URLhaus Database

You are currently viewing the URLhaus database entry for http://107.173.219.80/prf/reg.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1174444
URL: http://107.173.219.80/prf/reg.exe
URL Status:Offline
Host: 107.173.219.80
Date added:2021-04-27 08:35:10 UTC
Last online:2021-05-06 08:XX:XX UTC
Threat:Malware download Malware download
Reporter:Anonymous
Abuse complaint sent (?): Yes (2021-04-27 08:36:04 UTC to abuse{at}colocrossing[dot]com)
Takedown time:8 days, 23 hours, 30 minutes Bad (down since 2021-05-06 08:06:05 UTC)
Tags:Loki link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-05-05n/aexe 1f15f5df64176de149af116d6fe5e21e29d9c3808b3a128eab8119af97655eb3n/aLoki
2021-05-05n/aexe eedad563ca721ad5a3b2bc8fcb680edaba6194e0a0469d7c5ab3d12ca4a346a9n/aLoki
2021-05-05n/aexe 2b2b2ac6347e5365f70526f097eb6935cacae09a2a8d9c1a2ae68d05f80e3a46n/aLoki
2021-05-03n/aexe ed5b35389cdc15f792ffef0bac637b0758a566d59945429d6e7e56965bd26b31n/aLoki
2021-05-03n/aexe 63020b39b5227a6d191e3f59639181c46aa915b28ef97fc45a8b8e1a6a239999n/aLoki
2021-04-30n/aexe 9c16ff774c07f42da7d160a884816f162e60b1417130c787d4a8925492b84830n/aLoki
2021-04-30n/aexe 51d2bd93ffe8e6856d5c99512b2eb5ed1aa8e1ea871f8c59512080a0329fcf7en/aLoki
2021-04-30n/aexe 817c644950551a54eb50dfa3ea09b09b0fdab98a67cacf7be33fff76b05e4e11n/aLoki
2021-04-30n/aexe 669488b330934b1f361b054f1f72a38db493a8696b20bf1fcdcadc5803d59728n/aLoki
2021-04-30n/aexe bb766b700dfffa1e0189a7107e56ee7e397d3b0f27824a8005c26af405370a34n/aLoki
2021-04-29n/aexe 25b6f68e2bf505cfde67c533f5d12e869b30efe831fa82fd91c2c29f59fc77acn/aLoki
2021-04-28n/aexe 1a5e23dc5d964f8bc4d789e6dd94705aeda8add9006a834cbbee29df6b56cc8bn/a Loki
2021-04-28n/aexe f2d2638afb528c7476c9ee8e83ddb20e686b0b05f53f2f966fd9eb962427f8aaVirustotal results 4.41%
2021-04-27n/aexe d12917a6144995d3a0f32aacb54ec7f38783ee87b59cdd9127e4ba78d3f428fbVirustotal results 10.29%Loki