URLhaus Database

You are currently viewing the URLhaus database entry for http://admaris.ir/kingx/lagguyx.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:401191
URL: http://admaris.ir/kingx/lagguyx.exe
URL Status:Offline
Host: admaris.ir
Date added:2020-06-24 02:00:40 UTC
Last online:2020-11-11 00:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: p5yb34m
Abuse complaint sent (?): Yes (2020-06-24 02:02:02 UTC to mehmet{at}vitaminbilisim[dot]com)
Takedown time:4 months, 19 days, 22 hours, 36 minutes Bad (down since 2020-11-11 00:38:09 UTC)
Tags:AgentTesla link exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-07-25n/aexe c9470eaebef635c29b755e19d042c8988617e597a884fd9841e57a834ebcf3dan/a 
2020-07-22n/aexe 1f94964cbe8cb96d54d52424be67af67242bac1e2eaa5cd246a505fb7a9f207bn/a 
2020-07-17n/aexe e628362b63d33b46fa971e74c58081b86cf88ef8a80e7c5c21a21f2f0199c753n/a AgentTesla
2020-07-15n/aexe 64f6aa9862a51b15852b3d0ebf83b090d4844cc8cbe8b31f5e06a1e64ef67afcn/a AgentTesla
2020-07-14n/aexe c4a79bbd983bd8804164e1149c682678e4ae514f3330abae74d7864640dd9006n/a AgentTesla
2020-07-10n/aexe 36a4fd77ff4983b39b278c7ddc0279e7f05d81ee965b53cb31a0512af61f8fcan/aAgentTesla
2020-07-09n/aexe f9cc2f6ba4c63075a5da6c714ea2bd3eac3caff5c227f80f5208595dd771b2e4n/a AgentTesla
2020-07-08n/aexe 70706e21df2777c92d5a20bf792b88d3152b05fab743d881b3a3311291da6f62n/aAgentTesla
2020-07-07n/aexe e04f5fd3893100462ba27bedbfad3cbd9f28fa4ef0553cde5aaa4d8f370ff854n/a 
2020-07-07n/aexe baf78d7d37a291a902e840a51bb6e30e550abed130549d92697636e18f36e0d6n/aAgentTesla
2020-07-03n/aexe 105044d729fd66f55ea0a79195cdac2ae5f07af10ed83173f6abfcb11f19d912n/a 
2020-06-30n/aexe 73aab4f4940281b73928c048a5f4524829b2c05bedca4fd156991f06426cbd62n/aAgentTesla
2020-06-24n/aexe fbef646f9f2819520f1867d8386467704be35e5bdb4c940aee246604ecd304acn/aAgentTesla
2020-06-24n/aexe 8ab06fe2aa7c86e6f8546d38e93a8526705f63938c0a79c74d1beee30490bcc4Virustotal results 65.28%AgentTesla