URLhaus Database

You are currently viewing the URLhaus database entry for http://92.63.197.153/2.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:109798
URL:http://92.63.197.153/2.exe
URL Status:Offline
Host:92.63.197.153
Date added:2019-01-24 20:04:03 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Unknown
SURBL:Not listed
Reporter:@zbetcheckin
Abuse complaint sent (?): Yes (2019-01-24 20:06:03 UTC to hvfopserver{at}protonmail[dot]com)
Takedown time:6 months, 7 days, 1 hours, 20 minutes Bad
Tags:CoinMiner exe GandCrab Ransomware.GandCrab

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-07-19n/aexecfa7edc52cb8289ea0822520adf2c116c879c522af81a8aea35e9421a9019535Virustotal results 27 / 69 (39.13)
2019-07-08n/aexe9e38c7f093d4f02631406ca00ed549386e794bf7bc0c53e6147b1cbaf10c8a69Virustotal results 27 / 67 (40.30)
2019-04-16n/aexe8df1d305afbcfa393e6ca04d94f60ea0953771f5cadd42cd0cd269c533ab8982n/a
2019-04-16n/aexe9cccd2a8362b92eb3f0668b2727c827ffe3a6d15222dc4e572f86817bb511c47n/a
2019-04-16n/aexe0fe188daff84472079f7f3fd0c956e92d699622d8920c12f4ab244df4cc2a610n/a
2019-04-16n/aexe2a610fb1055ec1ff1b7f7f2c85a70292be1af05923cfcbe5f93d986585ec2d8fn/a
2019-04-15n/aexe0b7b3449e8244120cfca18846b0f4496f44ab94da2dccb50246c2aabe25a20e8n/aCoinMiner
2019-04-14n/aexe4606b4b1bfc1cd499bc672ff999846df79d8f3b642d3b19c806aa22af1190062n/a
2019-04-14n/aexe1a26ce3b96b1ccd7af4c8d6f4de0e4b4320535b20895a295e1a96aa009843a71Virustotal results 53 / 71 (74.65)
2019-04-13n/aexe4d0a7e0245a3007fdbc93f98c09fdb542203aa9e5d159cc7f7dae3ccca335587n/a
2019-04-12n/aexee7c98d775559a9c2eb0b33c6d4f3e80d4531d0ccade782393441b0e2170df1a1Virustotal results 24 / 67 (35.82)
2019-02-28n/aexec225e260cda5f832cca97b6592c923cb65444213986fdac34451b1953c8bb872Virustotal results 18 / 69 (26.09)CoinMiner
2019-02-25n/aexeafda9fe8dc57131185d0a5b1ca16226313a1fc40a480d0e4df36532212a9e10an/a
2019-02-25n/aexe4b299b595d226e61708bb289b3c8b2dba7423671ed72051ed31b976ee20d0506n/a
2019-02-25n/aexece3090c29391f82795fcddcd50e47e3f94811de31585af5186f6902580306b50n/a
2019-02-24n/aexeb6b8781c372b8f9fe2383e1384f0241cdc9c0ca68b4e2265ce31450b7c5c8907n/a
2019-02-24n/aexec625ed616658864c1621e6222b55f92d858b20059309f0d62d568963a82172f0n/a
2019-02-24n/aexedc906bd492b72538192dd15db6e057f1fc1df9f1e25a83f8425a8dc8d178c72fn/a
2019-02-24n/aexe4ec5ac282163226d3a52949bdbeca7fac3e523108761c2fc81cd943ce59c994eVirustotal results 17 / 65 (26.15)
2019-02-20n/aexe065586040168b8b5e14410780992483bab63a30f14451ffcf8c5aabbe98ad31an/aCoinMiner
2019-02-20n/aexece2bcab5b5c92b46ade212ffbcddb43ccf63a753f2a15d72083af3b7752048a6n/aRansomware.GandCrab
2019-02-18n/aexe6f4ea46cd37fdd4009d4892a68aed3184788017b9ae54eb9172db8cb21927b0bVirustotal results 11 / 67 (16.42)
2019-02-18n/aexe4e74af9bc1feaae937f7b203c97e9640f3ebdfc2990d4381243a7e78fbd4ff19n/a
2019-02-18n/aexe27e273b75ad8b6695fa05edce67e15b81727344c5bd9c4cdf8c4e09e9518c243Virustotal results 16 / 65 (24.62)Tinba
2019-02-16n/aexe57f73ba2bff9e51bdc1761cebc978301088e482e230e7087d2de527c837b42ddn/a
2019-02-16n/aexe0cdef4cb2efe92b0fe24053406bdeb6ad000620f5f128401cd17d4c4181f3cf8n/a
2019-02-14n/aexe67d4540079f622e18c8ea5a5751391f3699d517792d4549ab2f5b411447be983Virustotal results 26 / 67 (38.81)
2019-02-13n/aexe079c8977d85e4179d48ad93598abbe3395077d7d6d1142609c7097d5203f553an/a
2019-02-10n/aexe14d65314a08424f24cb09ce03e9c46ff3cdca27bf5a50f0f4c83659f21290dddn/aCoinMiner.XMRig
2019-02-06n/aexe75132f8bdc511bc775f64a3f9b74a639f82fee09cb81a0b195684c0a922ca5b3Virustotal results 39 / 69 (56.52)CoinMiner
2019-02-05n/aexeb995c88d6652167a30778355d3534bc38c11ccf569912659e5fa0532caa48f50n/aRansomware.GandCrab
2019-02-03n/aexe8c0531a0a1f9159cc32d180f2222a4920fd63093153e01498ad13600d57593efn/a
2019-02-01n/aexef972b82a769cd6d020590aa91b88fe98a923075280de1239939fe84aae6c2cb8Virustotal results 18 / 71 (25.35)
2019-01-31n/aexe11126b5a3f8fafc33259510b285fca61e8d59c1bd626f47ddddf16caa455b700n/a
2019-01-31n/aexe68cc7bb4c9dcc2ed525d2921fb9125810719dbe84f997d5d128e2226cfea1b67Virustotal results 26 / 71 (36.62)
2019-01-29n/aexeff68003d5f06f7fc57987ad472f5247f9d8ab1c505169aec26f515ffd6d8d5fcn/a
2019-01-28n/aexec1d23afcb13062b40ce6c0ea7a51e4a3a17f4a18c890891bca930a6aea8036aan/a
2019-01-27n/aexeab7468f2a41308a8348d1e02920d6c2f657e04cdd7f79ffbf1281609989d0d94n/a
2019-01-27n/aexe7973dca01657d5329055d4da4827b89bc4e724be08de0c4e18886497bf46cce3n/a
2019-01-24n/aexe3fd455b0f5535d825047ad2a8c964e2f9a6d69a02524f8d62e0fc1d8538e769fVirustotal results 16 / 69 (23.19)Ransomware.GandCrab