URLhaus Database

You are currently viewing the URLhaus database entry for http://45.137.190.197/mine.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1523521
URL:	http://45.137.190.197/mine.exe
URL Status:	Offline
Host:	45.137.190.197
Date added:	2021-08-11 01:42:07 UTC
Last online:	2021-09-09 22:XX:XX UTC
Threat:	Malware download
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2021-08-11 01:43:02 UTC to bitweb{at}abuse[dot]network)
Takedown time:	29 days, 21 hours, 11 minutes (down since 2021-09-09 22:54:42 UTC)
Tags:	exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-08-15	n/a	exe	129e52b2c93cc026192d8cc216c345ec4492e9f67e6e0a80daa3619c6857574e	n/a
2021-08-15	n/a	exe	e6b2308752612171b71084cbf39066b24ee2075d70ada7d5bfd7a255a4902b07	n/a
2021-08-14	n/a	exe	b25cd5f5835000ea2a6b8f16d78cd38b74b8ba1bb2f3f6168b3cfa515d9ecd28	n/a
2021-08-13	n/a	exe	7efdbbff022455e8900cde22e899f8db7f7a0651ea97037f486c6f2bd97e6173	33.33%	RedLineStealer
2021-08-11	n/a	exe	7016085a3149fd98ccf0ab4e770449c51e6e682c42d024e2223fcbfb7b47d5a3	n/a
2021-08-11	n/a	exe	69e7a10168bf96ba60f06987affd48857cd9cda1a518509f435b8b43110feacf	48.57%