URLhaus Database

You are currently viewing the URLhaus database entry for http://jask.powerforxes.shop/malesa/66ed86be077bb_12.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3211831
URL:	http://jask.powerforxes.shop/malesa/66ed86be077bb_12.exe
URL Status:	Offline
Host:	jask.powerforxes.shop
Date added:	2024-10-04 18:57:16 UTC
Last online:	2024-10-22 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	abus3reports
Abuse complaint sent (?):	Yes (2024-10-04 18:58:09 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:	17 days, 23 hours, 8 minutes (down since 2024-10-22 18:06:40 UTC)
Tags:	exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2024-10-19	n/a	exe	1a1ecea647bc761dfbbcf4e802a82717580295d50e9427d9f4a886e3b9aa0828	n/a
2024-10-18	n/a	exe	486eec2f83da52f547b17069d87f96a59f0c91d7e9cd96439e599db265331a9f	n/a
2024-10-18	n/a	exe	87b0b9646f3148eb0dd01ab56ac985c81d632fe3064db67f6bdb2527feea53df	n/a
2024-10-15	n/a	exe	5d8b0c223ad0116602700906186a2084d55fdf45bd63074c8eb12b2c003eb047	n/a
2024-10-12	n/a	exe	0a10f5df47e6e33d977fc718cda8493158372fc6e6f11ec7baaf70447523ce33	n/a
2024-10-09	n/a	exe	a27552aadfae9842fe077523ef7b41b84d7ef02421ef50f0c54ef7b415aa92c3	n/a
2024-10-09	n/a	exe	5ea5cbe06ddd7eae5d9a7855602037eba5b2fee6008276e337b1868f89eb5317	n/a
2024-10-05	n/a	exe	d4f44a450c267fb50443984aab15c82a7a015c36388294368ddb05dd3eadf418	n/a
2024-10-04	n/a	exe	d9dbfbc8294cbf6a32d43413ed328594ee058d7356c26eb5cd196f9f4867c078	76.39%