URLhaus Database

You are currently viewing the URLhaus database entry for http://privacytools-trade.com/downloads/toolspub1.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2789664
URL:	http://privacytools-trade.com/downloads/toolspub1.exe
URL Status:	Offline
Host:	privacytools-trade.com
Date added:	2024-03-22 06:26:07 UTC
Last online:	2024-03-25 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Bitsight
Abuse complaint sent (?):	Yes (2024-03-22 06:27:06 UTC to abuse{at}westcall[dot]ru)
Takedown time:	3 days, 9 hours, 35 minutes (down since 2024-03-25 16:02:55 UTC)
Tags:	glupteba LummaStealer Smoke Loader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-03-24	n/a	exe	583d73f0111e0aeed0a34fa4fc4ba85875a11f88ac93f9bacb59359aaf5b94e2	40.28%	Smoke Loader
2024-03-24	n/a	exe	b8fd930c7165a1a03b79bbc5c8bac3596a74271ea38b9bc5293d549852340cd2	38.89%	Smoke Loader
2024-03-24	n/a	exe	b1637a25a2959c9a6da241d94d8ddac92f3e542d86dbebdc47c1a06a4f6190a0	38.89%	Smoke Loader
2024-03-24	n/a	exe	a77a44380cd3ac2b6bf2f8a38e29d76a1eb1bef5563e6e4da5c3a87dfa0bac77	n/a	Smoke Loader
2024-03-24	n/a	exe	a760a216f01a3e0af9a73410450770d29e76b6f2adb78b930ec78f04e0e7356e	37.68%	Smoke Loader
2024-03-24	n/a	exe	bfc3eb10481a1c32006a4bc7ce7071e3b11a02a1035ac31da73fb01690e556ef	40.00%	Smoke Loader
2024-03-23	n/a	exe	35bca6c779e1f64b6df883fe983ac5af770d6a6b7dac8ab7c982a5f9fa24e16e	n/a
2024-03-23	n/a	exe	ac1aa03f8763c40289c4fd18ba99cee9e6858263105213ea9f946b81ed8bf154	41.67%	LummaStealer
2024-03-23	n/a	exe	93206d9dbae894c96fe165f6403b1d00e02080de15369a39a25d7533b784fbb7	36.36%	Smoke Loader
2024-03-23	n/a	exe	1300026a497d8562396e99bf474ae6070d49e5a8fef9e6fd59991589d116dca6	n/a	Smoke Loader
2024-03-23	n/a	exe	cd8972e56ba95b3f33c2f164ea880b6c5d8d95f942a817c5fdc31f8122380813	n/a	Smoke Loader
2024-03-22	n/a	exe	b0f1d6defb63ca51dce41219e35f97ab8d89ec19c863f5b659fb8b05c1c92248	40.28%	Smoke Loader
2024-03-22	n/a	exe	d299c4b9c082d625fd580f49799ffdd2d6561544ebfc3e66420eb1215b0f47dc	38.89%	Smoke Loader
2024-03-22	n/a	exe	b119f003f9fca28111b386401a9da65eb1b6b36f6824b2145188aed2bacada1c	n/a	Glupteba
2024-03-22	n/a	exe	20bade08687a1356c343a70a124e7441aa3f2c1824f50b77e552421ee61c3ba3	40.28%	Smoke Loader
2024-03-22	n/a	exe	abc5152266564f883ab915f2a1eec762cd98920e5e315974c926632942e31976	38.89%	Smoke Loader