URLhaus Database

You are currently viewing the URLhaus database entry for http://themes-xzone.me/ithemes/CNu9994757667t47rweg7rgsrgrsfg54turjyaadaewtqgy56tc55758F.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:69432
URL:http://themes-xzone.me/ithemes/CNu9994757667t47rweg7rgsrgrsfg54turjyaadaewtqgy56tc55758F.exe
URL Status:Offline
Host:themes-xzone.me
Date added:2018-10-18 17:03:07 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:Anonymous
Abuse complaint sent (?): Yes (2018-10-18 17:04:02 UTC to abuse{at}panamaserver[dot]com)
Takedown time:5 days, 17 hours, 29 minutes Bad
Tags:Loki lokibot

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-10-23n/aexe76ddc1e9a171411e24e2dfb3088157d774dcb3fee6a6f1d418d3b09d2c56ef23Virustotal results 6 / 67 (8.96)Loki
2018-10-23n/aexed9d8213a75edfebe7afedc405b740459b2587938d42aff4ccec93cbc1f48bfd4n/aLoki
2018-10-22n/aexefa26acb9f1c87a3e853cfd1b90d66ce90cc63f04720d34e3c1397afb81662607n/aLoki
2018-10-22n/aexeb48be39a548aedbc1e0fb78da8a9a315103ca7ed312b58f8d7dbd816b94ef427Virustotal results 7 / 66 (10.61)Loki
2018-10-22n/aexe9c73f2e0f843f2e9fe1f4912b21dbda1166fb30ae6952202d7e847c808b209f0Virustotal results 7 / 67 (10.45)Loki
2018-10-20n/aexe26e216ad1edd7797758e6ccf6e9ad7cac8933579bb1d7be4222a26efd3f5e967Virustotal results 19 / 65 (29.23)Loki
2018-10-19n/aexebc0701332b8dad5ceb65c3b97987c9b22e304f9720f425c9e4e0f98c39f9e6dan/aLoki
2018-10-19n/aexe02a03c5346ad93de443d1bca7f2cefa281c657e2e1b1cc3c54fa0abc3f529483Virustotal results 6 / 68 (8.82)Loki
2018-10-19n/aexec3e9b5a0cccbe27c59fefd343e8ca867a18de3b78e3d92632e725ee6faaded51n/aLoki
2018-10-19n/aexed7384bf7cf14402834dc94a4ae43661d627d5fc53311cea539a18f00d31c609dVirustotal results 13 / 68 (19.12)Loki
2018-10-18n/aexe551ce22044054d47822ff032b299b40b0b5c87a0ce216a5c5ea33bbe79facd99Virustotal results 8 / 69 (11.59)Loki
2018-10-18n/aexe831341390ade82d53b365e8b0388470b413ed7a5923190febd2409913f147c7aVirustotal results 13 / 66 (19.70)Loki