URLhaus Database

You are currently viewing the URLhaus database entry for http://2.56.59.42/WW/file2.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1642879
URL:	http://2.56.59.42/WW/file2.exe
URL Status:	Offline
Host:	2.56.59.42
Date added:	2021-09-24 21:37:03 UTC
Last online:	2021-11-27 04:XX:XX UTC
Threat:	Malware download
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2021-09-24 21:38:01 UTC to abuse{at}serverion[dot]com)
Takedown time:	2 months, 3 days, 7 hours, 6 minutes (down since 2021-11-27 04:44:10 UTC)
Tags:	32 ArkeiStealer CoinMiner.XMRig exe RaccoonStealer RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-11-27	n/a	exe	f15e77a9002b5ff912240ed81aeb0ab548871d5efdd09972bcdadb153198bc68	44.12%	CoinMiner.XMRig
2021-11-24	n/a	exe	be49298a70c5aaddc5abe883d615f25b62909f9b3533485af9752216a03ada00	n/a	RedLineStealer
2021-11-24	n/a	exe	d9a49f7ccbb17c3552c3a2ba2a60cc0fc2a96268671cdbc5d864bb643bde453f	30.88%	RaccoonStealer
2021-11-18	n/a	exe	1f32c94f55bcefb65e8f03108025a8439afa500ae6a5bcba56e762c168e96e67	n/a	RedLineStealer
2021-11-18	n/a	exe	a127a597c69f6084d2076b1f4853404dff77dfb5a1e4f1e8d57516ab035ab0f7	n/a
2021-11-18	n/a	exe	36bd5c9ee48bc187184cf4cc9958a54ed65d04bc4a3cab022de3ede4277c97af	n/a	RedLineStealer
2021-11-05	n/a	exe	6a020c5b103af93257680f7ca1d11c08a5b433958e1ecfd81bd4b67a61774364	29.85%	RedLineStealer
2021-11-03	n/a	exe	06a9759ea9b28bc0247d79aa3d5d0987f98b14f1caf8f25748a95617593b88ad	25.37%	RedLineStealer
2021-11-02	n/a	exe	4c8c47cca539b9d2b0cf3202ff102fa23140271cba9ddebdab27d8b4fc9ab796	16.39%	RedLineStealer
2021-10-29	n/a	exe	d6970d01f1f0eb110e3be4837f67062b27bcf9960fb4deca4487862018c63bd6	n/a	RedLineStealer
2021-10-29	n/a	exe	f5c9906c890964cdb35784f14e6a26f09d9ebd357df901616330b02c35c4e286	n/a	RedLineStealer
2021-10-19	n/a	exe	b7fe47f9edb0d092410ebcde250bf62190bbbefae8b93b671f4f8eaa70ed30af	62.32%	RedLineStealer
2021-10-16	n/a	exe	7824fed890e9a0707d2e3e4cc06f76928a501252ff5c01ce5d17d861f8f7f4a1	23.08%
2021-10-09	n/a	exe	9dc10b45a72d48a04e7246a4223690d82ea0b206edee5d7e6b19bb5b3935d122	n/a	RedLineStealer
2021-10-09	n/a	exe	02699d82bbb4b85d9785a6cd83fd639382ffb848d2a4abcadf503a5b766c5af6	26.09%	RedLineStealer
2021-10-08	n/a	exe	4892eccf81c41da00c2fe4dcd535f2691db8e9d39cf386d734f0d774f40898ee	33.33%	RedLineStealer
2021-10-06	n/a	exe	8d9ed28e4ff869fb32f2f4a97c12d40c43942e72a31e9c14c3ce6ddfa0eb63be	n/a
2021-10-06	n/a	exe	1abadd3fb21dbf1da2254539c73517d2af43ef9bdc3c67de66466fb961cb3fe6	n/a	RedLineStealer
2021-10-05	n/a	exe	155ba4e7e296e9c66eba8f7a75e7f05f51751c97dd710ec6d2c064e7fb882734	43.28%
2021-10-03	n/a	exe	ff144f47f95b7b8f24573fc07b29562fdff19ea4a0d784e5c122995ab42095ad	37.31%	RedLineStealer
2021-10-02	n/a	exe	baabe1f7bf9f0034037f5ed924b0b3e5637fea32e63c83c2321e088259384650	n/a	RedLineStealer
2021-10-01	n/a	exe	455f27d80de4e45fd405ae467ed2a7b9f8a1e050a27833d79b9ce05a6d72cef4	n/a	RedLineStealer
2021-09-30	n/a	exe	34f7e6d67241516c988b59200389016b5a1a15846104d10d0a7a790e60732ee3	n/a	RedLineStealer
2021-09-30	n/a	exe	06aee363e50d05049ccaf2f00bcfc05cc35fb1f96359ed08141d3188ba9df5c4	n/a	RedLineStealer
2021-09-30	n/a	exe	446736e381fa8942f8d32cb4f2ae8fb6a9245fa0e70b7f7298ee7a5cb6fe9f32	n/a	ArkeiStealer
2021-09-29	n/a	exe	167e4b919946be4b03591e3eceb19b37e9882200af7450dca4ba4891af36bea7	n/a	RedLineStealer
2021-09-29	n/a	exe	d61d33074ee4ad694efb6573a5f40923cd31c96d78a9a54934c11e0671766b8c	n/a	RedLineStealer
2021-09-29	n/a	exe	5e4d5246c1a9a051321fefef3bc3b37e4388712a6b090acf0bd61aacd23a1f59	n/a	RedLineStealer
2021-09-28	n/a	exe	4c889775a4fa2bad1bc56a20169cd221eea94eab6d236da1928af5535071ecae	n/a	RedLineStealer
2021-09-28	n/a	exe	035ffcab1903dbf2f58155dfb50c14f2463e01fe9cf46baa4cf678f7e6b255ff	n/a	RedLineStealer
2021-09-28	n/a	exe	92cfe38fa5ebff038c426486d0ef7d85e7cf8bde070d94350dc1d1b376a528c6	55.74%	RedLineStealer
2021-09-27	n/a	exe	b3c5e8250ec320fd546df876a5be7ca4e9a70696dc2373ce5ff670def95d5238	39.13%	ArkeiStealer
2021-09-26	n/a	exe	9ee3f359c016cb3cf41ad7558cb18e92e224658b75e6b082b103ba293298a79f	n/a	RedLineStealer
2021-09-26	n/a	exe	92d143b6d646385bfd05527662ea674b51e01988dcf44018250e0e89ecc3d5cf	n/a	RedLineStealer
2021-09-24	n/a	exe	b895219019dbaa9afade06641510e9263ac2f6258dd79d0a0ad44406abeaf96a	57.58%	RedLineStealer