URLhaus Database

You are currently viewing the URLhaus database entry for http://saidagruop.jp/DOC99281270.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	422540
URL:	http://saidagruop.jp/DOC99281270.exe
URL Status:	Offline
Host:	saidagruop.jp
Date added:	2020-07-31 05:33:36 UTC
Last online:	2020-09-11 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	gorimpthon
Abuse complaint sent (?):	Yes (2020-07-31 05:34:02 UTC to abuse{at}netim[dot]net)
Takedown time:	1 month, 12 days, 16 hours, 53 minutes (down since 2020-09-11 22:27:07 UTC)
Tags:	AgentTesla exe Formbook

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-07	n/a	exe	cedead5dd0528f69da0617580afc0bcb6dd52eb05ad35dc2f24ec45179851e62	n/a	Formbook
2020-09-04	n/a	exe	353e4fd91fe618f5c22c9cae00e7575e9b1914576ff7e332d03ca3e9f7dbbbbc	n/a	Formbook
2020-09-04	n/a	exe	20b4f9666341e824b5e44bb2f4740d066241cbd917568ad4770e67b4f12941b8	n/a	Formbook
2020-09-04	n/a	exe	4d09b7636590d5dbec6fe10f59e3790a0d6528f76d449b350cef77a4b7729863	n/a	AgentTesla
2020-09-03	n/a	exe	cbdb26c03011fc1bcff387eb2a9594ac8b97d7e3c874b7ec62f2762838605fa3	n/a	AgentTesla
2020-09-03	n/a	exe	a3fe8ced0fd976a044575f86d966009e42bd0839ec27a4755e528b128acc8c4f	n/a	AgentTesla
2020-09-02	n/a	exe	ba8ee5201bd168f1c327977b55c59dc9891cd744ededabb4554d5645a0c65777	n/a	AgentTesla
2020-09-02	n/a	exe	9dd7808ad3eb4fb8a1ab8f7d40ff7bbebfaea8e8ca66741e3f720c257d5b4596	n/a	AgentTesla
2020-09-01	n/a	exe	9007d5c1eecef73c5cef31b64da68425f7930e96ef519d2c5a7ebb59236b32e2	n/a	AgentTesla
2020-09-01	n/a	exe	8fc2603b570243ea5dca68ebdd3c54df98e8a5c668a8ec82226e8b702efdedee	n/a	AgentTesla
2020-08-31	n/a	exe	5aa103d5ff6945f3894cf993ce0a7acaa28624234a5b249efa72748a50b2aba7	n/a	AgentTesla
2020-08-31	n/a	exe	027a94f959321d9125fb092ce081b0fbc108a9f3b2300a9c6cc8227a9109f13f	n/a	AgentTesla
2020-08-27	n/a	exe	e93ccfaff883c0c938b5d33906a7e788e674a75613cedbeaac5d86e669b13805	n/a
2020-08-26	n/a	exe	74064ec05b733a6762f7f1de7d999b07e7b21d3a2d0b985ca7d92ca51534e4dc	n/a
2020-08-26	n/a	exe	8a52027862558f3a7037c6b131b2bccd5e2a38c413a4167c557ddae2523e3e99	n/a
2020-08-25	n/a	exe	215efc81d923a9946c662c04eb1cf858f79bfdee2259af4580ce3a4b1b71626d	n/a
2020-08-25	n/a	exe	c9a70c064e29a0f68c1ae5dfa9579ee0c493e5770b9921519e3e0c1f80c0143f	n/a
2020-08-25	n/a	exe	fb86d61c15d740a54695aec3eb3d70c51cf8b27d599c2da8b349c12ba93ff71e	n/a
2020-08-24	n/a	exe	90a4c2f2031695fa8fbd96ea85df9b6df94cb1f2e99924ece6e0b09f95806dd6	n/a
2020-08-24	n/a	exe	63a5ff666cb745e2a91689232cd421219c4dcaa32622b05c29770f1a39a677ff	n/a
2020-08-21	n/a	exe	7b713f964f3bf87d945e8233c859b8fef538eae0ebfdb0628af77b6b2897e694	n/a
2020-08-20	n/a	exe	5f4199141e6f8448b29e0f0375feb4fc813ee2ca2fa4029ee30456927b0f7b9f	n/a
2020-08-18	n/a	exe	44aa7b6382741a3a9a134e4a6bad65a3eb015863b099820e7d4ad25475c0d9d7	n/a
2020-08-17	n/a	exe	12408a60c217c5ece199e671a21a3126e9bb61910fec8307a1f6735fbc549130	n/a
2020-08-17	n/a	exe	2a6f4ceccb614247724bff7ecc0241c756b3d0d971734ebf7d15d2c822975ff1	n/a	Formbook
2020-08-16	n/a	exe	902abc49749c7750ba0e312ccee26c662df1c7c4d1fb11adad22406cd33952e9	n/a
2020-08-14	n/a	exe	d2a0d9cbba4a22df0b60dac3e7a258b67559b48f5675ff40a536336462f9eaf9	n/a
2020-08-14	n/a	exe	040b451ddeae61cc065f2d5e780aeee6ec8d58364a86f6a97a86e4c56efe5147	14.49%
2020-08-13	n/a	exe	95c045eed14aa70418a13de6ee256c3fea6f3cf420763f545797c67d72f95bb4	n/a	Formbook
2020-08-13	n/a	exe	2d0c21865e791756c2b399f621e6ead82e7362839be7a4dfb8e64701fdea2bc1	n/a
2020-08-12	n/a	exe	f11f8f7ea3993ef1195138d5aec64a54b43fb65320b1cd4bfc6fa94de6c92f0d	n/a
2020-08-12	n/a	exe	e20d61acded99467d8a030204fed6f2041129c4d3f4d51ec43644ca089dd89a2	n/a	AgentTesla
2020-08-11	n/a	exe	884f0b5ccb48f375f10bea315e237aeee87f320890fee56b63fa35c220e82277	n/a	AgentTesla
2020-08-11	n/a	exe	b2028d776d4132203bbb034f2dd9f5ee562a85dbc7e436cfb87c23354c26544e	n/a	AgentTesla
2020-08-10	n/a	exe	c518769f76c034f7322e9d5fa39529cac873704092134ea7aee564492cfc54ba	n/a	AgentTesla
2020-08-10	n/a	exe	9f5cdceab5ac294468c24530832dc04e0d04570514294c123193a9e2708740f3	n/a	AgentTesla
2020-08-09	n/a	exe	3d02f0f62b97639d094bd1bcb3e561ab86ba01a02af4b4225b9b4aeb29c52bbf	n/a	AgentTesla
2020-08-07	n/a	exe	1135c31c991275fac7668f07b6b344786bef377e6c9158aeb9b0e3a430bfeff6	n/a	AgentTesla
2020-08-06	n/a	exe	e595987e96c536ad8be2aabd554d6c0335ddb93f059982a2a4da1bbd88353229	n/a	AgentTesla
2020-08-04	n/a	exe	a6efbf358165480251949dee100856c62067139ccf1ff79fd06e78f44cff6bd7	n/a
2020-08-04	n/a	exe	2a5405e0ca4d7ba54575c043acf391e5cf32c7a6e7464bc754bc5a5466c25cc1	n/a
2020-08-04	n/a	exe	a0d4ca539b7719ff9cd0ee96abfff30d8d8cbdd29be98e043668f9c74110f1dc	n/a
2020-08-03	n/a	exe	107ef1cc73d8cc27894285db464d3b0dd13ca89b242a1c88e057a4d1dea34c05	n/a
2020-08-03	n/a	exe	e4e658891a7edc56b26df883840a93cd2a896f5396778269a037a7df26a01c36	n/a
2020-08-02	n/a	exe	e6b29181f5b60563a2457af77197c4814b8abb77320a6d00ee863e3ca976c1e4	n/a
2020-07-31	n/a	exe	b6bc9f680ca44edea440db55439314180579985e21e13b79d48ce072fab5a67c	n/a