URLhaus Database

You are currently viewing the URLhaus database entry for http://sylvaclouds.eu/petercodyz/petercodyz.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:329516
URL: http://sylvaclouds.eu/petercodyz/petercodyz.exe
URL Status:Offline
Host: sylvaclouds.eu
Date added:2020-03-25 07:04:26 UTC
Last online:2020-04-29 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2020-03-25 07:06:02 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:1 month, 5 days, 10 hours, 38 minutes Bad (down since 2020-04-29 17:44:24 UTC)
Tags:AgentTesla link exe Loki link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-04-17n/aexe a69ddc2bba4dfe073f94bec1d1f29fb5d61ba2fa75fdfc41548ae06522531fd0n/a Loki
2020-04-14n/aexe 5f2b7dd50577b6f04ddc3b16c684bb281bdac4f32ca0b6248b683148449c3b7en/a Loki
2020-04-02n/aexe e776b470d3fcb5868c8057d3c1dec30ac9ff0aba142915d163853938328a7176n/aAgentTesla
2020-04-01n/aexe abe3b715d6cdbdee68f7fa07dcc3adec8d247a7729af88c782d0282e9cf4d7acVirustotal results 31.51%AgentTesla
2020-03-31n/aexe adedea775ea07db8d0755dc717da68497f899a989408e2b5e1813ec21210ec1an/a AgentTesla
2020-03-30n/aexe b89ec5c9ca3172180da6ba4ce8e553bf8d578bc4088cf0b38ae477e3a99ddc66n/a AgentTesla
2020-03-26n/aexe e0c77f3ea11cdd3c5dc2ba426be1b4bc962911d94c5cee891cbc47be8bf33f16Virustotal results 37.50%AgentTesla
2020-03-25n/aexe 942abb278b153b55b81330213ce95c043e62e288f4470b7cd8a3200f94ba7531n/a AgentTesla
2020-03-25n/aexe 9ef38c1eb7d55ec9a7ffa9f546923cd26290da6f52fb11a8302b595741ed58f9Virustotal results 46.48% AgentTesla