URLhaus Database

You are currently viewing the URLhaus database entry for http://admindepartment.ir/wealthx/livewealth.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:392829
URL: http://admindepartment.ir/wealthx/livewealth.exe
URL Status:Offline
Host: admindepartment.ir
Date added:2020-06-16 05:27:13 UTC
Last online:2020-11-11 00:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: gorimpthon
Abuse complaint sent (?): Yes (2020-06-16 05:28:04 UTC to mehmet{at}vitaminbilisim[dot]com)
Takedown time:4 months, 27 days, 19 hours, 7 minutes Bad (down since 2020-11-11 00:35:38 UTC)
Tags:AgentTesla link exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-05n/aexe b88618c003b8d3cd651d9a4fb6a317fd05ffb0d4ebdc274a9a1a73e8f54545e4n/a 
2020-07-07n/aexe 33bcefddfe33309988df1c54e8ed74d92c9bc377b118e280efa173c70155c48cn/a 
2020-07-05n/aexe d6c7595917d15a6bec9defc311e5e33ff66fb99ee78f9a1a38762792fb41908cn/a 
2020-06-30n/aexe a4c70297087ab9d2ba1dfa7452273fdf66295bf4ab7fa001e04841a9dd8c02efn/aAgentTesla
2020-06-30n/aexe 70269ba1f23e8f46a31cee165214a21ae0e47babd75af19946acd296fb15c24fn/a 
2020-06-23n/aexe 8577187fe6f8bb20ae9ced4e598781310cad0e0d3390c8ce674f5d2976fa2a95n/a 
2020-06-23n/aexe bbfdcc6a453c09bd8317c43a3e052d26cdf3cc5cd025f8ea31db70eb60cb0df8n/a AgentTesla
2020-06-22n/aexe 0f40a48444a9c944c02ea8e4917d11b5ece5145c66ba04c3879cbd02396fe68cn/aAgentTesla
2020-06-20n/aexe d70b704e6d45c13adcb60690a8ba02a1c46233946a5478c91090d307d9741338n/a 
2020-06-16n/aexe 6746b764d43adc27dd185f2b8828a72837ebe2f4ba0c555da37b37b8b6621206n/a 
2020-06-16n/aexe 131f3fff31bb1df7e811f4eb38f3e8a5aec66ef9ea6a80c4a4665a677c88a04fVirustotal results 35.62%AgentTesla