URLhaus Database

You are currently viewing the URLhaus database entry for http://uytgvhdfsdxc.ug/zxcvb.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	360443
URL:	http://uytgvhdfsdxc.ug/zxcvb.exe
URL Status:	Offline
Host:	uytgvhdfsdxc.ug
Date added:	2020-05-09 11:23:07 UTC
Last online:	2020-08-17 03:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2020-05-09 11:24:02 UTC to abuse{at}selectel[dot]ru)
Takedown time:	3 months, 9 days, 15 hours, 57 minutes (down since 2020-08-17 03:21:33 UTC)
Tags:	ArkeiStealer AZORult exe NetWire RaccoonStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-16	n/a	exe	308c96557c6be5d4519ba4bac38c23e611c7b61683cfc1063a6009e216c24f5e	n/a	RaccoonStealer
2020-08-06	n/a	exe	b7b4548520de8927b3457b599a4b3afb3b686de57dd4b186c2c7ee6c00524377	n/a	RaccoonStealer
2020-07-30	n/a	exe	07dd81aa4994d15fd4d26bb4b9a4aa5dff47d99da2ab76718f480f62cb4ddb93	n/a	RaccoonStealer
2020-07-23	n/a	exe	f153e1bf81a8faf42cff46480b58bf538a3a7c6085b2e67facc94ea8e879eca2	n/a	RaccoonStealer
2020-07-21	n/a	exe	b91e6595c76b4b7a875e393734ec9b4e3f5728f2f1ecedf8d9c27f4294436525	n/a
2020-07-17	n/a	exe	aecddb3a9656759f5681708172573f435c3db0539d6a7a0230ec93b4e3f131a1	n/a
2020-07-14	n/a	exe	3b0d6b26dd2152ce85b4487777afc66e2ea37f33697d6ffe07608b79ffd47614	n/a
2020-07-12	n/a	exe	3d4820c098548ddeb284389d43bc1ce29b4171bae99de28f83727624377b4f21	17.14%
2020-07-10	n/a	exe	57fa7385d4d9d98c498ed421e98cc5900ca489703055af7ccf0edff69c1fe749	n/a	RaccoonStealer
2020-07-08	n/a	exe	07145b3504f4fe39434718b6b68fdecc52c909e135271f5461488f7b23c7b55f	n/a
2020-07-01	n/a	exe	e4692010fd3d0a88db68face738f5538ec067e3d2066f8d45ff1fe84ba5cb09d	n/a
2020-06-28	n/a	exe	3e9f05acde528ea5fd7ca9d0c2af0e82d29e343d2f61420290e6f660630cd25f	n/a	NetWire
2020-06-24	n/a	exe	682be0853ccd6f60deb69d27941a628758c4e13e7d2e6ee95a95f415f3a9f0c6	n/a	AZORult
2020-06-20	n/a	exe	14de928a31f94b3595d463b72256c95f0cbe43e893f646fb350785f5fb00f0a2	16.22%	RaccoonStealer
2020-06-18	n/a	exe	643e45ab9ae91c44f60ca66f1f0b54e64d206c1a15c700903f7bfbd42ff909c0	24.66%
2020-06-15	n/a	exe	bcb474ac919440674135c673d8c6a0fc8015a63a15b2849c3346f74a716b5249	n/a	RaccoonStealer
2020-06-07	n/a	exe	46bb9b17ea1a28c88eb4a21e10698e00119bb3fb1c71bdde636922fed2a9d6e3	n/a
2020-06-03	n/a	exe	7294bdc3333d08ac9c2397b3555c0126928c13600b23de09f21841cfee83f55a	n/a	RaccoonStealer
2020-05-30	n/a	exe	e980a2681eca218a103477e32bcd75731ddb1a177d9ca7d6862298ad0bd20ea1	n/a
2020-05-27	n/a	exe	a8c4819383dd56652ece8564037c30367bc2f1b6f13fcd6fe6bec532eaf4762b	n/a
2020-05-27	n/a	exe	c5e177576308785505bd29e46357cebb909b25e17d6f04aa55f5f4a19bb3844a	n/a
2020-05-24	n/a	exe	15145ed8e5ae3cf2acf9ad25bbcb3f782c4d8ba9674185d06baa66ae6d17f25a	n/a	RaccoonStealer
2020-05-23	n/a	exe	9788eb6db83aafc366fbb615958f3a67c5d9c62d1ba87694aef12a30adfc9cb2	15.28%	ArkeiStealer
2020-05-20	n/a	exe	7d02ae5ae3ed3b7a13ff5495174216ea3195764d7154b8e9b4997c74fd08fb09	n/a	RaccoonStealer
2020-05-19	n/a	exe	6b4c217c0bdb4660db2d83a8deb9e538e801e8c275e5e1fe955497970daf24c0	n/a	AZORult
2020-05-18	n/a	exe	3b1f46b2973e8abb5222fdb96fe104fd475a7f44cd4fbc6925308df1a04619ea	28.17%	AZORult
2020-05-14	n/a	exe	68f66dd88b1a69a8ff2e63cca5e4554e1b147ccd2474d356b60a749c21412fd4	n/a	RaccoonStealer
2020-05-13	n/a	exe	3c928cb1b79e7b11208197d3f1c0d14ea59819a03d7308d62f0e8500b8c8f052	n/a	RaccoonStealer
2020-05-12	n/a	exe	bfa087d553544f90fd66a149a93d215fcb5f7edf9e96ec7b088f4437681cd643	n/a	ArkeiStealer
2020-05-09	n/a	exe	fe4380d486f2736ca42bd59c3cf90727d7e423416b8b30c1468beaac6572bff8	n/a	NetWire
2020-05-09	n/a	exe	a8bd0b59b5a0349c27b2a87943f61dbe5ab186151dcae2bfa91a11eb8456a0c4	65.22%	ArkeiStealer