URLhaus Database

You are currently viewing the URLhaus database entry for http://allpetsandpaws.com/sport/rockstar.php which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:354542
URL: http://allpetsandpaws.com/sport/rockstar.php
URL Status:Offline
Host: allpetsandpaws.com
Date added:2020-04-30 08:17:12 UTC
Last online:2020-04-30 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2020-04-30 08:18:02 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:2 hours, 30 minutes Good (down since 2020-04-30 10:48:14 UTC)
Tags:exe IcedID link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-04-301021.club.exeexe 79b1f7f85601a3a935479ae182bd3c65bcdc8df9132169b2af6f3f2514dd2c6bn/a 
2020-04-301251.club.exeexe fa5513c1d0d04827884f572d5f62c0571901b78384361aa44075540193183161n/a IcedID
2020-04-30611.club.exeexe bbae86774d15a7de6618c0ea86d41b7e45627ed0ff2cb13608302f4cd1e8ba12n/a 
2020-04-30751.club.exeexe 31657b9ab3909230cf67b9dfea773dff81e434bd09dff821a422f361a39dfeedn/aIcedID
2020-04-301461.club.exeexe 31b4aab90e62d4165478f0c383798b090f6f7244b5ec77d6d9e760e4d93102cdn/a IcedID