URLhaus Database

You are currently viewing the URLhaus database entry for http://admaris.ir/kingx/lagguyx.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:401191
URL: http://admaris.ir/kingx/lagguyx.exe
URL Status:flame Online
Host: admaris.ir
Date added:2020-06-24 02:00:40 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL :Spammer domain link
SURBL :Blacklisted
Quad9 :Blocked
AdGuard :Not blocked
Reporter:@p5yb34m
Abuse complaint sent (?): Yes (2020-06-24 02:02:02 UTC to mehmet{at}vitaminbilisim[dot]com)
Tags:AgentTesla link exe

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2020-07-25n/aexe c9470eaebef635c29b755e19d042c8988617e597a884fd9841e57a834ebcf3dan/a
2020-07-22n/aexe 1f94964cbe8cb96d54d52424be67af67242bac1e2eaa5cd246a505fb7a9f207bn/a
2020-07-17n/aexe e628362b63d33b46fa971e74c58081b86cf88ef8a80e7c5c21a21f2f0199c753n/aAgentTesla
2020-07-15n/aexe 64f6aa9862a51b15852b3d0ebf83b090d4844cc8cbe8b31f5e06a1e64ef67afcn/aAgentTesla
2020-07-14n/aexe c4a79bbd983bd8804164e1149c682678e4ae514f3330abae74d7864640dd9006n/aAgentTesla
2020-07-10n/aexe 36a4fd77ff4983b39b278c7ddc0279e7f05d81ee965b53cb31a0512af61f8fcan/aAgentTesla
2020-07-09n/aexe f9cc2f6ba4c63075a5da6c714ea2bd3eac3caff5c227f80f5208595dd771b2e4n/aAgentTesla
2020-07-08n/aexe 70706e21df2777c92d5a20bf792b88d3152b05fab743d881b3a3311291da6f62n/aAgentTesla
2020-07-07n/aexe e04f5fd3893100462ba27bedbfad3cbd9f28fa4ef0553cde5aaa4d8f370ff854n/a
2020-07-07n/aexe baf78d7d37a291a902e840a51bb6e30e550abed130549d92697636e18f36e0d6n/aAgentTesla
2020-07-03n/aexe 105044d729fd66f55ea0a79195cdac2ae5f07af10ed83173f6abfcb11f19d912n/a
2020-06-30n/aexe 73aab4f4940281b73928c048a5f4524829b2c05bedca4fd156991f06426cbd62n/aAgentTesla
2020-06-24n/aexe fbef646f9f2819520f1867d8386467704be35e5bdb4c940aee246604ecd304acn/aAgentTesla
2020-06-24n/aexe 8ab06fe2aa7c86e6f8546d38e93a8526705f63938c0a79c74d1beee30490bcc4Virustotal results 65.28%AgentTesla