URLhaus Database

You are currently viewing the URLhaus database entry for https://handrug.com.py/baterfly/aleacarte.php which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	410870
URL:	https://handrug.com.py/baterfly/aleacarte.php
URL Status:	Offline
Host:	handrug.com.py
Date added:	2020-07-10 16:44:08 UTC
Last online:	2020-07-11 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Anonymous
Abuse complaint sent (?):	Yes (2020-07-10 16:46:02 UTC to abuse{at}servercentral[dot]com)
Takedown time:	21 hours, 57 minutes (down since 2020-07-11 14:43:16 UTC)
Tags:	Trickbot

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-11	1034zo1n3o5b5.exe	exe	b635d937cfb670c7cf248683592d446588adc3e69477576ae9af71b1cbc24b30	20.55%	TrickBot
2020-07-11	1535zo1n3o5b5.exe	exe	c503da50b9847f0b882d93bd76704fc29e427e0606d19de76c86dde2679351f7	20.55%	TrickBot
2020-07-11	191zo1n3o5b5.exe	exe	97377847223ec1f2c63ea5c85f9fb78414cf9db229e76daa27d061ff2ddfc355	40.28%	TrickBot
2020-07-11	1748zo1n3o5b5.exe	exe	f2c5826ed9cb779dc01379334576a9e01cae9120a968e6475726f45aac998afd	39.73%
2020-07-11	1279zo1n3o5b5.exe	exe	6c87bca8b4d46bf87cf48b6eb6c380f629faf81254b31eb748f800cdbd6d69dc	34.72%	TrickBot
2020-07-11	1135zo1n3o5b5.exe	exe	88adaefda37dc91bb9ae4616fcb508f541158cbc92a8553c1dca0f7732841cd0	38.03%
2020-07-11	1321zo1n3o5b5.exe	exe	70510b27ffdce57320c7daf0fb1df94e004cd0de72d8d7ccbbbcebcb3d2d0858	n/a	TrickBot
2020-07-11	1806zo1n3o5b5.exe	exe	822596f612c4834a2b67178380cfb12215c2b0ceba997f8402efba0adaec8010	38.57%
2020-07-11	1200zo1n3o5b5.exe	exe	1d4fc745eb90721f2e6a4dd12673cb763594075d510cdadd7362881564af596d	37.50%	TrickBot
2020-07-11	1357zo1n3o5b5.exe	exe	7374676d6a3c6802ea0a7c8d1b81a007f535910d2cad24b30af398f72ef206c1	39.44%	TrickBot
2020-07-11	1056zo1n3o5b5.exe	exe	461e600157c3943673e4f6698fdfdb463ba2c74e19d389b732c2adbdbcef13c8	36.99%	TrickBot
2020-07-11	167zo1n3o5b5.exe	exe	1f80b9e0043cf7c299616bd4ea587410483114f5d07ec240733f2c83a55d9937	39.73%	TrickBot
2020-07-11	548zo1n3o5b5.exe	exe	462685f49611ad429fd8019de00276ad805ceb4b9b6ad4ff03abe0760448eca8	36.11%
2020-07-11	444zo1n3o5b5.exe	exe	fa70613e9e98880fabc07a99bc9806a53214bd59f22578cbf8b2b1f0858063bd	38.36%	TrickBot
2020-07-11	1317zo1n3o5b5.exe	exe	dd2741a87d60e17b24a20396ef75a239aaddc2e5610fe6d61e5aa1bbe1f0364b	19.18%	TrickBot
2020-07-11	310zo1n3o5b5.exe	exe	e065a874951f2370361de70bf6741dd39b06f1bab24ef93c824d3325b6143207	34.25%	TrickBot
2020-07-11	1436zo1n3o5b5.exe	exe	063b5480489ab294188ea4f3c6c8e94ddeb3ab5c620641c8867a8407ee1ff424	25.00%	TrickBot
2020-07-11	757zo1n3o5b5.exe	exe	eeabaf3e18a3833c62f99ebf607d1a1094da587203ae8123b79c42f346fa2b0c	33.80%	TrickBot
2020-07-11	9zo1n3o5b5.exe	exe	4818595752e83cd0c8ba8ec2a1a4403bd3181984d134b98bc4261dc777286868	37.50%
2020-07-11	366zo1n3o5b5.exe	exe	0b54a723b2d8b84cdab7c2ec1cb68a11ffa604373890daf91292d441cb2e64c4	38.89%	TrickBot
2020-07-11	368zo1n3o5b5.exe	exe	9389db1f96f4c45b7320b75fbfaa3e4921f8dac639b473e6e824fa19d444e226	37.50%	TrickBot
2020-07-11	1137zo1n3o5b5.exe	exe	fe77d70c702b2717f8ca96c28b6e61b81608b099238eb14ccef0972607f7fb4b	35.62%
2020-07-11	1916zo1n3o5b5.exe	exe	744bfd0a79f468347a24ed4958992cc1397387d8c6fa2b0d51d371a0460d2f1c	16.44%	TrickBot
2020-07-11	1964zo1n3o5b5.exe	exe	c0fa607b165a7abe6bc84da0ed1ef57d7cd404d2f006e2c172df00a02d27bec1	36.99%	TrickBot
2020-07-11	1291zo1n3o5b5.exe	exe	1c961090f15a21f83f812b232205cee55f6ae8ec20caecb97aa44742e3a70bfa	40.00%
2020-07-11	1387zo1n3o5b5.exe	exe	3194d7df7a0b222e7e91460408e6c6bf1fed963926bc07aa745a822663a26f74	39.73%
2020-07-11	1638zo1n3o5b5.exe	exe	131bea0eb3950fe1ba3e4e8bd8e02d455f4a406bcb4c4c077b19ddd1d6266320	17.81%	TrickBot
2020-07-11	656zo1n3o5b5.exe	exe	e331bfe59603404a7513a388301e5b813aefb6d64286a72997af10921f07937e	35.62%	TrickBot
2020-07-11	1381zo1n3o5b5.exe	exe	491b8f74ce27513d29f1b1a4232be28f5109ff90013fcbae68be449593fa9c14	20.55%	TrickBot
2020-07-11	68zo1n3o5b5.exe	exe	6f234aaca8374dbfbf6daa9ea4b93df65c392de5b4eed0604d55e373efd7b0c0	19.44%	TrickBot
2020-07-11	863zo1n3o5b5.exe	exe	9f42da7db157eca108f3b9cc4f24910690e7b573f6a2ea23710735ad9fe5d0ec	20.55%	TrickBot
2020-07-11	385zo1n3o5b5.exe	exe	1f82d8a342beb5e67224cb4f8eaa8fa08d7a26686fd882d1810d7e9efdacdbc2	19.18%	TrickBot
2020-07-11	1148zo1n3o5b5.exe	exe	4c3196549f614f57fae8845625a1f7b3dde9248cea8c1268e039a88ca49bc86d	19.44%	TrickBot
2020-07-11	887zo1n3o5b5.exe	exe	1696b12bb4f412d6d1d307b65f1d3dafd034a14128b8e67f5264c7ff96e75702	21.92%	TrickBot
2020-07-11	182zo1n3o5b5.exe	exe	3bc812685c659ddfbe738062b91a002b8d6f859c44242d2aeb84781b3010cc58	23.61%	TrickBot
2020-07-11	87zo1n3o5b5.exe	exe	2a98428418f9f6807efb703d848b118295c79939ac97c8b625d68575e55e267f	19.18%
2020-07-11	832zo1n3o5b5.exe	exe	86ba70d82f37895abadae84ebfb805e93b56a2b6f6984ba4f1d7988e4047de9f	20.55%
2020-07-11	1063zo1n3o5b5.exe	exe	b1727089c008c0e979be4fd1503126914a8a59a00df0042daca8e797ddd18858	19.44%	TrickBot
2020-07-11	628zo1n3o5b5.exe	exe	65aebcab1a96d6cd63080b76087c05e5f888a86ee168676b2c7a66dd7fe75db1	18.06%	TrickBot
2020-07-11	425zo1n3o5b5.exe	exe	e76df029d6bacfc0c24b0f6b8ec457c069580a267ec1628e17b9b64cfbd8320d	20.83%	TrickBot
2020-07-11	1596zo1n3o5b5.exe	exe	fb32bc02444b3de77d30c52ce0b8fb030767f1df873a49162075cb30da780a80	20.83%	TrickBot
2020-07-11	981zo1n3o5b5.exe	exe	382b04ef155ba6635d2e598593987c4c02172118c9f35b5baa56f7467442d196	18.31%	TrickBot
2020-07-11	1696zo1n3o5b5.exe	exe	c5a6bf03ad94c0422dbb876b3144332cfd76f2f60e00aa551536a445e21f9ab3	18.06%	TrickBot
2020-07-11	386zo1n3o5b5.exe	exe	55777a7a575611ea17cef824ae097e98404e60cecce8c413d5de73e62e4e70c7	19.18%	TrickBot
2020-07-11	1908zo1n3o5b5.exe	exe	ea4a2eb90b9b923c63b9d0726d6277228e171b93e694a9c10ed6f04169d672a4	19.18%
2020-07-11	1085zo1n3o5b5.exe	exe	48ac3eb2f5c2a707a745288e235680bf7df7a728d8acd26a8b803b6475d5f9b4	20.55%	TrickBot
2020-07-11	267zo1n3o5b5.exe	exe	8781ede1b860cbd437d9e2f55c9aa9a7cb8a2066db7f2fcfa6a9d1c9698fec38	23.61%	TrickBot
2020-07-11	1004zo1n3o5b5.exe	exe	75a85a535933eadf32e6cc69a4134e8ac06fb049f06a12e93787a2c8ae45bfd4	17.81%	TrickBot
2020-07-11	732zo1n3o5b5.exe	exe	15a5691c9614c10e42b8a78ad26086e1b5b3df78afbff688c2805ac8bf2cb614	20.83%	TrickBot
2020-07-11	183zo1n3o5b5.exe	exe	b115266d0ee350a91e85b266670fef43f0c728bc064f7b107df910d7879e8b92	19.72%	TrickBot
2020-07-11	1064zo1n3o5b5.exe	exe	58e6d0d3499fb7e18df542b8210965beb0ade551998581501010921cddb763be	19.18%	TrickBot
2020-07-11	122zo1n3o5b5.exe	exe	441b454986a81abc9fabea35aaa1cc39211e1aa1f683c288e359fa0068f6c4be	19.44%	TrickBot
2020-07-11	1110zo1n3o5b5.exe	exe	604e38c84fd586e65e9febfbe5e2b6d4a7834f71b6d5cbf61e40deb6ee081817	19.18%
2020-07-11	1449zo1n3o5b5.exe	exe	09070001016aff636a94d1f510e962f8f92fa6ac31a63b573166fa8b831b569a	20.83%	TrickBot
2020-07-11	250zo1n3o5b5.exe	exe	fdb6696a502318a2438e1a020bf1e7e48d70e417276696e29a4e3d2ba04fbdf2	18.06%	TrickBot
2020-07-11	313zo1n3o5b5.exe	exe	84ce738dfe33685c6240be5a2cf6ba6f22aeafb8e2c102ade70b44b9a3d27c9a	20.55%	TrickBot
2020-07-11	1379zo1n3o5b5.exe	exe	9df0837532de59e9f3bac3c81a5e523a04e549b3f5cc84da2873c493043ac398	18.06%	TrickBot
2020-07-11	615zo1n3o5b5.exe	exe	b0b4cd557a92dfd9e6456edeca7108a96a6fde89d3ca899faa42713a25e7e018	19.44%	TrickBot
2020-07-11	1506zo1n3o5b5.exe	exe	ef8a7090300365c8db376b7287e8508d27be868b9fdbcb73078ee689bade2252	18.06%	TrickBot
2020-07-11	1231zo1n3o5b5.exe	exe	f59a167644db3903ba64e87aa23af8f541b84daa4c7279ac078bd62e769c0721	n/a	TrickBot
2020-07-11	92zo1n3o5b5.exe	exe	63991fa5ca31cb18da96650197522097578bc5369ff68db5cf264aa8e259462f	19.18%	TrickBot
2020-07-10	1407zo1n3o5b5.exe	exe	20bdddfd7f7ea0eff16e76709624e48ebe770fd121b3fd0897b3b0fb12e9755e	20.55%	TrickBot
2020-07-10	294zo1n3o5b5.exe	exe	71da2b9bb32a2017307f811b0b623f544993e786d331e4ae411d63b81a9fea6b	18.06%
2020-07-10	1287zo1n3o5b5.exe	exe	a406a7725da4e85adfb702333c2d59c1ec2f8b0a28202aaddcf959567d421117	19.44%	TrickBot
2020-07-10	592zo1n3o5b5.exe	exe	7069eec2da3d8f3dfbf09358df3f870d06e2c50a22fae6de3f179635ed14286d	23.61%	TrickBot
2020-07-10	357zo1n3o5b5.exe	exe	a5369f3547e9dbd0c33bb01e83362ccf35a595aba8cb3a9780969b68648d4d58	20.83%	TrickBot
2020-07-10	1172zo1n3o5b5.exe	exe	66d5c5c8b936928d0c7ef9db3b938221e23b70c0784d3aaf6d507b993058fd95	19.18%	TrickBot
2020-07-10	1933zo1n3o5b5.exe	exe	1981c09d5fd906b8b2244a27a0df8d4ef63c8d4978c5c249cf49883b2520839b	n/a	TrickBot
2020-07-10	1112zo1n3o5b5.exe	exe	70488b2b2cc298a69388b9737f16ec337a3cd0d3e7b742de822d64a0b8a686fd	20.83%	TrickBot
2020-07-10	715zo1n3o5b5.exe	exe	c82df12aeca340555adf809d5f9154aebc9d34930e4dc59be7cf6d47033b0c90	17.81%	TrickBot
2020-07-10	626zo1n3o5b5.exe	exe	e1ae10a6caf63ccb473312eebb6034d284db269115c98ae94a073ad149c46be8	19.44%	TrickBot
2020-07-10	1569zo1n3o5b5.exe	exe	1983e482c9d1a238411bf99649656b8b60a12257251e6eca5edb6dc616f8e376	n/a
2020-07-10	649zo1n3o5b5.exe	exe	957cef5aea475627858bdd090f5f8c92ceac6b7b3254ebf147f549110994297c	n/a
2020-07-10	57zo1n3o5b5.exe	exe	230183c333a4b2fe92069d84f6505bbacb93e2185c9313059c5ff30cbf6dc05b	n/a	TrickBot
2020-07-10	979zo1n3o5b5.exe	exe	138a583c8388bfa1dd09daa56b3ea0e6f65d042170abc5c60033ab9ab2b4bd1a	n/a	TrickBot
2020-07-10	744zo1n3o5b5.exe	exe	75582f51739287906903b6f2b285f812a868ec15074ab2ad00dea60d7daba88e	n/a
2020-07-10	1704zo1n3o5b5.exe	exe	bd6097454381f319f500a5d8dcff8d89f6305b810153151c024bc2c4d2de849a	n/a	TrickBot
2020-07-10	1672zo1n3o5b5.exe	exe	6cf0247b518fc44b79aa57b4ffd44c2e7b98cb093825de63c1ed4a204c3e2d18	n/a	TrickBot
2020-07-10	872zo1n3o5b5.exe	exe	533bc4f9986a27c89561fbb7bd961827137bd579e6e1a514dfaa0303b4e5b873	n/a	TrickBot
2020-07-10	498zo1n3o5b5.exe	exe	a85bc0c12e6e202deebf45f2c5ea25c70d409485136d376331721e1bc3759891	n/a	TrickBot
2020-07-10	1800zo1n3o5b5.exe	exe	ef4c1679084f3d5265534da235c6ecff0f5f2f8fbdd2c7bc867756e552b23200	n/a
2020-07-10	1349zo1n3o5b5.exe	exe	87c8c729d011df6ebd05c434ada9f1d231edb34012f8ab000f93444963b1e610	n/a	TrickBot
2020-07-10	518zo1n3o5b5.exe	exe	c997060813e3421c020faca680361a294697cd9e1588669afdd6e03908f5db6a	n/a
2020-07-10	494zo1n3o5b5.exe	exe	c67b05dfed27fa5482eead22cbf20f7fe457a4f560076589f58b7d59b3388c41	n/a	TrickBot
2020-07-10	449zo1n3o5b5.exe	exe	78bcea2f4930aa3100efff77292363edc35d8b8107791183b8c7be05b86b7740	n/a
2020-07-10	298zo1n3o5b5.exe	exe	67b43b86a0e4a89d844e6b49faafde9de83b9693f22230d3348a69b926dcce44	n/a	TrickBot
2020-07-10	138zo1n3o5b5.exe	exe	f08b0c9a6d92aa631cc989213e58c9e5bcd6689901025aef09e724f5e7f688d7	n/a
2020-07-10	1073zo1n3o5b5.exe	exe	a9e18bc0e1c5aa5a69c300979403b3fce17025b58bf1e8e91070f14a7559d8fa	n/a
2020-07-10	1499zo1n3o5b5.exe	exe	369991db15a5ff790540dbc6dc6b08110ca7619e6495020726a36aa8a55e044d	n/a	TrickBot
2020-07-10	567zo1n3o5b5.exe	exe	bd7fd22f43c309875b6d0357db8d1534ed6ab34e8717c6efa6143071b22856dd	n/a	TrickBot
2020-07-10	897zo1n3o5b5.exe	exe	ca7659007ceb35231c84f114d21642bae909f4c69483052d278395eb18a35145	n/a
2020-07-10	264zo1n3o5b5.exe	exe	132f3e3a685a8c0f23c982fd2b9c4c412b611792494b5c5c817c243a5b368bcc	n/a	TrickBot
2020-07-10	892zo1n3o5b5.exe	exe	d8d89d434ba10abb920808c96940d02848b9060e3cdaa88cddde9ac0289d8183	n/a
2020-07-10	688zo1n3o5b5.exe	exe	8cebda0aa33fc02c89142d894ef10cafa23684a98b32dfb9d2322f8df15de184	n/a	TrickBot
2020-07-10	1529zo1n3o5b5.exe	exe	e221bc7e215c40932306816065be3b6c74a55feeccefc82cf08d846170f0e24d	n/a