URLhaus Database

You are currently viewing the URLhaus database entry for http://downloads.jxtsteel.cn/FileAssortSearchSetup_206_onTUS66FMDAU2MVB0_umdae.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:646622
URL: http://downloads.jxtsteel.cn/FileAssortSearchSetup_206_onTUS66FMDAU2MVB0_umdae.exe
URL Status:Offline
Host: downloads.jxtsteel.cn
Date added:2020-10-03 19:12:08 UTC
Last online:2021-05-02 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2020-10-03 19:14:04 UTC to anti-spam{at}ns[dot]chinanet[dot]cn[dot]net)
Takedown time:7 months, 0 days, 15 hours, 40 minutes Bad (down since 2021-05-02 10:54:36 UTC)
Tags:exe orcusrat

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-05-02n/aexe 3e4ef7b0224b4601e28838ec6319634315025d824c1404a2a9e114139dbdbe21Virustotal results 70.59%OrcusRAT
2021-03-30n/aexe 07d04dd1494db75b9757e39ea2333f210f080baabb2875bcb7cafba9b7335221n/a 
2021-03-24n/aexe 78c096b4e866e051f36377c680c127dc03dd2f6e4e24ea6be4f2c838439cc2c8n/a 
2021-03-24n/aexe 37618a295f87e34fb2bd5d37fbc55556d603638fc35d3321697d22f17cb814e7n/a 
2021-03-23n/aexe bfc67eb97b7e47003213c4fcb9f55313505784e87f3fd92d7e0c576d7955d3e8n/a 
2021-03-14n/aexe 290bf88dcfb95bb971453fa351709f502bbc97beec7235ee74954b18bda81bd6n/a 
2021-03-13n/aexe 8bbfadfbe2c4bf81400d1b929a31d37d8f582c5558cc7de13d97fdc68e49df95n/a 
2021-03-12n/aexe 909d262f339b1f881370c758561cfdbf6e80598cb9cfc81aa6a6b24904a08228n/a 
2021-03-12n/aexe bfbc6dd3abe7689d633f225fe6a836d8d84f68cb7144188111f44b2995f3cf53n/a 
2021-03-09n/aexe 276f0ad38996782799c6134c2b5bc344735b577554c388b134c80e74e407a3fen/a 
2021-03-09n/aexe 47e2e751cb2a3d9b4a4f76a90e02410df587ffc74e6739ddad16d036b4b7b13an/a 
2021-03-06n/aexe febcdee9d8c1b130a74d508578c6b8f2f48c7e3064f74315f772b9c1fa7a9f51n/a 
2021-03-02n/aexe bed4248856d68a8e759c4c9b782a7b297cc3c3a47289f61ee76b3ebd799b4c3dn/a 
2021-03-02n/aexe b3b2abd26439512dd4d6d4ae4db4766afdaef0e64acf94e78d90ebd6ac44907bn/a 
2021-02-26n/aexe 2150c662af75fc6150e986b0ae2e5b6802e0dda1980114d04af497141e84c29dn/a 
2021-02-25n/aexe 64eb19727862509a6726a3794f288d7866a8bc4b093aef6dde9d096bbc8f4dd6n/a 
2021-02-23n/aexe 28c65f2f48b0137fbb3dd3b37ee63b16e6c006b5a25b0e67e86bd9cc2c682fcfVirustotal results 15.71% 
2021-02-23n/aexe f8ca984eb5d43716f4ba42d49436a06c57d194446df5f4ce555af35135654d88n/a 
2021-02-23n/aexe 06c4faf93dfc1760a02ac97a34c34d3acf135dd5610c404c45188c5a525ac277n/a 
2021-02-23n/aexe 2d5a595a9ebd67d15be6c34afd5a4cce84b573b265f099297539dab4feb55cean/a 
2021-02-21n/aexe 6d50547f4b7a981ff8946a27d546606da2fe479dae99e2e51964d75580a4f5b1Virustotal results 37.14% 
2021-02-21n/aexe ee78c375cf019e13501b021e8bad5f81a93f3e99c8e01400d76184863381773en/a 
2021-02-20n/aexe bfb26db4169172cb80e442064dbafe4cab58ac341685c16e1d820e04b114a40an/a 
2021-02-19n/aexe 01a341328353c8c7b3f84788a246ec585ac4a76f12503e5f10561fd7f30cbb1dn/a 
2021-02-12n/aexe d004d5637318935013b76a8d7c437b66129f42f0171ebea3cf1b029d8d7554cdVirustotal results 32.39% 
2021-02-12n/aexe ea6615e27d060ff7431bc2ef7134ccbd1bb5b3a05c6ba8e660109a503d2dc7d9n/a 
2021-02-11n/aexe 9d413014c2dabc099767455bebb2d83fb71fbe647f69d50a1447edb1b8024a65n/a 
2021-02-11n/aexe b4d0252aaf4963a3fb617d4cfc9c49bd67b85a3a8a31b396778a712eb9963afen/a 
2021-02-10n/aexe dadad9d692e191de100217f5068cc1b0c19817e9e24d73512011a3c7182acad8Virustotal results 39.44% 
2021-02-08n/aexe 510fca3c77e717e8b629e26cb86e192b1aeeface1a86968eb7003f0db0484f2dn/a 
2021-02-02n/aexe b69ed5987179afd99e4c371c67609a378993eb80638f026cebda5f5f79fe1331n/a 
2021-01-31n/aexe 024c3170fa71b70e7601aa7059a0c3fd29f06ca0318fad9c3b6be9724eb6815an/a 
2021-01-30n/aexe c41ed013c272e08fabe0e13253a9bcb5cdd4ae581e69f5929ed645add0b556c8n/a 
2021-01-29n/aexe 1cc616861fcc2ff41bbfa588a77288453d4b6dcf2c0ea96b23d7bd8e78ad6cdcn/a 
2021-01-28n/aexe 7777bfcf3248a58d1e582b4f695218916c6114d08aa5d8e75c5b57c0b0c189f3n/a 
2021-01-26n/aexe 31ee25bfff33b2eeaeba4fd74b6d2a02696232c39771365e51cc7e9496b8d006n/a 
2021-01-25n/aexe a55dbc89ed5248106dbef345080d9d97564d5b4b78fc61b5af4e9ac37ae24fc4n/a 
2021-01-23n/aexe 87eb7ac4a8bb66451db0c6123087a445c2b8a4a2e8dc12782a25ed605f1959a5n/a 
2021-01-23n/aexe 8dd0f5a43f7d60398c45e87b70a0604824380a638d215de3a67541eaf48b4181Virustotal results 13.11% 
2021-01-20n/aexe 4e43c457406435b148c7178a1c7eecf7e98a3b2ac0056f8f4ca05a47cbe9d8a0n/a 
2021-01-13n/aexe d81c5d7e38ef352cf582f65bc87840038b6e2cf234c4243e9df295afd74e2cd3n/a 
2021-01-09n/aexe 81b44e955f4b4ef743517ea0e50736114b9e6cea201d90ae776a50c575c6e8fcn/a 
2021-01-04n/aexe e28ddcf9c5267aa84ae066e769e3a7ba444762e3be062dbb2d728a3c7372bbf4n/a 
2021-01-03n/aexe 886700879c03955f02a09c60b9a7141f8202603ad251240fb50ff7a225a74d2en/a 
2021-01-03n/aexe beb6c5f8b7635b17acbb11eef0213f283b522a05a713e851d83b6bfb25cc78b6n/a 
2020-12-24n/aexe 7f012d873c53e861256df333e0271a45e8e4e3e28a06e0c11288931c95da957fn/a 
2020-12-18n/aexe c4a1a4841b7e4904c53267781a8fae8b88e5daf8ee4a4bfc53f87c5f7ef8bff3n/a 
2020-12-17n/aexe 3d878e363c1581b94fa11f8da947b8cd404ca49c0123e63b81cfd06779171403n/a 
2020-12-13n/aexe 2b2972bd3f1e18c4d6e9ada511002595d948b30d68bf27ec7dd2efbc089a03e5n/a 
2020-12-13n/aexe 8830a139689b07e0e2a2849bb44ca3da0bac4d3668cfa90fd1a018b962dd27b8n/a 
2020-12-11n/aexe a9410af7df21f3c5c6b16f2828435ca97de077d52922baf31e5651d80dbd68cen/a 
2020-12-10n/aexe d2d8c9fa5cd0fdbad340cc833544ddbfc3b502eccf007fdb451d74a06ef3ee47n/a 
2020-11-30n/aexe 1aa85aaf43a25a43abd5d614894d499c2926eb3976cefb14b8584934a3588525n/a 
2020-11-30n/aexe 492b85e0fa770bf3869819f8bf1e805f686db442f70052646ba99dd805ceb15fn/a 
2020-11-26n/aexe f495d4e3b3edb076f5191fc255ecdba029a51b50ae9582f153f6d3188a6c22ddn/a 
2020-11-25n/aexe 6b200203f2920478954b82f94bd99d9a29bec7be4c201da2c36212ae71b95d53n/a 
2020-11-14n/aexe be5a7a2958710b01404c21ede5ee31e3ae54d13be8aed2e2319c855f872b1a7fn/a 
2020-11-12n/aexe 283184462906a8bec16c0f1977b91fc5e214fceabd3cd85e09bca1993f9f774en/a 
2020-11-10n/aexe d37c576b22a99435c9f58e2810a2023aa7d468d568e6666904267a4e5cab2b35n/a 
2020-11-08n/aexe 10c7ef783ddc54fa5b9b4d385dc2da1b0202f9187879dda19c66470bb1446214n/a 
2020-11-06n/aexe 26facdb7e6b3f47fce92d1a79676e6d72bf093287a1388ccf84f55af0de2f579n/a 
2020-10-28n/aexe 9228a63c86eb215fd2e4341c18806bef4ddb975f36107d0e4cd58cdc81951a95n/a 
2020-10-27n/aexe 2720047f1508cfff72c92b200b96a91e55f96be559c1e4d8744d18e6c3eb790en/a 
2020-10-25n/aexe 65ec5e946fbc5dca97b7390ba9ad4cd0b36cdd1d2b7a642a88caa27a31fde4c9n/a 
2020-10-18n/aexe fb09beee95173eb5ef0fa33e8f3b624077c9f1c1befa5dbda7e94d85b89f65f9n/a 
2020-10-18n/aexe 98aab09bfd1f7dfa7c03fd3debe5a6f372a7a37a6020f6a2cf3dd862a0fafb00n/a 
2020-10-17n/aexe 9a89f9849d686e7bf89cc18e9c19a112931cefcbe434585d0ed5341d628c6060n/a 
2020-10-16n/aexe b1163030ae1705770feb64e97d0a3dfc8b63bb38e72538ad9a69b1d04454558fn/a 
2020-10-14n/aexe e31754f980a15f787e76b29a27369e24944ec3439b92f60b3d5619fc75f6e4can/a 
2020-10-09n/aexe 8b0ab253c415a0c1a20025db823520165e1c2ebfc24b640850d44f57d975ee23n/a 
2020-10-07n/aexe 5100e630bc490aaf1b1281f4e37e6f7ff5a2d8b0dca0dbe89e11e4db961ae7fbn/a 
2020-10-04n/aexe de2f810dcc030e94fbe686395ae8c2d0c1fdc77e572e8726170e4865ac801bdcn/a 
2020-10-03n/aexe 3720a06601414f75630888bc2fc2d86a77ba871b4e0fcc36e5990e8a3b758890Virustotal results 42.86%