URLhaus Database

You are currently viewing the URLhaus database entry for http://ji.alie3ksggg.com/ef/rty45.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2749369
URL: http://ji.alie3ksggg.com/ef/rty45.exe
URL Status:Offline
Host: ji.alie3ksggg.com
Date added:2024-01-18 21:10:28 UTC
Last online:2024-02-24 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Bitsight
Abuse complaint sent (?): Yes (2024-01-18 21:11:15 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:1 month, 6 days, 10 hours, 21 minutes Bad (down since 2024-02-24 07:32:30 UTC)
Tags:dropped-by-PrivateLoader fabookie

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-02-03n/aexe 2bf7fdb0b81e587a2121389cce1f0a4404ef51c59e71eeafef50ccfeb7914aa3Virustotal results 38.03%Fabookie
2024-01-30n/aexe 3fc3aac50bb79cc24d3a6722af98a178c6a94a0fb282211dc8a96ce59013f952n/a Fabookie
2024-01-30n/aexe b61af3bdccf539fdca794385e76e7456816b3cd13f580360ead97bc777d399f5n/a Fabookie
2024-01-30n/aexe 16fc46955e8c5565ca212dc1a4b6dd127ed4db763ba25e6a5d42bed88917aa0dn/a 
2024-01-27n/aexe d9cba8aea678e19b497b36f3d5f9869dbd042e45759039444581a5234c59ee7fn/a Fabookie
2024-01-26n/aexe 0b7f083eaf2f15833466f72b4792f6e3f84f976d0e4230589568d4f27e431b4fn/a 
2024-01-25n/aexe 3c384c46b050af0d75ac6c85ea0d038075b27900dd5bc8da737286f131224a80n/a Fabookie
2024-01-23n/aexe 35e87fae499edf23f25bfc5be34be901c0dcef34851db88b7d96eeeb6733860dn/a Fabookie
2024-01-22n/aexe 9fa2009f7d9c75393662d080331ccd15b3f9f3f7052e898d881698451f427afbn/a Fabookie
2024-01-19n/aexe dcd703912d6ff2ccc9739b82f12fb2c861812f53bb2ca9432a99850dd172fa94n/aFabookie
2024-01-18n/aexe 6c38c13d9baaa24d925488112a469611270f37b0508bb2dc0f7775072c7a77d9Virustotal results 43.48%Fabookie