URLhaus Database

You are currently viewing the URLhaus database entry for http://cloud-server-updater17.co.za/doc/officebuilder.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	379547
URL:	http://cloud-server-updater17.co.za/doc/officebuilder.exe
URL Status:	Offline
Host:	cloud-server-updater17.co.za
Date added:	2020-06-04 16:09:07 UTC
Last online:	2020-06-26 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Anonymous
Abuse complaint sent (?):	Yes (2020-06-04 16:10:03 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:	22 days, 6 hours, 57 minutes (down since 2020-06-26 23:07:19 UTC)
Tags:	Buerloader RaccoonStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-06-09	n/a	exe	c7b903780f35f8bf649218061e698fbcc73a51aa70d049d60d91b6d28520b706	30.14%	RaccoonStealer
2020-06-09	n/a	exe	bd416dab1dc3cdd71e051b110e1f4b01dfed1c5879e9e2b927a506c608301ccf	28.17%	RaccoonStealer
2020-06-09	n/a	exe	4706a7f07c842e44f698a718c2f056bada6f4c1cf4c49f4741c3f481b24b4b8a	n/a	RaccoonStealer
2020-06-09	n/a	exe	989fc10662489f413eee95d080187777e58aeed34abc091340df7f59a9335b2c	n/a	RaccoonStealer
2020-06-09	n/a	exe	28813d0af6ee901e2a0bac2fb5b3b666868b962cc4aad4b1640c10b6ac741db2	28.17%	RaccoonStealer
2020-06-09	n/a	exe	ec46493c7187f7058d806f79d2962f353319e2d45a9365aeb3b960e7b5587293	28.17%	RaccoonStealer
2020-06-09	n/a	exe	ec2a9eb4ac87e65c0744fb0eadd77198bba4b0d2e338aea57c08fb9ee50de3d9	n/a	RaccoonStealer
2020-06-09	n/a	exe	301c693ec8d29bdfd7c8df93e77cebdb51b06f3045618dd58b06b00fed4bb2fd	28.17%	RaccoonStealer
2020-06-09	n/a	exe	b48f78b3da5dcb47551d967c452461748f81138974a6358b98f11384fcb10f28	n/a	RaccoonStealer
2020-06-09	n/a	exe	7eeae8727c7961c3da56e99de9e3463bf98e267a7ec0145d360293349465ab3d	29.58%	RaccoonStealer
2020-06-08	n/a	exe	a8adb00ab90353a08855236b402867ab71d08638a5317e7f3507e12f9aa9e966	31.88%	RaccoonStealer
2020-06-08	n/a	exe	756471a2357873f3df397480a173e1380286f4384643ab859d57973e7340e31c	n/a	RaccoonStealer
2020-06-08	n/a	exe	1bff41245d3c06fabd5873827fbcb439e967ffed497aa0db52abee316c9127c8	n/a	RaccoonStealer
2020-06-08	n/a	exe	356d4979297a9edd9043d376a7f4a86c0e8c6a93bd9aa345b0969706cd2f9d74	27.78%	RaccoonStealer
2020-06-08	n/a	exe	5c2f8f5dd381878e8507be2a11eba1118f28f6de24c10b4f2207c04b608f0ed0	n/a	RaccoonStealer
2020-06-08	n/a	exe	722126adc22511871123f3057fcb89f2cc45691a6a6de1eee69c72f19cbdb281	n/a	RaccoonStealer
2020-06-08	n/a	exe	adf006c6d84e027daa04b915061928f87d27a285dccc77d39d5b582c8d290f29	n/a	RaccoonStealer
2020-06-08	n/a	exe	e3b99f09f8c197edd4a0bb3953c4b2e7c5590047bf2ccd946b8fd30244c4bfa6	n/a	RaccoonStealer
2020-06-08	n/a	exe	f445d63184908a0dd348bcbde82feb2cd1a2e387099e5df304f1a72f3e214845	n/a	RaccoonStealer
2020-06-05	n/a	exe	a61d49a1253008d99edb3454be53014f5aca06bd41bd70b77ad2266a3579fcbe	n/a	RaccoonStealer
2020-06-05	n/a	exe	b40d7b44baeb00949c7fd545895f1f500e796702c19997c5e3eb2154eb28331c	n/a	RaccoonStealer
2020-06-05	n/a	exe	d9a0524d3bebfed036ea18e5b96fcfdd23a37d16e271bd98848c6a7a4869bb93	n/a	RaccoonStealer
2020-06-05	n/a	exe	c83c246441fe989317d94896673b0727422e96650cd1fc41f86f57797131a17f	n/a	RaccoonStealer
2020-06-05	n/a	exe	70ec5843a563be04290314f543ed0369a822a71ee353008cda4a82346e341ff9	n/a	RaccoonStealer
2020-06-05	n/a	exe	af0a3834638be40e679b27b8fe35a494906e3ef293e4ac5b16ceb1d198939d09	n/a	RaccoonStealer
2020-06-05	n/a	exe	f351232d2a368a3bb765fd0f79deb286d9d5592a4c892d4a126ee15e9cec6132	n/a	RaccoonStealer
2020-06-04	n/a	exe	1816556fa3a0df155987e973d599fb553684e315cf59bb1b8ea4bbcff95bdb24	n/a	RaccoonStealer
2020-06-04	n/a	exe	8092f7adff425c2972f2716e2d31fedb1057c692eb8f0d4ca65d1a97537932a7	26.39%	RaccoonStealer
2020-06-04	n/a	exe	838e751256c2c80b0ea3299a6c9410033a4ae8eeb15fa5dc913a5e2d2b041c5a	n/a	BuerLoader
2020-06-04	n/a	exe	983d5da5a77bd35296ad8569ec9eeeb0b7984f9deadf4d7b65842275da53ca72	20.00%
2020-06-04	n/a	exe	ae3ff9a6dba15d80bb39bfe3cac65cf0ffd3745b7cc5a3880465f727747a5804	18.06%	RaccoonStealer
2020-06-04	n/a	exe	f8bd31f514d66552ce6512c5d48ea422a990b6e0d0d4251ccd25370048718c48	21.13%	BuerLoader
2020-06-04	n/a	exe	69924d712b640b6d7bbf056dfb46d5c1ef7be90861391f9ec64564617545e61f	20.55%	BuerLoader