URLhaus Database

You are currently viewing the URLhaus database entry for http://backgrounds.pk/zxcvb.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	399076
URL:	http://backgrounds.pk/zxcvb.exe
URL Status:	Offline
Host:	backgrounds.pk
Date added:	2020-06-19 09:27:37 UTC
Last online:	2022-08-19 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2022-08-18 18:03:05 UTC to info{at}kanzas[dot]msk[dot]ru)
Takedown time:	2 years, 5 months, 8 days, 6 hours, 19 minutes (down since 2022-11-14 15:47:18 UTC)
Tags:	ArkeiStealer AZORult exe NetWire RaccoonStealer RecordBreaker RedLineStealer RemcosRAT

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-10-31	n/a	exe	130aa5a1aed885c2d4abfb3dc74d446eb5b177aed5e165bc537442212973cf98	13.24%
2022-10-06	n/a	exe	d4227ec9dd2159223342099e0ed7d55c0691fe677ab2fc513c149a137e50ced8	n/a	AZORult
2022-10-01	n/a	exe	9a81a9c84d36a49be8286458ce7c919538647711b28fedae9b5521762ff76030	n/a
2022-09-16	n/a	exe	e553b05dd2afafadb6ad38d3463056e50cfa31ba3ac5489a7a114ec35ef10194	n/a	RecordBreaker
2022-08-18	n/a	exe	65020d58d04109f2e8f46d12e43aeee9e98ec182db4bd4a2b2c336978e696c06	52.11%	AZORult
2022-08-14	n/a	exe	ea34b776b896df9512f0aab37e3b0d56ff012a0906910a957db335f9e7dcf2d4	n/a	RecordBreaker
2022-07-10	n/a	exe	d75d7b0534ff648f16f5751be79a2c23158b6412a780180aec78c77c7e95071d	n/a	AZORult
2022-06-25	n/a	exe	6887d3d4d5baa135418c2305915c56b448960d03c427f6c63c430465ddaa6547	n/a	RemcosRAT
2022-06-19	n/a	exe	2ced9b36b931b73b1d325bececd01f0e4fa6bd0fff98f8b76f2f45b473311cd0	51.47%	AZORult
2022-04-15	n/a	exe	df4876573295b4e7beb618db31a015ea617f61b811978bb168d432c4052f7731	34.29%	AZORult
2022-04-12	n/a	exe	bb101a8ed508f91ea31c703a103dfbf8fea317b40b1f8f91586de78287ca7e1b	n/a	RedLineStealer
2022-04-07	n/a	exe	309122794db2c8fd2ffd82c9770988297860a56116ce184be08da75b64d361f8	n/a	AZORult
2022-03-25	n/a	exe	9831694a7c5a2cc35a701744e35e7b268ac85074eb42f720e2cd32c3750c4c28	n/a	AZORult
2022-03-24	n/a	exe	a955ecf7a3c88536c733df3a1bfe601085e8123322dab621224ea734e25fc29d	20.29%	RaccoonStealer
2022-02-06	n/a	exe	857fc01da428dccc15e996c5e737eda4148df3676c987a4416c5bb0768ce982d	35.38%	RaccoonStealer
2022-01-07	n/a	exe	855f3c89419401c9596c74f4a05b3d7cf951c2038513b8b005bcdaf5abff06c4	n/a	AZORult
2021-12-10	n/a	exe	0c26c4bc2912317d4e104beae3e4315f7042531fa1f044ebd3da11dea4f6d974	n/a	RaccoonStealer
2021-11-13	n/a	exe	9f1829d274764862ecbac58a299f20376c4f5e7c725de68bc94ea768724906f6	n/a	RaccoonStealer
2021-11-02	n/a	exe	d40e6b3f445ecc817cb70bf8778f4997b9dafd604b962206a49b33a8db157255	n/a	AZORult
2021-10-20	n/a	exe	d88640b60a99a39f22a11731d0fc886fd2c9fdfb094f42886e6ba419025e69ec	n/a	RaccoonStealer
2021-10-08	n/a	exe	618c78fbf67d014137470a93c49571272e7777ce49ab31ccbf47ec11739ef822	n/a	AZORult
2021-10-05	n/a	exe	63cff2624610c0ba77145f4ca69ca649dd063e5da23b6f9534ffc643fe30b203	n/a	RaccoonStealer
2021-10-03	n/a	exe	394c61c695af669dcfe4d3dcf73de5099ed8e7fea036dd25f45ff6d234f9547a	n/a	ArkeiStealer
2021-09-25	n/a	exe	3ef65642968377f832f577a3631fac424e24e3c86ead5539d31b0583ddd69de3	n/a	RaccoonStealer
2021-09-17	n/a	exe	e80d7de90473de5e1d9fb140d2537896872f7a7ca665e9342514426604f4f708	20.90%	RaccoonStealer
2021-09-11	n/a	exe	7b8ffb495d71939d9dfb9b4f4b0bd9bd9d3fad675aa487e2b20129c33f877c50	27.54%	ArkeiStealer
2021-09-02	n/a	exe	93ddf61c1aa7c0b867ffbd579b9febdeed4b027d14f8b86d62f7da493706731c	22.39%	AZORult
2021-08-19	n/a	exe	d0b7a458e09fd14ae8476200bd5acf2fc93ea0e2fea357079a88df80e720c23d	n/a	AZORult
2021-08-18	n/a	exe	e8e31ad00eb7d6e4124e0d9dcd2a2e4ca20afa68007c0e655ae8cc5ca4bfdad9	n/a	AZORult
2021-08-16	n/a	exe	7045ebc8901b28437b116f9ff37d6e16caf2b47e3b7986cc233add8410f1ec9f	n/a	RaccoonStealer
2021-08-05	n/a	exe	29cf2aec62c3504b1914484feff17ae470b51229b1df06f1a30334a08b6db12a	n/a	AZORult
2021-07-23	n/a	exe	367fd8584be5901c9b262975ab5e5700e0e3010d697f1161b6aafabcc7f07d07	n/a	AZORult
2021-07-15	n/a	exe	30b86150b536c960be2c4f96e56a1f281b60c73548733f3df17659726fe5443f	n/a	RaccoonStealer
2021-07-13	n/a	exe	bf82768b9d1b38b15ef0f621c3d31a8d9638e1d124721cf8dc6b43a26e74275b	10.29%	RaccoonStealer
2021-07-08	n/a	exe	83cca26268c671a45fb83a496b024c9a30944bae8afb4c3f70f0b47fb940ab25	n/a	RaccoonStealer
2021-06-30	n/a	exe	f353dc700a77a88665e2d6cb4f73396ba3b4437cc3ee9a6a7e095de5f77277c5	n/a	RaccoonStealer
2021-06-04	n/a	exe	eb352ae2d557edc7edd516a4dd9122a4d7c2ea0646f9844135b7360fec1805f4	n/a	RaccoonStealer
2021-04-30	n/a	exe	9528962252a217d88d24e372be0b977639c7d00f6777687adec8054eb8480784	n/a	RaccoonStealer
2021-04-05	n/a	exe	cfa6ba5f7cc03de5a84234a8be8f4abb98b0bc4d688688f420981d6c5f993429	n/a
2021-03-30	n/a	exe	2f4dc31023ec39356b3aa220863cba0ac8b25770641423bccf79ee2b10d77278	n/a	RaccoonStealer
2021-02-17	n/a	exe	87d1ac5e576de8523091823e8f1ce44eccc2791757456833dd8c52d4379e402c	30.00%	RaccoonStealer
2021-02-09	n/a	exe	16e587a78c6af7a68db2eee80ac40ccec784aeb261cfa7bab04c54608dc96324	47.14%	RaccoonStealer
2021-01-24	n/a	exe	29c2bac557266c71d9ac29741361c48e0c2a9b2196dc10a8961a98d79fe3ec05	n/a	RaccoonStealer
2021-01-04	n/a	exe	d86d337d19194ff8cc5868174b792080774e87455cb75c595ea51046b3351eef	n/a	RaccoonStealer
2021-01-02	n/a	exe	b7b5a82b1c9b3c2ffeedcc57b2bef35f61c7e93ec2d5ae784f667e4d8d534009	30.00%	RaccoonStealer
2020-12-23	n/a	exe	ac8a0b325adca9cc88fc6ee32c912024adfe5228024712e1c757183c51260d16	n/a	RaccoonStealer
2020-12-07	n/a	exe	2dae80e04d518be8a6e1659d53afd6aea2eecc35086db46b4dd0a701a4b6f812	n/a	RaccoonStealer
2020-11-29	n/a	exe	03dfaeacfbc330e89f56bc08ca54f2b8071fb7b27043e342b020a1c0e78601b9	n/a	RaccoonStealer
2020-11-18	n/a	exe	2bea53a14d59fc7d772ea805af47b3b8ddddbf201a7e8d9e7ebd7ca422702a30	30.99%	RaccoonStealer
2020-11-10	n/a	exe	b99d5d0e6ebfd38c47b999a704cb2558797ed6b149356075036a0de57fbca261	n/a	AZORult
2020-10-28	n/a	exe	59a7beab1c7583b7995b157e9e87beb6fa0785c49784bf0b9d13bd143a696541	n/a	RaccoonStealer
2020-10-26	n/a	exe	4816da611b72e06e4b9481b729f754b462a268ce32392eb1eab1ee6776c7b7f9	n/a	RaccoonStealer
2020-10-14	n/a	exe	60152e8f49b376387ea78e05be97894b52c0dc862a9906248b12a441e840ee2d	n/a	RaccoonStealer
2020-10-13	n/a	exe	4be1e912f4b6f65dd938f0a6fa1f1d9b8d4c20fc25ac3c3189e10013c29e4dea	n/a	RaccoonStealer
2020-10-09	n/a	exe	ed9d96725b88ce0a3caee6d98c11369fb84a1d7eca3847db66abe63c49955f73	n/a	RaccoonStealer
2020-10-08	n/a	exe	d8f37e199f10881b2045823553fd64f3f52ec616e24f2235a47dae7c435a3c72	n/a	RaccoonStealer
2020-10-04	n/a	exe	483c603c9fb09c2e908d782f7e6f3f04e6e26b7eaaf8ac637733a4e4a32c80e7	n/a	RaccoonStealer
2020-09-28	n/a	exe	e9909c77bc763fd20edbfbd3b4ad1306399d365312ea50eb45079a4f54afc0e2	n/a
2020-09-23	n/a	exe	8f91c74180d8c1a5b3ae0cfc6f2b01304d4cf3fa29a78ccee0876f7b417cba48	n/a	ArkeiStealer
2020-09-19	n/a	exe	2082c4f394b08d4bb03367395ec711487ee88fc8eed4a7d0eff97f0ad8ea7cee	29.41%	RaccoonStealer
2020-09-06	n/a	exe	086f7495f2591e14daf2ee23e052937013a663d41b616738b48ef1f75f34a494	n/a	RaccoonStealer
2020-08-31	n/a	exe	43289193e35ad500026942fe9da85b24142625f3dba0e26b88f646bde55a0112	n/a	RaccoonStealer
2020-08-31	n/a	exe	7e9b9bbb673e25ab8ee790dbfd2a3e489c0d3a88ab73aafe671f68982f1b41da	n/a	ArkeiStealer
2020-08-27	n/a	exe	9b1328490717e1e3c97216a17bf36b67103a40dae3bbac6865487e51fea82b32	n/a	RaccoonStealer
2020-08-26	n/a	exe	a3712377246d9cfefe667540171bae4f3958af2fbe5e8ff4725366d446d8aa5e	n/a
2020-08-18	n/a	exe	1ea5723fc357a546bd9bf0c5288d3876f7d2cb320b0e05a726a8d20471ac469f	n/a	RaccoonStealer
2020-08-16	n/a	exe	308c96557c6be5d4519ba4bac38c23e611c7b61683cfc1063a6009e216c24f5e	n/a	RaccoonStealer
2020-08-06	n/a	exe	b7b4548520de8927b3457b599a4b3afb3b686de57dd4b186c2c7ee6c00524377	n/a	RaccoonStealer
2020-07-30	n/a	exe	07dd81aa4994d15fd4d26bb4b9a4aa5dff47d99da2ab76718f480f62cb4ddb93	n/a	RaccoonStealer
2020-07-23	n/a	exe	f153e1bf81a8faf42cff46480b58bf538a3a7c6085b2e67facc94ea8e879eca2	n/a	RaccoonStealer
2020-07-17	n/a	exe	aecddb3a9656759f5681708172573f435c3db0539d6a7a0230ec93b4e3f131a1	n/a
2020-07-14	n/a	exe	3b0d6b26dd2152ce85b4487777afc66e2ea37f33697d6ffe07608b79ffd47614	n/a
2020-07-12	n/a	exe	3d4820c098548ddeb284389d43bc1ce29b4171bae99de28f83727624377b4f21	17.14%
2020-07-10	n/a	exe	57fa7385d4d9d98c498ed421e98cc5900ca489703055af7ccf0edff69c1fe749	n/a	RaccoonStealer
2020-07-08	n/a	exe	07145b3504f4fe39434718b6b68fdecc52c909e135271f5461488f7b23c7b55f	n/a
2020-07-01	n/a	exe	e4692010fd3d0a88db68face738f5538ec067e3d2066f8d45ff1fe84ba5cb09d	n/a
2020-06-28	n/a	exe	3e9f05acde528ea5fd7ca9d0c2af0e82d29e343d2f61420290e6f660630cd25f	20.55%	NetWire
2020-06-28	n/a	exe	3e9f05acde528ea5fd7ca9d0c2af0e82d29e343d2f61420290e6f660630cd25f	20.55%	NetWire
2020-06-24	n/a	exe	682be0853ccd6f60deb69d27941a628758c4e13e7d2e6ee95a95f415f3a9f0c6	n/a	AZORult
2020-06-20	n/a	exe	14de928a31f94b3595d463b72256c95f0cbe43e893f646fb350785f5fb00f0a2	16.22%	RaccoonStealer
2020-06-19	n/a	exe	643e45ab9ae91c44f60ca66f1f0b54e64d206c1a15c700903f7bfbd42ff909c0	39.44%