URLhaus Database

You are currently viewing the URLhaus database entry for http://92.63.197.153/m/1.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:111445
URL: http://92.63.197.153/m/1.exe
URL Status:Offline
Host: 92.63.197.153
Date added:2019-01-27 15:00:03 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Unknown
SURBL:Not listed
Reporter:@de_aviation
Abuse complaint sent (?): Yes (2019-01-27 15:02:02 UTC to hvfopserver{at}protonmail[dot]com)
Takedown time:4 days, 21 hours, 26 minutes Bad
Tags:exe GandCrab link Ransomware Ransomware.GandCrab link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-01n/aexe 8dca812c6e9efbcca1707a38fa40b0ca6976520a040bdc737203af08913bd711n/a
2019-02-01n/aexe 9e90a004a26fe2f58f4c725a7034fa6c4fd95000dc86c573e2036a75e83c0705Virustotal results 28.36%
2019-01-31n/aexe cbe83de87ebd0fea4437fb728085cde1523688973cd044f8cb918034eae5a601n/a
2019-01-29n/aexe 85671f4675ccc98133a5a6de2e4faeb6df119ad9460f3651e231eaba4ce2b872n/aRansomware.GandCrab
2019-01-29n/aexe 7bb4305a647d0126fe5f984549c3b92bcb6af11719b78112f6d795eaaecf2e6dn/a
2019-01-28n/aexe 67054a687c4536a0f2a67c8a811923fb6dec67380876d6e8024b1c2dd640af0cn/a
2019-01-27n/aexe be0c8cdc1937d05242c672e3e61097dd1b48466839ac0a64e883d159a8df7343n/a