URLhaus Database

You are currently viewing the URLhaus database entry for http://admaris.ir/kenlawfrndx/kenlawfrndx.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:393749
URL: http://admaris.ir/kenlawfrndx/kenlawfrndx.exe
URL Status:Offline
Host: admaris.ir
Date added:2020-06-16 15:53:32 UTC
Last online:2020-07-12 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2020-06-16 15:54:07 UTC to mehmet{at}vitaminbilisim[dot]com)
Takedown time:26 days, 5 hours, 15 minutes Bad (down since 2020-07-12 21:09:31 UTC)
Tags:AgentTesla link exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-07-07n/aexe 52d90b20f855ffa06016620363f056d40ce9bca98d22c8ecddd5bf572773ecf1n/a 
2020-07-05n/aexe 492c833e6f201b8f65cd93415989dd612b999ad8669d575433ebb3aede5b8c56n/a 
2020-07-04n/aexe 8ed1035ffa28fdd0a0c48e7d7fc4f6008cff32794d288b85edd4affb9b50a60bn/a 
2020-07-01n/aexe 45d475791a4705ce3d654331c357fe39892767b550ffaeeecc77c4a10aba944fn/a 
2020-06-23n/aexe e888883e6993ab7df3edd30eba22f6282c33324a21ffbed661c6478393e2296en/aAgentTesla
2020-06-22n/aexe e13ff526ce3e9f7e3684d6f6e0bd9c34d8c50dd53ed82467e672c3f622e4446fn/aAgentTesla
2020-06-21n/aexe 7f8d72a4a54926d36622fed3a0dd9f4ba33da40755ed127ba16c18ca53eccd54n/aAgentTesla
2020-06-20n/aexe 93a5402cb48bbdb12239e900a7f15376b5dc817a10a0bf1952d27d7762fb3a26n/aAgentTesla
2020-06-17n/aexe 1c4b9a6e6e06ba66af9feefe1b1a585a48d242aef0034d0bcc78b7217e11dc7cVirustotal results 43.84%AgentTesla
2020-06-16n/aexe f92996df2e909d06db8e0a3af572568fe0a321d1e09933fb7c50f7e6fc8ee976Virustotal results 37.50%AgentTesla