URLhaus Database

You are currently viewing the URLhaus database entry for https://www.souqtajeer.com/demo/r.msi which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:358903
URL: https://www.souqtajeer.com/demo/r.msi
URL Status:Offline
Host: www.souqtajeer.com
Date added:2020-05-06 14:17:13 UTC
Last online:2020-05-15 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: shotgunner101
Abuse complaint sent (?):mail Yes (Ticket DCU002569105 created on 2020-05-06 14:18:09 UTC)
Takedown time:9 days, 1 hours, 9 minutes Bad (down since 2020-05-15 15:27:28 UTC)
Tags:GuLoader link NetWire link payload rat stage2

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-05-10n/amsi a7f35bbf31e1fc5fc88fbf7985067786bbaca3504e2eb2ecf52f329a9db9d7e5n/a 
2020-05-10n/amsi dbaa0ca55f5820d1a24bf66ed198ca3feec9fcd22af6f8280d48b2668761411dn/a 
2020-05-09n/amsi f6485046ec1d8b42dc235f75e8e74ae23cff41b52b11bce3fefc5d350db6d98bn/a 
2020-05-08n/amsi 5449508f60f37032de644ac112cae653bb1f674cda98929e87b3bd82215cd231n/a 
2020-05-08n/amsi c54f6c0ca17492aa08f2af1a7241463a85c156a1c5921695d5cbb297fbc95d20n/a 
2020-05-08n/amsi e08036a8272b2208a58cc12212a788d93a97b01900c993a591a532224b93bb99n/a 
2020-05-08n/amsi 096e8516147be1a1f7eb730fcaa7b8c021a28da4c8cdf55bf4e78dbc3b204b3cn/a 
2020-05-07n/amsi 786dc7066bbb947e5dd773c3480285f677309b21f59a94d822f8b95cafa68eden/a 
2020-05-07n/amsi b1aee91328df6a849243403009128510f20d5827605477f8b62d68ef9dd111d4Virustotal results 18.03% 
2020-05-07n/amsi c3102659b3b3c728aa3878b05f5cfbef6622276f0546956cab1fb37bd1f9b45an/a 
2020-05-07n/amsi 90374990a0d4a3b84b850ad84f41bf4cd08fca8d058dbcc24b4937af72ef83a7n/a 
2020-05-07n/amsi b117b3b778d188157fc308f6ca4f563fae5ceec9f7e871e589281ca895149bbcn/a
2020-05-06n/amsi edf2db2ce832ebcddb44f9d6a22e5c3c7d0c4cbe6302fc3b5f556ddc2dce2750n/a
2020-05-06n/amsi 98867c79b9cad272ed464ae52a82b233a7ac1d2ecaf0642148cb26b896413e29Virustotal results 11.86%
2020-05-06n/amsi 5d24ee917de8d274a6b8db618913f069744b6ee946a6a92a16aab30bd59be2d3Virustotal results 13.33%