URLhaus Database

You are currently viewing the URLhaus database entry for http://ftpbuzau.hi2.ro/resurse/cris/appct.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:312948
URL: http://ftpbuzau.hi2.ro/resurse/cris/appct.exe
URL Status:Offline
Host: ftpbuzau.hi2.ro
Date added:2020-02-11 11:30:05 UTC
Last online:2020-04-02 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2020-02-11 11:32:01 UTC to webmaster{at}3x[dot]ro)
Takedown time:1 month, 20 days, 22 hours, 22 minutes Bad (down since 2020-04-02 09:54:49 UTC)
Tags:exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-03-27n/aexe 5c21bf8b3ca38c3e1519f793e7e67b6c1519b7c1ab6340514d641c100d706027n/a 
2020-03-25n/aexe 30d4198a4ce9b1b748883a79e40352fe299c0011abf87ce0b0a922a53f6114e2n/a 
2020-03-14n/aexe 63bb33f5c9edf42c2d5bc4a7704c5ec63bf8cb966857e8ea212e4a32a2b9750fn/a 
2020-03-13n/aexe d53b59fa0b1b4f658ffa2cdb034f695a1fc4e87270b8fe4c73f833b3d012e20bVirustotal results 16.44% 
2020-02-11n/aexe 5ee56cc6b8fc9118909aa63bb763c0b3cf8a4c6ea45dfae9fad092cacb61a4cdVirustotal results 42.25%