URLhaus Database

You are currently viewing the URLhaus database entry for https://gons28cl.top/build.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2735078
URL:	https://gons28cl.top/build.exe
URL Status:	Offline
Host:	gons28cl.top
Date added:	2023-11-24 12:20:10 UTC
Last online:	2023-11-27 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	andretavare5
Abuse complaint sent (?):	Yes (2023-11-27 13:14:06 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	7 days, 18 hours, 33 minutes (down since 2023-12-02 06:54:37 UTC)
Tags:	dropped-by-PrivateLoader Vidar

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-12-01	n/a	exe	c2c5d319bc5fe424a8ea42a8626dd6b93b27f1a23aa45611df09ecf55dfa1dfa	44.44%	Vidar
2023-12-01	n/a	exe	cc58fda6767d3d05772223f4267075b2dc2a63bc802a6026f3dbc1403e3efa17	n/a	Vidar
2023-11-30	n/a	exe	33b04a8d7bc2da4d5e00ce9acd0e5755daf961f1a8574ef84ba3d58761127d6a	n/a	Vidar
2023-11-30	n/a	exe	199c44e7bc7c65d6be9959d2d5875e9755104275de462698cd4f6ad94e57d25e	47.22%	Vidar
2023-11-29	n/a	exe	b9a735c63c27f166faee59d63f03f01eadbd86b931de04a0d5ee2ceb148b1f68	n/a
2023-11-29	n/a	exe	8c5858fdc6044de48a8f22b1ae51eb6bfa45befe91c3a854b2b0a99b79d41581	n/a	Vidar
2023-11-29	n/a	exe	59d814713c61b046ff14a21e0ed83013b32d89eb7921bf0fb290379a331bfab6	n/a
2023-11-28	n/a	exe	465bec204932baa110e7344f725d7a9acd5c1a599927e6a3a080aa31dc18101f	n/a	Vidar
2023-11-28	n/a	exe	4e173bdad03b757e76bb6fdcec1c7d76240a517b1a3c8bd361eda3973f20a8bb	n/a
2023-11-28	n/a	exe	80cdd2032cb437e285994a55b0e8ab9fff08cb9c79de90366292852f7b01eeb2	n/a
2023-11-28	n/a	exe	8a59a0e9b326966e4fb7353078bf82b765df754e575a3bfe3bb44220ffb41116	43.06%	Vidar
2023-11-28	n/a	exe	8a59a0e9b326966e4fb7353078bf82b765df754e575a3bfe3bb44220ffb41116	43.06%	Vidar
2023-11-28	n/a	exe	1b23847db328a1eb04e93c74451d481cbbaa4d7110fe87440b203a9dad36199a	55.07%	Vidar
2023-11-27	n/a	exe	13934f7ce652204036c52c73deddeb2185b6d9be2ce5ca0622db4e46cbeba1ca	44.44%
2023-11-27	n/a	exe	ec90def0c0badb54840cbf1fade3a70359ab5c85619a8f47105e8f19a1fc85e1	n/a	Vidar
2023-11-27	n/a	exe	adf857652ec7380cca32df7b9d0ecdcc4ed1dc9a9abf8a20c4417af037a24f46	n/a	Vidar
2023-11-27	n/a	exe	f13579b0dc3a0f742251c64fb5aab5e537fc8a82db32ac60775843d73e5b65fd	45.83%	Vidar
2023-11-26	n/a	exe	23f0dc130aa22ad54a6935965d52a146a239ca9b7f4eca531cd74d3bdcde210e	40.28%	Vidar
2023-11-26	n/a	exe	8e70da316bb9865e7edda277430df66cdf6da7b34a0e8607ca28192164c7b6a8	48.61%	Vidar
2023-11-26	n/a	exe	7622fc8bbc24b2a897785d26cf343d51e1e89faf35783b658ff7b075d4686a81	n/a	Vidar
2023-11-25	n/a	exe	33da86a999f82f99598ab1a10ba98010501249231229051d78d35b826526e99a	n/a	Vidar
2023-11-25	n/a	exe	760cca934f2fb907c9a7b99dbf5affea9c01e8257b41d67a5ebc4968eebb982f	48.61%	Vidar
2023-11-25	n/a	exe	e4593c2762d76c2532db610793c5480f2c40a4fd5097f4d7d5e1ccf4c8b6ada7	n/a	Vidar
2023-11-24	n/a	exe	d363eb55ceaf45f4732d7626ecf984aa9a84893e17201397fed96d803f57412f	n/a	Vidar
2023-11-24	n/a	exe	f8387edcff6a84de4faca34b7514533d4590711e3a06356d8b9ec1f4d94f172c	n/a	Vidar
2023-11-24	n/a	exe	096f1efe5d48906704852cbf6952abde0b798d38885b657c175a4b5c9ea5abd2	45.83%	Vidar