URLhaus Database

You are currently viewing the URLhaus database entry for http://padgettconsultants.ca/tau.gif which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:605723
URL: http://padgettconsultants.ca/tau.gif
URL Status:Offline
Host: padgettconsultants.ca
Date added:2020-09-23 14:31:35 UTC
Last online:2020-09-23 23:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: stoerchl
Abuse complaint sent (?): Yes (2020-09-23 14:32:05 UTC to abuse{at}asmallorange[dot]com)
Takedown time:8 hours, 49 minutes Good (down since 2020-09-23 23:21:13 UTC)
Tags:exe TaurusStealer link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-23n/aexe 4938f6743d7631038c1bd6bed20e4c9e531c741a396316d9c7ea59a6d1972d86n/aTaurusStealer
2020-09-23n/aexe fd865a95aba368c5bef303415ae32e89141cc10b2455e5e9cba721a79bb3b78bn/aTaurusStealer
2020-09-23n/aexe 64fff3054dcf99561ee55226eb011ac1b6e1d9c2af3f7938970d06b2925bbce8n/aTaurusStealer
2020-09-23n/aexe dc5f40f99496a7140ea7722698f2de741fb00845c7791d78ec0ba90fc4a04490n/aTaurusStealer
2020-09-23n/aexe ebbf1f05b4ebc687893c9989688b139424d0fe6242ab490c7282b7bd6299c187n/aTaurusStealer
2020-09-23n/aexe 84f6fd5103bfa97b8479af5a6db82100149167690502bb0231e6832fc463af13n/aTaurusStealer
2020-09-23n/aexe 4aaf32a9593e3fff90d2fc26e766549d044d89d8a473534c94c94925b1678dadVirustotal results 32.35%TaurusStealer