URLhaus Database

You are currently viewing the URLhaus database entry for http://apkupdatessl.co/Off1cc34dvnc3.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:94190
URL:http://apkupdatessl.co/Off1cc34dvnc3.exe
URL Status:Offline
Host:apkupdatessl.co
Date added:2018-12-13 10:21:06 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@vxvault
Abuse complaint sent (?): Yes (2018-12-13 10:22:02 UTC to admin{at}novinhost[dot]org)
Takedown time:1 month, 15 days, 4 hours, 14 minutes Bad
Tags:exe RemcosRAT Xtrat

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-12-28n/aexec78739f397f2a982726394db0557ba011c6a8724fdf0c11f22b25fe9788933dcn/aXtrat
2018-12-27n/aexeb39ed3b854162056d6b174fe7943d716549fa2470b43cfffe8926a724f5b3589n/aXtrat
2018-12-27n/aexeb27b28192f6e24300745c0d8a3f2d1c204689e4a7f539bb0043a6c92f63aaa47n/aXtrat
2018-12-27n/aexe574aea738f8096386dfe6fccd3042bdcb99f0588b023af2408cef674ae258db1n/aXtrat
2018-12-27n/aexe7c7fb9d8c4a40163da1f62b43bad910fa0d3d140bc64253fb3f5157a0bb15c6dn/a
2018-12-26n/aexe77f15404462c9b791a46553ab263fb90d4716a3f308478df4249d2ffe5989685Virustotal results 27 / 70 (38.57)RemcosRAT
2018-12-26n/aexe92208a32db53973b7a6d4fa53b785aaf319c29aae4a35fdc3accb4b47d0ff745Virustotal results 23 / 70 (32.86)Xtrat
2018-12-23n/aexe438cb8eaa3f8b692c093d5f0a16b7cf6ea49cf454f7798e26636338288ba4733Virustotal results 24 / 71 (33.80)Xtrat
2018-12-22n/aexe69428e16c3f25e7c2f2b419c183e5f486cd1db7650efe5c126e1505cf53a3a04n/aXtrat
2018-12-21n/aexecd7704e1a771056839e865d5342037cbb7ae13b35d024595ead1343b9fd4f270Virustotal results 19 / 70 (27.14)Xtrat
2018-12-20n/aexe3f4f4e5e3a90b49dfd60c9ea5eb8d19ffdc30ddfcdb7ec1f90fc3ea401f6ee4cn/aXtrat
2018-12-19n/aexeda5e64616e357a1588d9fac1881eef42c2061402ae0f66563f201cac1ed4b585Virustotal results 25 / 70 (35.71)Xtrat
2018-12-18n/aexe13f67352b492cb130e0444bcdc3f9361d28a79e7c2609e90dc0af6d782a937b4n/aXtrat
2018-12-17n/aexe57db1f6cde8d278418d713633f8816fbbddb906ef372c6891ae916ee09ed17d8n/aXtrat
2018-12-14n/aexe7afb56dd48565c3c9804f683c80ef47e5333f847f2d3211ec11ed13ad36061e1Virustotal results 1 / 68 (1.47)
2018-12-14n/aexe65729a8ed5811ffb123587a52b177a809c9a22cd356bf0f3d176dfdbe667e200Virustotal results 18 / 71 (25.35)Xtrat
2018-12-14n/aexef2ac9599b1b075f247b61ea800ff079665efcf1b8e15f74715bcc64a34c7e70bn/aXtrat
2018-12-13n/aexedfe8b16324dc4e9a061ab3aed7ee5d7c38efeae2ca02317af255d52beede5833Virustotal results 18 / 70 (25.71)
2018-12-13n/aexee0c1752ee52a09727c1cdaadbdd9b2b0f897e368a1faa34d6242ed6e038b2c47n/aXtrat