fb7c402ea01a5e7329769d8b6339dff11c4f9bcba06aa9b4805804f37f46359b	n/a	Stealc
2023-10-28	n/a	exe	a85528d4fcbc101d6c0fc37aad3e1859ad6e8a2556883900627f5e5f455f4f0d	n/a	MarsStealer
2023-10-28	n/a	exe	8a6b2f6872659998ed2e96dd47a48da0885110aa74ef7e71ad419e1c9b82fa0d	n/a	Stealc
2023-10-28	n/a	exe	64489e0d20826dc8ca25c85b28b4b7e6b6d85f9aa7d5500939952f358ba77592	n/a	Stealc
2023-10-28	n/a	exe	5c00aa250e356a29b7e0e558d9d4fc76dd9b2a27294e410a0a2c3153bf062e6b	n/a	Stealc
2023-10-28	n/a	exe	fda3594c8aa8d82fa0fe2941506969737689f7beae39c336137fde0a720da18e	n/a	Stealc
2023-10-28	n/a	exe	ee14c3519c9ff46b675af5ffe701e0515e6707583b11b1deb8031a99b984aa2a	n/a	Stealc
2023-10-28	n/a	exe	7217ad57b053373c9dec1728de52487b9968616acba2be9223aaed275090be4b	n/a	MarsStealer
2023-10-28	n/a	exe	60c362f073df8d07e13eb47a3cffaf20f89caaf3a5617279deb5b14221652152	n/a	Stealc
2023-10-27	n/a	exe	8d58024006a6c3503ba5af8f92dbdfd9178e27082491717ca1a2bdc35cf81b02	n/a	Stealc
2023-10-27	n/a	exe	6d788b9cbe3c45094ea5b283af221abe944c7bca570953da930a8649b6b7eeff	n/a	MarsStealer
2023-10-27	n/a	exe	86d9471d56a6882413c72628c79b3e58350c58b6e4c2785ca3e15944aa1f9d6d	n/a	Stealc
2023-10-27	n/a	exe	68d0e11261bd22cf58be2c6e0e8c7966dc4c969b08f522a63a923b8389c7cf75	38.57%	MarsStealer
2023-10-27	n/a	exe	7202870c0d2dae977e6623e759cecc723a47f3c0de5c5138a0da0fec0a2a7e14	38.89%	Stealc
2023-10-27	n/a	exe	53dc29187191f04860a12fcec1d810f8c2e6b827dfc1d3c06471c6b865b96897	54.17%	Stealc