URLhaus Database

You are currently viewing the URLhaus database entry for https://serenderevler.com/file.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3100034
URL: https://serenderevler.com/file.exe
URL Status:Offline
Host: serenderevler.com
Date added:2024-08-10 16:18:09 UTC
Last online:2024-08-13 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Bitsight
Abuse complaint sent (?): Yes (2024-08-10 16:19:07 UTC to ipabuse{at}aerotek[dot]com[dot]tr)
Takedown time:2 days, 22 hours, 31 minutes Poor (down since 2024-08-13 14:51:04 UTC)
Tags:dropped-by-PrivateLoader exe PureLogStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-08-12n/aexe bd77bda41f5819e687cd83d72db1301ea2c78da62d7b7894e66fdd78522f6142Virustotal results 21.33% 
2024-08-11n/aexe 4adf7581655b17fdd72b19b0bc1bf65d288addd981fb4aab71b3a8e7a24817c4Virustotal results 21.21% 
2024-08-10n/aexe 9d3580416c57f46e12dbc468e4fb6fa61297b54ba34aa44714b349121e36ce6cn/aPureLogStealer