URLhaus Database

You are currently viewing the URLhaus database entry for http://kodip.nfile.net/files/kodip-guest.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:99117
URL: http://kodip.nfile.net/files/kodip-guest.exe
URL Status:Offline
Host: kodip.nfile.net
Date added:2018-12-22 13:49:06 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@zbetcheckin
Abuse complaint sent (?): Yes (2018-12-22 13:50:01 UTC to kornet_ip{at}kt[dot]com)
Takedown time:4 months, 4 days, 15 hours, 36 minutes Bad
Tags:exe

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-03-07n/aexe 89f4f4555f70df2d30029922b9d00cc222577065afc15da02e8b328b0d190411n/a
2019-03-07n/aexe 88323d02488a1f6ba648e6a4f21c331f4c2b39e6c3fed565159d6a77e8b38ef0n/a
2019-01-21n/aexe a5169de57e6f94c440f0860e860ddcdc41e868dea9e3899374f3f604cdc8ae3dn/a
2018-12-22n/aexe 24c516e7d1d06ebf3edd19f8e4e9be2b9a2f477d2ea8bbb99aeb9d2327995579Virustotal results 56.72%