URLhaus Database

You are currently viewing the URLhaus database entry for http://jbliwa.ae/a/a.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:8522
URL:http://jbliwa.ae/a/a.exe
URL Status:Offline
Host:jbliwa.ae
Date added:2018-05-07 08:57:59 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@abuse_ch
Abuse complaint sent (?): Yes (2018-06-11 10:41:43 UTC to abuse{at}cloudflare[dot]com)
Tags:exe rat RemcosRAT

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-04n/aexe01cf7ecb28d401f7f451247630d326947433b1e49d1879370ec09c0a8130cbabn/aRemcosRAT
2018-06-09n/aexee48c1c31d27dfea0bbee2124d070b536f441654c5b025294456bc85d3e116651Virustotal results 10 / 67 (14.93)RemcosRAT
2018-06-08n/aexe6cd15420bd1b0a614cfcba3b7f64687a2c90c3317b49b61ced4fa4722cac2525n/a
2018-05-26n/aexef13ad80a2badc7d2faa28ea0d5b76f0fd57c4489bcef1bc45774972f53cf95f3n/a
2018-05-24n/aexe79d1925607b7dc26c22131e718d34032a0f1fa9c2a286a7dbc53251c33891d13Virustotal results 8 / 66 (12.12)RemcosRAT
2018-05-23n/aexe48beb1eaa5a11b4a1be8ab9a9b78176e11ea671f478a292b5cdc5fbd38bc3592n/aRemcosRAT
2018-05-22n/aexeae5f32b6c2661ed189fde9be172ce4f1deb8f092e520b8bb4ce287ae6b300253n/a
2018-05-21n/aexe552e14b96bac3227034e20e88484c5d89cffa4dd79bc5f7f3d508e038c84acdbn/aRemcosRAT
2018-05-21n/aexe8df9914e21a118137a3a00899ffdc76852e61d4a6fb9fd34551c29bc37d42cd9n/aRemcosRAT
2018-05-20n/aexec2d555eca0457d03e71b2ab9dcf450704d79d668cd47b3ee4642f07a3b53e449n/aRemcosRAT
2018-05-19n/aexe2dcda1d22cc280404fa6b43864b4f7d9e8d9da8291d676c70e6a76f3eff7c902Virustotal results 5 / 66 (7.58)RemcosRAT
2018-05-18n/aexe89884d9a2efdffa88f2772cba4908c44c74b751b5f35925a21becff6e535f0a6n/a
2018-05-17n/aexe5ab3e8e3a1f070fa9119679070d3e337b0f0b41ccc8d59e62246cba3cfecf5c3n/a
2018-05-17n/aexeb4af6ebfa052bb4ecfd86f2a5e591c5ee44d1ef67ea25facce640d4e96a54966Virustotal results 7 / 65 (10.77)
2018-05-16n/aexe4b1b40d9abbd7c92d71fa9e13abc19c2a00e7337d99777285a67434359a2f3d5n/aRemcosRAT
2018-05-16n/aexe4260b399f9f27c08c0d568613c41f7dce426bd43c4bc66998983e3597144ac3an/aRemcosRAT
2018-05-15n/aexe6bb35a50ac41c7f69a7728285551e571e6eea4b97367f8c61dbd4f93b969805fVirustotal results 7 / 66 (10.61)
2018-05-14n/aexe9839ba30ffb81c26739a06accd64084bcf8bc544118cc7c9f32940bb778b8728n/a
2018-05-14n/aexe104c3afb517dc83fc498382bba66b650cfe5f95901f91f819fd28329e469f8b2n/aRemcosRAT
2018-05-13n/aexe2f051e389d02d16857b7bf0b579108d8999cc9092bd30a764b4e1d7bba29877dn/aRemcosRAT
2018-05-13n/aexef44b3acbee6108ca14432961a81b55efdc0ca8ee0c09c30d6ebb940bda8a1f51n/aRemcosRAT
2018-05-11n/aexe966abb00feed32586ca219a9b5416fbaa952c1b4229b21886bb5895fb924d038n/aRemcosRAT
2018-05-08n/aexe77d27be98b60f08f30b6ed3369acd3f34df5db542483331ea04228f30038080fn/aRemcosRAT
2018-05-08n/aexe5a38fbabba22599c36280007f1d3f4444359b6f00a101e1d51a39d32f6b75c04Virustotal results 10 / 67 (14.93)
2018-05-07n/aexe958ee85de9e0f7a18044c35d9d427c8e1d7987998add5340a99832149146cb3cVirustotal results 10 / 67 (14.93)RemcosRAT
2018-05-07n/aexe3d34ad62aa7df8cc819816884522361664117d389de3aaf23832028d74f2a868n/aRemcosRAT