URLhaus Database

You are currently viewing the URLhaus database entry for http://2.56.59.42/WW/file4.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1642815
URL: http://2.56.59.42/WW/file4.exe
URL Status:Offline
Host: 2.56.59.42
Date added:2021-09-24 20:36:05 UTC
Last online:2021-11-04 05:XX:XX UTC
Threat:Malware download Malware download
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2021-11-03 18:07:30 UTC to abuse{at}serverion[dot]com)
Takedown time:2 months, 0 days, 23 hours, 4 minutes Bad (down since 2021-11-24 19:41:47 UTC)
Tags:32 ArkeiStealer link exe RaccoonStealer link RedLineStealer link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-11-24n/aexe 7481e594964e16d5ea99477d591900b6f625ddee9b977923c219d65d337ccfcdn/a RedLineStealer
2021-11-24n/aexe 750adca8e434c3d8cd88be58d28d842b862f6be645ab4b86fef5b6268da9d187Virustotal results 17.91%
2021-11-23n/aexe 604f0ab41564bde36e4620ceea380c3dcdd338bfc8a476059eafdfa76caceb03Virustotal results 28.36%RaccoonStealer
2021-11-22n/aexe 4df6199302b4a74580cd51f21ffea983f6c1485f6a6aef81c38511828a5bab97n/a RedLineStealer
2021-11-11n/aexe bdfa98250c1648265a3f67fc84c9cb7c7e91746f68a06b220d934d5708e7b6ccVirustotal results 36.76% RedLineStealer
2021-11-03n/aexe 3eac2c3eba6ed7739596c40223674fd1e65183884c03a09ad169dcf21990ec12Virustotal results 29.41% RedLineStealer
2021-10-20n/aexe 06c267e8e9c9ec51849a5080c347090114715e1d73179272e39d76dac685a434Virustotal results 39.71% 
2021-10-16n/aexe f4b19d0bcdfda7df717d216b5349cf3377ccf382c40ac0c60aa193028e2b2c43n/a RedLineStealer
2021-10-14n/aexe 2e732f748a4c6a17d01af7a5f613d3d3759c076e4421079e970148b4972db304Virustotal results 45.45% RedLineStealer
2021-10-10n/aexe da184b3620bfaede69d888624cc3971efd9a72c58941a358d58f63e8d7eeffefVirustotal results 30.88%RedLineStealer
2021-10-07n/aexe e8a4a2d6c2d189daeacd0eb0cb669ebe110d7bdc3eb6f69be9b217d2af03ee0dVirustotal results 29.41% RedLineStealer
2021-10-04n/aexe 3e879e70a934fdf6cef7f47c7db3ff3bd91fac5b71dc134e923fef99f8a5717dn/a 
2021-10-04n/aexe eb30e29eb0a000320b9ce9a385351c72deb5dac14a9ee87f1aa14da7a8baf3f8Virustotal results 10.29% 
2021-10-03n/aexe fb2baaa9a5887a66e00a3cc34783f5291b53d977b47a176bc1454aeb32c92227n/a RedLineStealer
2021-10-02n/aexe e5c733dededb2588e95dea02eed11ffccb7e5bd60b2adcd72bd60bea44e4c237n/aRedLineStealer
2021-10-01n/aexe 79e5bf312a07b2e520036bb5865957bdd5571e486b4da85cc2600ab8af3a51e6n/aRedLineStealer
2021-10-01n/aexe 1ee311c3f24397de3f6671b67a263206e78f8040f5ac2fc0182d0ee171c53228n/aArkeiStealer
2021-10-01n/aexe 84d840893dc669a95c97d0686f37b13fc365ee314267038923210b9c82c1c65cn/a RaccoonStealer
2021-09-29n/aexe 668434940877f747a5d3adc745548bcfdcc881418f02e705204df2ad54a311cbn/a
2021-09-29n/aexe 625a1907167b51693a66f7e400e2dfd8b8c1e94c6b0e365bd31c4d013babb553n/aRedLineStealer
2021-09-28n/aexe 334071b7eee35fde1773c48e13dd422a46fd68bc3511120883e8c7c822446bffn/aRedLineStealer
2021-09-28n/aexe 0006bf9212115aa90e7d0d9b484cc8deca1c0fc041750be8f10220fe20075267n/a RedLineStealer
2021-09-27n/aexe 72567542193fd5d448691ed6c6e2dfc0a94bb08208ca9aa4588dbf952bc18534n/aRedLineStealer
2021-09-26n/aexe 4417fe6510eaaf8d7abdbbf016667b39ba073638befe7c7e099cb929b6bb36e6n/aRedLineStealer
2021-09-26n/aexe 9eee48b40ab94d4468603dd54fde7581308a79137e50c8ba03c4d483202e1bf3n/a RedLineStealer
2021-09-26n/aexe 0c75406cf90dca286156d25ee9603fa3a774d68ce637b3d5ef0fa6b314ac5755Virustotal results 29.41%RedLineStealer
2021-09-24n/aexe 9664ba24107e9d27fd93fad729bc189a7c2139231543aa2431c179b45cf620afVirustotal results 22.39%RedLineStealer