URLhaus Database

You are currently viewing the URLhaus database entry for http://kanorkanor23.ru/asdf.EXE which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:404508
URL: http://kanorkanor23.ru/asdf.EXE
URL Status:Offline
Host: kanorkanor23.ru
Date added:2020-06-30 04:19:37 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL :Botnet C&C domain link
SURBL :Blacklisted
Quad9 :Status unknown
AdGuard :Blocked link
Reporter:@zbetcheckin
Abuse complaint sent (?): Yes (2020-06-30 04:20:02 UTC to abuse{at}grandcosmetic2[dot]ru)
Takedown time:13 days, 10 hours, 34 minutes Bad (down since 2020-07-13 14:54:42 UTC)
Tags:exe RaccoonStealer link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2020-07-12n/aexe f16514ee7d82f75259d7e0081f96533640f6bdd8bba7bf47b6d0fa64bbf98e53Virustotal results 47.22%RaccoonStealer
2020-07-08n/aexe 69fe5bb4b975f9437b6c3bcf3f07dc807a8f2e848f1e0c5802012295b06a742cn/aRaccoonStealer
2020-07-01n/aexe 7dd09a71615dc2a60ba9dd906aebcff010f8442f4db392e4feb88baa01f8c999n/aRaccoonStealer
2020-06-30n/aexe a6a6ff46eafb272d4a37b1f943adde3e1406540277a0a4f1bc18e00e124922bfVirustotal results 61.64%RaccoonStealer