URLhaus Database

You are currently viewing the URLhaus database entry for https://friendlydomain.ru/files/jar/module2 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3823631
URL: https://friendlydomain.ru/files/jar/module2
URL Status:Offline
Host: friendlydomain.ru
Date added:2026-04-16 11:45:18 UTC
Last online:2026-04-26 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Malware domain
SURBL :Not blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Not blocked
OpenBLD :Blocked
DNS4EU :Not blocked
Reporter: burger
Abuse complaint sent (?): Yes (2026-04-16 11:46:22 UTC to abuse{at}ddos-guard[dot]net)
Takedown time:10 days, 7 hours, 22 minutes Bad (down since 2026-04-26 19:09:03 UTC)
Tags:WeedHack

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2026-04-22Module2.jarzip 6a1fe4d40b2886eb474f14bdb05432c4467bc9257fdff8cc8b794b16cfcf73b6n/a WeedHack
2026-04-22Module2.jarzip 8d2bfa874d4f19b2d539876a7ec40416c4e1046ae434b5cfd17f16e98297a9b7n/a 
2026-04-19Module2.jarzip eb85a20ed005f2f26c8638a897760e4031480556e05ddcd6e6d8c09915d7392dn/a 
2026-04-19Module2.jarzip 7c37156559a5ef26dd248e8804153cf0eca8ba89cc542617e6dc461bbca49aa7n/a 
2026-04-19Module2.jarzip 6a98bac79adb787898024ad385d54c38ccc07fcdb5b3c94a656b48d453761912n/a 
2026-04-18Module2.jarzip 3e4dcc494dd13e4c709d606d8682652c35e45c3e2262747ca3ef5d55014a9bd5n/a 
2026-04-16Module2.jarzip de2be8829f961c109636fcf40a0ff00aae2e9b090cc175b8c1338874a46c88d3n/a 
2026-04-16Module2.jarzip f492324f1e3fbce71145d12cb6c0debf50622fadddbbb8eb4b56293f5da89a53n/a