URLhaus Database

You are currently viewing the URLhaus database entry for http://update.cg100iii.com/cg70/Update.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3335118
URL: http://update.cg100iii.com/cg70/Update.exe
URL Status:flame Online (spreading malware for 1 year, 5 month, 26 days, 4 hours, 3 minutes)
Host: update.cg100iii.com
Date added:2024-12-07 14:36:48 UTC
Threat:Malware download Malware download
URLhaus blocklist:Blocked
Spamhaus DBL :Abused domain (malware)
SURBL :Not blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Not blocked
Reporter: abus3reports
Abuse complaint sent (?): Yes (2026-05-18 19:01:24 UTC to abuse{at}alibaba-inc[dot]com,intl-abuse{at}list[dot]alibaba-inc[dot]com)

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-07-01Update.exeexe 5edf34efb656927f886ecf9479812e76cdba8fc47432852db81cd09ce11e4405n/a 
2025-03-30n/aexe 45e8e0f044c1e0c0cd372541546fde8095ae4a07a81d64e6f882c62c09c73a5cn/a 
2025-03-18n/aexe 06cef8895ca5fd8c69142194f3943fe1c3f5c51044a14eb9e8d9ae49d8a4f9bcn/a 
2025-03-14n/aexe 12d15e3db5843bcfac764627ea58b988f3052cf70baeb6f3d105009a2eb50ca0n/a 
2025-01-27n/aexe 52a4ae1c4c1ef35ec05328798d22e503090e6189fc552821e80a7bac6496df53n/a 
2025-01-26n/aexe bece87cf47afb11a814656b6765b6bd47a771dae2634a89ca25452fcd0b466d3n/a 
2025-01-25n/aexe 547727f1edf06a8292d8234170d1810761183b23392f298ec0807bc891447dcen/a 
2024-12-07n/aexe 8fd2cb9abbe5d38a70efea5171449919fe9409048a30ce28fafa85c2942f9a1fVirustotal results 24.29%