URLhaus Database

You are currently viewing the URLhaus database entry for http://103.92.25.95/CIG.dat which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:128195
URL: http://103.92.25.95/CIG.dat
URL Status:Offline
Host: 103.92.25.95
Date added:2019-02-16 17:24:05 UTC
Last online:2023-05-14 10:XX:XX UTC
Threat:Malware download Malware download
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2019-02-16 17:26:02 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:4 years, 3 months, 17 days, 16 hours, 39 minutes Bad (down since 2023-05-14 10:05:16 UTC)
Tags:emotet link exe heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-01-13n/aexe f696bf00a0eb5838ebeba85e05cb06a5bc7e45d887584ad69de9c66de9018ad5n/a 
2022-06-13n/aexe 54d17dbf49301017fd7c2023e71dcdba5f2b09f36019c87863daddcec403b315n/a 
2021-08-03n/aexe a5569f61a85c973b1ae5a6f8289755191d6250ca6108b3bce0ce759342275d4aVirustotal results 32.88% 
2021-06-08n/aexe db460183b688d467d38322eeff35d5a6e4384dd5552c0f5b8c8029c49ba9762dn/a 
2021-05-25n/aexe 716216084a19a0d174226c58fd48a01047207952f1d04f4328d1a74e9abac693Virustotal results 16.67% Heodo
2021-04-25n/aexe d1f0ecb0fc9b708253915dbc4bc368782ad82eb034a1f69ea15040221abbcd0dn/a 
2021-03-17n/aexe 918b2d9e349c39538693a5834da18335c0b24c4366400baa77c3782c8fa6a3dbVirustotal results 37.50% 
2021-01-11n/aexe 4962c594219c87fcef9951967f5502fdaa5d1d93c3e101d7d2ba9acde6a65f6en/a 
2020-05-03n/aexe acdeb369cdc33dfaa2a63cd228fef32cefdae7d1efb4dfc989671f50d2bb314bVirustotal results 16.90% 
2020-04-04n/aexe 5227cd35a46a9effc896466ced309d515c187f147fd5037b0671f9786d0d7723Virustotal results 27.40% 
2020-02-10n/aexe 52e489687427fe866ed5df2b71d9c2d52729d6220dcad4f8f0ad7bd8d0326f28Virustotal results 14.29% 
2019-12-20n/aexe 1b486b7f84b7c575def4f9f67ad8aa3403618b1c29606ef2095df9c5960be65bn/a 
2019-12-03n/aexe 311dca44685527515bfc01d6c9a1e6b46b57c41fee56f1ddd5cea11328ff1e82Virustotal results 16.92% 
2019-10-14n/aexe 9ae901dcd0010e7247ec971e38d886d23dd8ec404a217f92613533f123e9ff1an/a 
2019-08-25n/aexe 13870ef190925063bf7c11309b51f17b47f7f1d4e1c2e0cb3a9bd7ff977ad7ean/a 
2019-08-19n/aexe 8eaf1f96baf19da449f3a2dbee50830baad97ebf36d654ae5d81090a5e1d9229Virustotal results 14.49% 
2019-08-14n/aexe 08e9bf83fd8489ebd9a42e19ce7244592a2a1016e80c0b5d3cc7f2306ee3350eVirustotal results 17.14% 
2019-08-02n/aexe 821b64e59018abac44cd83d7d0a574d53bdac3ea0bc8ec003b0a293ff1fec2b8n/a 
2019-06-20n/aexe 3267b9ea45e58e249fdc6d5275b760a14d830862debc70028f480d446561cf61n/a 
2019-04-25n/aexe 06ac6c6a6d1dc179e2b1d93579efa08ea3a3261b7ab81b89d6bae2563d4138d5n/a 
2019-04-21n/aexe 4ee578d9195dcd3fd404c3171246da110e805e9c26da1b91c2af6ba69850033fn/a 
2019-04-19n/aexe d62c9397b3f39684947ffc9309a1fb6bcdbc689dcce57df64868ec295ea2b848n/a 
2019-04-02n/aexe eb753891568c7683e76e3f3fc302d12ea846f35a533e82881eb940ac88067955n/a 
2019-02-24n/aexe 29e0374a105fea9130acb3690ca69fc53e1c16cabae72013f84ba9781be9f27en/a
2019-02-24n/aexe f04fc2438ebb599145169cf9efecf9e70820681a9cb6dd592a109dbc5f0591a4n/a 
2019-02-23n/aexe d9d19e25e6b4dca70569cc76ab369ebbb036d5e631b9c366ae27e356c43594f4n/a 
2019-02-16n/aexe b870157d5c7f707932cdd55ec273e5d14dd6e309cb3c1cf1971f2928fc960492Virustotal results 40.58%