URLhaus Database

You are currently viewing the URLhaus database entry for http://opesjk.ug/native.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2758274
URL:	http://opesjk.ug/native.exe
URL Status:	Offline
Host:	opesjk.ug
Date added:	2024-02-08 08:58:06 UTC
Last online:	2024-07-15 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2024-02-08 08:59:06 UTC to abuse{at}pro-spero[dot]ru)
Takedown time:	5 months, 8 days, 2 hours, 55 minutes (down since 2024-07-15 11:54:42 UTC)
Tags:	32 CoinMiner exe Rhadamanthys

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-07-08	n/a	exe	33682e861b76b0ae22b7361f5b59bb7e69b95e69480156714f01e7044408b546	18.84%	Rhadamanthys
2024-06-27	n/a	exe	4a69a64d652063b65cfe7f7ad5e54491b06547c783d74147c79cb9145536cf26	16.44%
2024-06-27	n/a	exe	a2e4f1eead7d430cf08d33e04c48adb2af23b71ec4c633bc6b88d870c1d61a56	15.28%
2024-06-26	n/a	exe	47a817f85453e16e52d201810fd5a719a1fcb01c49dfd350a2fc36fef42ac442	12.68%
2024-06-26	n/a	exe	8c13fdcfeb87abd390f487e9d51d7edcdd6073951a5f96e5c0b1f7d899874932	12.50%
2024-06-26	n/a	exe	8f0bfdbbec0bd2d3fbd46d0ad3c6fbfd54b2baa678b698cb7e4f76fd1ce631b7	n/a
2024-06-26	n/a	exe	07445b196288e616e539c775b87265d10341c0c644558ba94a8525a70536e871	12.50%
2024-06-26	n/a	exe	8491781afed15ad4fa80b176c3516cd3b44e7880a559ab22899b216be74cec48	13.70%
2024-06-26	n/a	exe	24f6c1b06912c2d8d46c6ac10737fd8efaaf7d18b227279f9dae584a5625c0c6	12.33%
2024-06-26	n/a	exe	f567eb23dd95fe66f925bce074253f46263b0916de62d8850dd8c3ac35efc72e	n/a
2024-06-23	n/a	exe	7ccfae8644c3bc7439b88f2dc0de06bb5082de09b0bf5e143de17487ff252224	32.43%	Rhadamanthys
2024-04-18	n/a	exe	98aeda39318ee2c5f23d2b0005fffd8b9f920bb2429460ca2238505440d83f1c	n/a
2024-04-10	n/a	exe	902690e37fc4e690b2edbdfedadb17e6398721e76e7d484baf128da30cf48f95	n/a
2024-03-27	n/a	exe	432747c04ab478a654328867d7ca806b52fedf1572c74712fa8b7c0edb71df67	29.17%	CoinMiner
2024-03-18	n/a	exe	4dc4a5731364b47800189b82f0fe51fa1bda5ea828af59b57f22c88b7b13894e	42.47%
2024-03-17	n/a	exe	123ec03936aa47978c6a6381d74c0a6eb4678b6d9713762f5f4ff8d6cf222938	n/a
2024-03-17	n/a	exe	e0c0c5e351f4111d56f841ab747a7f95f48fa600659438003aa2d44e090d0776	n/a
2024-03-17	n/a	exe	66a256432e44f1e022fd20a8db8e942c727d0e7d3f2b6ae6664c87c8b245f147	n/a
2024-03-17	n/a	exe	93ea9819778c0d531e5be7e240ce910f6fea3ae41632106455e574cfa3826abb	n/a
2024-03-16	n/a	exe	16b1d4e70823ec06c26d524edcc4f4b7793ec85a728579af214338727177b943	n/a
2024-03-15	n/a	exe	ad5189bd65b59bc55dc2a616e6610593c0649eeb9bd79747832282634fe6b568	n/a
2024-03-15	n/a	exe	7359c782e82923b71de457a2fd13cdb62fcfc51475bb61427baf637c4a46c133	n/a
2024-02-08	n/a	exe	217fbf967c95d1359314fcd53ae8d04489eb3c7bdc1f22110d5a8a476d1fc92e	79.17%	Rhadamanthys