URLhaus Database

You are currently viewing the URLhaus database entry for http://www.highpay.website/css/explorer.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:8729
URL:http://www.highpay.website/css/explorer.exe
URL Status:Offline
Host:www.highpay.website
Date added:2018-05-08 08:26:56 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@oppimaniac
Abuse complaint sent (?): Yes (2018-06-11 10:45:18 UTC to abuse{at}namecheaphosting[dot]com)
Tags:AgentTesla exe njRAT

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-06-13n/aexecd390a04c5ed23557efefcf5485ed38e6446680fdb175cf3183a6c94d67fb5a4n/aAgentTesla
2018-06-12n/aexe5e155f72a8402de2f7f6b10088b0311069b64858d8de49278fd30326be29f29bn/a
2018-06-12n/aexeb596492810bc82030250565b4b501e2b54b99660c6d378141b2abd953456172an/a
2018-06-11n/aexe6c310e93c6807d4f98859d99ca1fbd0ac18d0b786ba56dca883761099eb61083n/anjrat
2018-06-11n/aexe32d715af418c5bbb454431ed73487e6b9e8d965dc3be6daec0b8a663d113b821n/aAgentTesla
2018-06-09n/aexe7687cdf9fded99f3e8877b36b70cf37dc5777c943fbc9f8092ffd200e9ee2a3bn/a
2018-06-08n/aexe24728b44025a91d5d965ae9cbeb03e58624ba55428bd537fa05827eddf3f51b2n/aAgentTesla
2018-06-08n/aexe30a2158e7494f60d7ecfb7ab50fa6fc8bef159a6726857cbb0b2658ef2aef16fn/a
2018-06-07n/aexe9629166176436e2fb8a39bc5c153291c6b86c7ca7290e27f4bcc0319ff1a8e48n/aAgentTesla
2018-05-31n/aexe5915409967b2065fe06e56a8e384b7c68d4fd45de2f9426da736fd5bbf1a84e8Virustotal results 10 / 64 (15.62)AgentTesla
2018-05-30n/aexe26dd8f41c2380d7be5330d65d775b4090f1319b18478e3bbe46dad9ffbb61363Virustotal results 8 / 66 (12.12)AgentTesla
2018-05-30n/aexee5644e92164d3d725995b9d65da627bb75515317f1bdb33a42bc1e01e527be58n/aAgentTesla
2018-05-30n/aexe8ca5f0073c61d158aacb490dd7c7021020cfa61decf8a99cf41b23c685dfbf6cn/aAgentTesla
2018-05-28n/aexed50907c56708bc15bb8705ab35a0d47883f18d1317acc6c1648d5512bd6e565cVirustotal results 8 / 66 (12.12)AgentTesla
2018-05-28n/aexe1e59e537e910fe50af9d6ff607da3a9d7cee13f69767bcd9998e35a4e58e3813n/aAgentTesla
2018-05-22n/aexe4ad455366097aca956116579d12703032d4beb76c5aa86d4bd1fe0fb6964bda2Virustotal results 25 / 66 (37.88)AgentTesla
2018-05-18n/aexe45865bc6a2087f3a9a82891078dc2233bc13ea93c0a9b397f5ac0f2bf67dca1cn/aAgentTesla
2018-05-17n/aexe3cc178c876be50eaba2604baaaf16011a873fccd60634f4e99b0672addfa836eVirustotal results 23 / 65 (35.38)
2018-05-16n/aexe4476314253450c6fa44580ac66a5d2928f8f76f7a0f0d9c109f1f9bf26ec4243n/a
2018-05-16n/aexe55bd23433da369d7d379ffb8c3bdf71e5a2ac554597d3c735e152b196c488a57Virustotal results 22 / 66 (33.33)
2018-05-16n/aexe64ec4da30676e611734af0dec906b667715fccdce5a1dbe9efcea2c92dc7e385Virustotal results 22 / 66 (33.33)AgentTesla
2018-05-15n/aexe38c7e8725d70dc8d048574fa2b693159502c1847798fcc0d6634d8e4d3076479n/a
2018-05-15n/aexe42b037ee67a5d37081c9ecb2d65cfadd57ef10fbd2c2e5b5d59aae4f2b6dfc62n/aAgentTesla
2018-05-08n/aexef48c52e93854b2c45233a4f86b97c27e2997c920be9f8b9b646e97f264d18b49Virustotal results 43 / 67 (64.18)AgentTesla