URLhaus Database

You are currently viewing the URLhaus database entry for http://pub03832.duckdns.org/cymt/done.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	587553
URL:	http://pub03832.duckdns.org/cymt/done.exe
URL Status:	Offline
Host:	pub03832.duckdns.org
Date added:	2020-09-21 16:29:37 UTC
Last online:	2021-01-14 08:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2020-09-21 16:30:04 UTC to abuse{at}bladeservers[dot]eu)
Takedown time:	3 months, 24 days, 15 hours, 55 minutes (down since 2021-01-14 08:25:27 UTC)
Tags:	exe QuasarRAT RemcosRAT

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-01-14	n/a	exe	d525ff0349a9ce04dc5f0016540611080c996d5fba67a2935015e7c1dac58166	n/a	RemcosRAT
2021-01-12	n/a	exe	d246f2f9a393a321c7a39217968f742126522994bc68b56018f25937b6b1039a	n/a	RemcosRAT
2020-12-29	n/a	exe	86992692d34557946a1fd9a96b11789d1ba43b74eb41eeb99181c53ec8c0840c	n/a	RemcosRAT
2020-12-27	n/a	exe	3bdfd4cd7aacdefa4ab159a25b056056fd011b9ad60fc2166adbb41c5610b044	n/a	QuasarRAT
2020-12-26	n/a	exe	1230b290a583361b44a14b0ebf16925f07d7d6ed0d58ecae0bdd2419903d27b0	n/a	QuasarRAT
2020-12-26	n/a	exe	47d53feeaa5e7f8f8d8af8aba5b86a805e3276a35d3b785e4fd3275c54c52809	n/a	QuasarRAT
2020-12-24	n/a	exe	40b5d0462edaa8a9f567a3c5080e954a6d1897d6375ca4bd55017aedaf8f583f	n/a	QuasarRAT
2020-12-03	n/a	exe	32f481a7c5c4c551ff62fed04373d59417592eec20592bfd748d894d5f04de02	n/a	RemcosRAT
2020-11-28	n/a	exe	c3c9aff6dc79b5e5b273e0df686f7896cae920de3ffd171cecdede3a1402725c	n/a	RemcosRAT
2020-11-19	n/a	exe	9cd872a2f048755fda7442e506d886474842523bab26b2fa90c4473505d49a61	n/a	RemcosRAT
2020-11-19	n/a	exe	2304ca5f716360f0b184ab6f4b0daa63862c3418d69bb4d1706a8506cd3bda4e	n/a	RemcosRAT
2020-11-18	n/a	exe	44814687b7a037b5d9083e7f678408f1499013d11e765d3881da8dbecbce81c1	n/a	RemcosRAT
2020-11-17	n/a	exe	21b63e2e1226fdacd86d2662b14d9e750d98655a06504e151be154391670c859	n/a	RemcosRAT
2020-11-16	n/a	exe	dd848661f56da431f26eeb2d6c05b08e6e6051357f2ad6a4e36e1a55ee3c1f36	n/a	RemcosRAT
2020-11-14	n/a	exe	3745a056d8f798d0b84a3b1cbaf5858f38f1f7cc3198d66a95e65c18302fba03	n/a	RemcosRAT
2020-11-08	n/a	exe	4b65b0ef6e5df94c275433e72f1fd9e3c549b313210c6542cbd319e5399fbd26	n/a	RemcosRAT
2020-11-08	n/a	exe	2fff352ace60c16a4f7402f015a777e7fd383d6b4759f147b6a126b390d9ff52	n/a	RemcosRAT
2020-11-08	n/a	exe	a9e9036ea6ac587bcaab8c8b4a5537a092b54dd4daeed3254df7bb4af6926c90	n/a	RemcosRAT
2020-11-07	n/a	exe	60cb0cb27fa975e50e9a2b2b5538a0b1b30070171b775ed531297b0b76268905	n/a	RemcosRAT
2020-11-07	n/a	exe	5cbcddc6136a4692ec6065f531645033a8ee69aaff25f5a0033fffab705c01a5	n/a	RemcosRAT
2020-11-05	n/a	exe	6d5f672d7f0f898fcbd61de854ebb606307557eccfd30b5e0cd76f689da29234	n/a	RemcosRAT
2020-11-05	n/a	exe	c583fe59628fa5aa1146213fd49234db4509dc5cc451861c9b3a314b52d9a3e7	n/a	RemcosRAT
2020-11-01	n/a	exe	023945848fc191b504323fbfbe71288affa36bde374d9d4889d083fd27341723	n/a	RemcosRAT
2020-10-31	n/a	exe	596802440276cf7c17a24c0f108f21647579ca06d6bd1299bea1b82d5121afa1	n/a	RemcosRAT
2020-10-31	n/a	exe	a351faaa23105c8fde3cada56019c460dd7bc8579e027dfb56ef630e0b8649c5	n/a	RemcosRAT
2020-10-29	n/a	exe	958139fdff65190d5ec118b4ac6ceec3a2d4b69932e72edb4ce6ae308ba13f47	n/a	RemcosRAT
2020-10-23	n/a	exe	61feaac6ffb4031baff62a70bf36a38e69e849685c1e3edfe0ddbbfe220abd7a	n/a	RemcosRAT
2020-10-21	n/a	exe	95167e64d46e5f0e9821b379aa7e412f57d14fe11e613bdcab38cb47dc217bbc	n/a	RemcosRAT
2020-10-18	n/a	exe	04794ec7e7eb5c6611aada660fb1716a91e01503fb4703c7d2f2099c089c9017	n/a	RemcosRAT
2020-10-18	n/a	exe	5a418e084b49b740a94d307baf45d67ac25db462fdeb80065fb60ffeb197273f	n/a	RemcosRAT
2020-10-17	n/a	exe	523bf7a1e425337861ae402b035f000fcf7a06d270a81ab638ca74445aa60bfa	n/a	RemcosRAT
2020-10-17	n/a	exe	e037b5ebac7b3ac81b3e268268dbd072784c73f178662e4a66e5e57d7e8a67c3	n/a	RemcosRAT
2020-10-16	n/a	exe	3270cfe3f15d8303d43e64e082d89eabb0737af61637393ed6d4922c3cba3909	n/a	RemcosRAT
2020-10-16	n/a	exe	b4b5110b2babce8946d262e6f75215f1c7a6f036eeb3eda5223b9430d5235d46	n/a	RemcosRAT
2020-10-14	n/a	exe	4a024542511c7d0a40e8317486b7177eaf71ee355f1731f17bc632731ea814b0	n/a	RemcosRAT
2020-10-13	n/a	exe	6637c089017af9c448d8235e20db32603d8547f0611187341cf184dc66c170b4	n/a	RemcosRAT
2020-10-13	n/a	exe	257b2b1a5694438c684e9d4fd44141fc3f09a18d15ebef5e46aad1603afa0b0c	n/a	RemcosRAT
2020-10-09	n/a	exe	2aca994114835d2663353454df341285535994068284d9cbbb03e2e87f388b80	n/a	RemcosRAT
2020-09-29	n/a	exe	e0b880ceabc161ebb31168c2dea4e4c37f90d710411a630eddc5b5340fd87ea8	n/a	RemcosRAT
2020-09-21	n/a	exe	c7f0d624874b4f37b5926b13bdb804981bf48800f07eb161ef027d68f50b6afb	41.18%	RemcosRAT