URLhaus Database

You are currently viewing the URLhaus database entry for http://ceoseguros.com/js/pf.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:73184
URL:http://ceoseguros.com/js/pf.exe
URL Status:Offline
Host:ceoseguros.com
Date added:2018-11-01 19:30:09 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Abused domain (malware)
SURBL:Blacklisted
Reporter:@de_aviation
Abuse complaint sent (?): Yes (2018-11-01 19:32:01 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:1 month, 16 days, 18 hours, 29 minutes Bad
Tags:exe ImminentRAT

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-12-18n/aexe12cb4650cf0e2e6dcf0d42c0989b934ec86f9c90dfe36d07a4d67ef45c193f8dn/aImminentRAT
2018-12-17n/aexed4f0d3560067f93514a4b390ada7a7bb75ae011ba85e743e95e405e33a77110an/aImminentRAT
2018-12-15n/aexe2a33553db1a65c2008bc0dc2db1ca795afbd2d68e3024955b183298cd6fcaa26n/a
2018-12-14n/aexe97f41ec07171cb3194e420a8e00a2588fac6dc8e6c1e80520da061bee3a3bdb9n/aImminentRAT
2018-12-13n/aexe7833cdf4b296feba8e228486be4aa0a6708052e41f96119daf7bcc079c40883bn/a
2018-12-12n/aexe12e7eeca64026da247fe132316e03da625b4e7033bdb8add60cd6d0b9bb71f67n/aImminentRAT
2018-12-12n/aexe3e8f9c1b8081c9a228c8671d73f287ea4552da915c2be756400df97cce764116n/aImminentRAT
2018-12-11n/aexec76339633805edf289d785459b41f2555a20c33ff775733f7dc07f03e66ff005n/aImminentRAT
2018-12-10n/aexe090de0a0acd0682b288b59c93c6df6779d8b08252bfc6ccb0bfa65508ad8134en/a
2018-12-07n/aexe852e64a41a7f922838ee82915304af2a0b417a3762120ab2fff3bde81c7c4961n/aImminentRAT
2018-12-07n/aexe2a96583fc6815ce95a8ba043a693fc266993f38efd0672acdaab8a148a4f0a38n/a
2018-12-07n/aexe78eb737c11dfcd837b07dd4b9c3f3e845d27a6bd4dfffdf36dfa10d41f28e02cn/a
2018-12-06n/aexe605405ef17fc70fd82f4707177d7b017cf2c827d098833d8ffa16335741856fan/aImminentRAT
2018-12-05n/aexe9cc082b49f0e70c6d48cc8f0050b2d6cae4fc1582ae9489c5b50c11ef89fe8a5n/aImminentRAT
2018-12-05n/aexe5db92067f7165e6a28f3a7855810a1b346be65180c68087e3720c7b9c801c92bn/a
2018-12-04n/aexe68bc55c19199d97c868bac0fda86bd06c35507f8ada478ae941ea02998e63fc9n/a
2018-12-04n/aexe2e8b86a28bd0e8049aa3b6979607c0962440d738433b62d0802868ec8cae1fcdn/a
2018-12-04n/aexe8ac686525e4c954ba946f54383e2a19bee1ce2031b8e23afcd94d72e5ea0fb97n/aImminentRAT
2018-12-03n/aexe5313e4bca83ae6ff1f2c1153f437d678e5194ab539d94971fdc83d4da26b283fVirustotal results 13 / 70 (18.57)ImminentRAT
2018-11-29n/aexe6eda9245e3bbdb0ee958fa6c5f90f1c00b5dda4d5aa2759ebbfcd32be5b1595fn/aImminentRAT
2018-11-29n/aexecd53fa137a69474de7e06a216c7d3056bda9129621104987b6918abb3bbc690aVirustotal results 21 / 70 (30.00)ImminentRAT
2018-11-17n/aexe70f2de1149935499b204d4454ef0a9898664e5bfca17f4e9b659d776c9e69683Virustotal results 34 / 67 (50.75)ImminentRAT
2018-11-08n/aexe7ab249d45ee79e9d40d9d2ec8036c223ce645631e06fe8935bdda65d5a61557dn/aImminentRAT
2018-11-06n/aexe1dd58a8555324dc646aaad4e3f4db6b9a10ac3152d74b2f746782a42b43344b8n/aImminentRAT
2018-11-01n/aexeba8a67fb43f97f60c19941bfcde9e0462a587740eb6f60f722df3f58db29db93Virustotal results 10 / 67 (14.93)ImminentRAT