URLhaus Database

You are currently viewing the URLhaus database entry for http://abass.ir/chekwax/chekwax.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:408190
URL: http://abass.ir/chekwax/chekwax.exe
URL Status:Offline
Host: abass.ir
Date added:2020-07-06 08:48:32 UTC
Last online:2020-10-23 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: cocaman
Abuse complaint sent (?): Yes (2020-07-06 09:08:03 UTC to mehmet{at}vitaminbilisim[dot]com)
Takedown time:3 months, 19 days, 3 hours, 47 minutes Bad (down since 2020-10-23 12:55:15 UTC)
Tags:AgentTesla link MassLogger link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-09n/aexe 32208b5122ccceab96101e2d351eeb58025a8f1f91b1ee076931fa541507c24bn/a 
2020-07-25n/aexe 1e45dafd7c422ed2bdbcd51f525473e0b2b9e94b4f3f78185928c67b6239c015n/a 
2020-07-17n/aexe fb885893c58325e6ebd27e44b501abe522e9ee386f9a2c62ba811ed8fc2d8e55n/aAgentTesla
2020-07-16n/aexe 223d7fdd2305def16cd0c966c3bc4a9094dfb6ba951f46c3f868d9a713db30f9n/aAgentTesla
2020-07-15n/aexe 0ce08df0b3611911bc5afc8a1cca8ee808bcc0c4d7224910fad496244c38e47bn/aAgentTesla
2020-07-15n/aexe 204411ab3a58c737815026a9fdcd9071caf9569820f28b464855e4c58209d4dbn/a AgentTesla
2020-07-13n/aexe a179494935b08f12e3531a5b2158b7f23e0ecc6f03ad4ced3883b708decfc076n/a AgentTesla
2020-07-13n/aexe c8f33116c7687f9356ff635c3aeda9244900cdcca560792079389d838940c25an/aAgentTesla
2020-07-09n/aexe ee5571110d6b005c3de5cbe9672640254c3129f2b523a357da6f163a1b827c47n/aAgentTesla
2020-07-09n/aexe b0471eed9d2aee33f9ab10425de7b0109ce410ae7d134299ff4dd85d34fe17fcn/a AgentTesla
2020-07-08n/aexe 35f0e8ca3bab29cfdf15c42ba6879af714ee203082d9cffc70a0b05e4eaae0edn/aAgentTesla
2020-07-07n/aexe 0d28fc2dc18c4230d71852c2169b1bbab460af25891cc7bf00c255f798d56b63n/a 
2020-07-07n/aexe d3eb24682573eea22eaa2eaa8c6da4382fc30507b7193672a54b6a493ec04eb8n/a 
2020-07-07n/aexe 79332abb73fc5d9fc19fc9f583c4dbb36440b32855ef2952f919179d3b3a50bfn/a 
2020-07-06n/aexe e658ce5f2f5fcf573efe10347d409c2f3ead085da15f88b7310a2487424975e9Virustotal results 51.39%MassLogger