URLhaus Database

You are currently viewing the URLhaus database entry for http://37.0.10.214/WW/file4.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1549207
URL:	http://37.0.10.214/WW/file4.exe
URL Status:	Offline
Host:	37.0.10.214
Date added:	2021-08-20 13:41:03 UTC
Last online:	2021-09-20 12:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2021-08-20 13:42:04 UTC to abuse{at}serverion[dot]com)
Takedown time:	1 month, 0 days, 23 hours, 11 minutes (down since 2021-09-20 12:53:10 UTC)
Tags:	Amadey ArkeiStealer exe RaccoonStealer RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-09-19	n/a	exe	b5c920766233358a5b55e30494daf3ca034cfe9f099dcad36197ee0e64e5bd2d	50.72%	RedLineStealer
2021-09-19	n/a	exe	2d91e376152618dd6a130215eb8db5c438eafa6738d62266e3edec027a58e88e	n/a	ArkeiStealer
2021-09-17	n/a	exe	de1f29ce302e74d6553e00b60027bb46c1cc904da586ed4eb16a3e2aba95b1ea	50.72%	RedLineStealer
2021-09-15	n/a	exe	71faee766eb58824d678d56c377cb686021431b2f147ff162b57d35c2bfda9ee	37.31%
2021-09-12	n/a	exe	6db13ab2b4979f4a0aee31087f1e843df543fc4437f519c63c2d39df016503bc	n/a	RedLineStealer
2021-09-12	n/a	exe	ea08366303953c343b1133d3821f404dfacbc1b217d44986730f9ba9c6fb33d0	n/a	RaccoonStealer
2021-09-12	n/a	exe	59c8968c387cc10887a2cae1a5353d0cac816a80e64fa6f76f219469450ad17f	26.47%
2021-09-08	n/a	exe	2469b8b0987ba8a94bdc171ae265d6f0929e7dfcfbe615f19f6cbefa8df6ccbc	n/a	RedLineStealer
2021-09-06	n/a	exe	9bcb8512ab2bf078bf9cbf0d0bfe3ceb87f9a76c69140eb32695856d197a4e44	n/a	RedLineStealer
2021-09-05	n/a	exe	8f40f34931cdd93beafaf7726d46bd9beacb3a15e642d68e156e22a778e576ac	36.36%	RedLineStealer
2021-09-04	n/a	exe	e7fc80e8add2faca88d6c93e05ab23057b7859907fcec378cdf50d0d014ec586	n/a	RedLineStealer
2021-09-03	n/a	exe	820602bc0a6764ab3d75f4178d7ff19c086ae920ad27a87f580544d7add570e5	29.41%
2021-08-29	n/a	exe	9fdf1b38392cacb2490a8093fc910e2af3817e92ab459304d721919a63cbfe64	57.58%	RedLineStealer
2021-08-28	n/a	exe	514cf7b9751465c6f04d46cea1c49bf846c3322a4144faffef07e314793dc5e3	n/a	RaccoonStealer
2021-08-28	n/a	exe	ebbef474434eab0794928cccebb8db93ed801dc2dd2b3e45f46c736d78718f9e	n/a	RaccoonStealer
2021-08-28	n/a	exe	5044bd3dfd6bd23b2ed2e52e4efc0ec6ee59d71d7672d37ce9f2b68e2299a9d1	n/a	RaccoonStealer
2021-08-28	n/a	exe	95e0532e3d7cfa8c881161c706dc685557f7463bdda1740eced5975443842998	n/a	RedLineStealer
2021-08-28	n/a	exe	9c515d9da760eae81226a840fb3110be540dacbe4de5eeb9f7e0cbff55b0e349	n/a	RedLineStealer
2021-08-28	n/a	exe	e7529359cf5f9d0cd7302e66fb9b121e1cc8763cae1d1d5ac278a4a0651f9ba7	n/a	RedLineStealer
2021-08-27	n/a	exe	ec7ddfa19c73d8d1bc6131c8332263f510546ab0f669729be19a35cd1381f1b2	22.73%	RedLineStealer
2021-08-25	n/a	exe	42c9e28df69f62bad6f53903760f636f3bd30fc513a7e0e491f9c7732547332e	n/a	RedLineStealer
2021-08-25	n/a	exe	1965377bd37f2c208611004d93bb98d38ec7e2ad246f5f76f0475928ce4ddc22	33.33%	RedLineStealer
2021-08-24	n/a	exe	b434b3190e481f0f0fe310e16b560ddd47aa76bcda84e4fdb81499047cc54e06	25.37%	RedLineStealer
2021-08-24	n/a	exe	f4ec629473fbe96fa82fe1c1e30e6784144163d662e1c977acf5bc1d62b20c0b	n/a	RedLineStealer
2021-08-24	n/a	exe	ab2851b9d96065b01a96c3305a8bbec77522b97a6c751a82a34f47f45f30af6a	47.83%	Amadey
2021-08-23	n/a	exe	9bc6d20da16865822eb0510b8e4d26a36af0b1f7568a214b374c5c0c61d220b5	n/a	RedLineStealer
2021-08-22	n/a	exe	a9963528ae516477d9441d7ed9e9b28ea33c055661a8cafa4b6d541e14317e7e	30.88%	RedLineStealer
2021-08-20	n/a	exe	d7dfc5a68f5ab9d7b2d52b773399ee45357ab352498f1c5080b4d643c878486a	44.12%	RedLineStealer