URLhaus Database

You are currently viewing the URLhaus database entry for http://www.ftpbuzau.hi2.ro/resurse/cris/appct.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:312942
URL: http://www.ftpbuzau.hi2.ro/resurse/cris/appct.exe
URL Status:Offline
Host: www.ftpbuzau.hi2.ro
Date added:2020-02-11 11:16:18 UTC
Last online:2020-04-02 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2020-02-11 11:18:04 UTC to webmaster{at}3x[dot]ro)
Takedown time:1 month, 20 days, 22 hours, 36 minutes Bad (down since 2020-04-02 09:54:50 UTC)
Tags:exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-03-25n/aexe e41610bd130ab11868c9992eb14110d6b5b2ee8b2f33b7ff9f8753f72e32b109n/a 
2020-03-14n/aexe 8231e7c26d31a3b3f5a8e65783a1a9a15807a30eeb0de16cf9f81b875385fa88n/a 
2020-03-13n/aexe 37f6b9bd7f584adffb8aa2678ca0a40dcecb4ee98d370909a20bfdbd85684a98n/a 
2020-02-12n/aexe d53b59fa0b1b4f658ffa2cdb034f695a1fc4e87270b8fe4c73f833b3d012e20bn/a 
2020-02-11n/aexe 5ee56cc6b8fc9118909aa63bb763c0b3cf8a4c6ea45dfae9fad092cacb61a4cdVirustotal results 42.25%