URLhaus Database

You are currently viewing the URLhaus database entry for http://highpay.website/css/explorer.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:8023
URL:http://highpay.website/css/explorer.exe
URL Status:Offline
Host:highpay.website
Date added:2018-05-02 06:53:15 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@lovemalware
Abuse complaint sent (?): Yes (2018-06-11 10:45:18 UTC to abuse{at}namecheaphosting[dot]com)
Tags:AgentTesla exe lokibot

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-06-13n/aexecd390a04c5ed23557efefcf5485ed38e6446680fdb175cf3183a6c94d67fb5a4n/aAgentTesla
2018-06-12n/aexe5e155f72a8402de2f7f6b10088b0311069b64858d8de49278fd30326be29f29bn/a
2018-06-12n/aexeb596492810bc82030250565b4b501e2b54b99660c6d378141b2abd953456172aVirustotal results 25 / 68 (36.76)
2018-06-11n/aexe32d715af418c5bbb454431ed73487e6b9e8d965dc3be6daec0b8a663d113b821n/aAgentTesla
2018-06-08n/aexe24728b44025a91d5d965ae9cbeb03e58624ba55428bd537fa05827eddf3f51b2Virustotal results 21 / 67 (31.34)AgentTesla
2018-06-07n/aexe9629166176436e2fb8a39bc5c153291c6b86c7ca7290e27f4bcc0319ff1a8e48n/aAgentTesla
2018-06-04n/aexe56452a1f6364bee9165171bb5f2018d60caf94c590f055e210b659ae4b0d3b6dn/a
2018-05-31n/aexe5915409967b2065fe06e56a8e384b7c68d4fd45de2f9426da736fd5bbf1a84e8n/aAgentTesla
2018-05-30n/aexe26dd8f41c2380d7be5330d65d775b4090f1319b18478e3bbe46dad9ffbb61363Virustotal results 8 / 66 (12.12)AgentTesla
2018-05-30n/aexe8ca5f0073c61d158aacb490dd7c7021020cfa61decf8a99cf41b23c685dfbf6cn/aAgentTesla
2018-05-28n/aexed50907c56708bc15bb8705ab35a0d47883f18d1317acc6c1648d5512bd6e565cn/aAgentTesla
2018-05-28n/aexe1e59e537e910fe50af9d6ff607da3a9d7cee13f69767bcd9998e35a4e58e3813n/aAgentTesla
2018-05-22n/aexe4ad455366097aca956116579d12703032d4beb76c5aa86d4bd1fe0fb6964bda2Virustotal results 25 / 66 (37.88)AgentTesla
2018-05-18n/aexe45865bc6a2087f3a9a82891078dc2233bc13ea93c0a9b397f5ac0f2bf67dca1cn/aAgentTesla
2018-05-17n/aexe3cc178c876be50eaba2604baaaf16011a873fccd60634f4e99b0672addfa836eVirustotal results 23 / 65 (35.38)
2018-05-17n/aexe7a016314f353901a702a670e927ba508acd0210baefc872046c041b77de2e385n/a
2018-05-16n/aexe4476314253450c6fa44580ac66a5d2928f8f76f7a0f0d9c109f1f9bf26ec4243n/a
2018-05-16n/aexe55bd23433da369d7d379ffb8c3bdf71e5a2ac554597d3c735e152b196c488a57Virustotal results 22 / 66 (33.33)
2018-05-16n/aexe64ec4da30676e611734af0dec906b667715fccdce5a1dbe9efcea2c92dc7e385Virustotal results 22 / 66 (33.33)AgentTesla
2018-05-15n/aexe38c7e8725d70dc8d048574fa2b693159502c1847798fcc0d6634d8e4d3076479n/a
2018-05-15n/aexe42b037ee67a5d37081c9ecb2d65cfadd57ef10fbd2c2e5b5d59aae4f2b6dfc62n/aAgentTesla
2018-05-04n/aexef48c52e93854b2c45233a4f86b97c27e2997c920be9f8b9b646e97f264d18b49n/aAgentTesla
2018-05-03n/aexe436b6ac3d0b35cebf5e53e440c9c35ff1af9dc91619ae50d42e9e967e29d2af8Virustotal results 25 / 67 (37.31)AgentTesla
2018-05-02n/aexe71f424f1e881b4cdd584f9611925629c4a5be3b541ec4f16f05d174695cbf7a7Virustotal results 24 / 66 (36.36)AgentTesla
2018-05-02n/aexe130500cfcba83d038740816e6379948687f65bf8acfbc7f4117bf5a3af12ec86n/aAgentTesla