URLhaus Database

You are currently viewing the URLhaus database entry for http://2.56.59.42/WW/file1.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1644572
URL:	http://2.56.59.42/WW/file1.exe
URL Status:	Offline
Host:	2.56.59.42
Date added:	2021-09-26 15:28:08 UTC
Last online:	2021-11-27 07:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2021-11-27 06:32:04 UTC to abuse{at}serverion[dot]com)
Takedown time:	2 months, 1 days, 16 hours, 21 minutes (down since 2021-11-27 07:50:59 UTC)
Tags:	Amadey CoinMiner exe RaccoonStealer RedLineStealer StormKitty

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-11-26	n/a	exe	e2bc183186790b127ad0435c5d9141a8f6635f2ad0d3f7d1c4c7147305a073ef	n/a	RedLineStealer
2021-11-26	n/a	exe	53e457d7812d9e515691e69960a2dd28c65a5007f95bc2015d8f279d500a9397	27.69%	RedLineStealer
2021-11-23	n/a	exe	8a1728feda85d1dfb53208fbe57c94085016d9865417c7cdcbbf16bdbd454775	n/a	RedLineStealer
2021-11-21	n/a	exe	1d8acaf69c310e3bcd9839f5368163c14ba9e826a5b60263c80df4f00c083239	n/a	RedLineStealer
2021-11-15	n/a	exe	167ca8f525be5de25ed23407d0275c9372ae55cd7d12364980b926a8df20beca	n/a	RaccoonStealer
2021-11-13	n/a	exe	524f2571576eca0a166220d374d0513b28906bf12a99cd63e49d3c5745ad048b	16.18%
2021-11-12	n/a	exe	a70f689bcce0858fe8f96ae8f1a2995c0ddf2ced6dd4fb09f68c1bcf48a8b238	n/a
2021-11-12	n/a	exe	9eb60578d18d189fd9877b5cfaae852789bccba15609ae66cb1528aa69760ce4	22.73%	RedLineStealer
2021-11-11	n/a	exe	ec671d0d10a04ba8b657f29d5bbcf9bffff778c49349296ec9217724708d5ea2	n/a
2021-11-10	n/a	exe	de5349e197834f848854fb7d11cb2cf812a515943777f1efdf00510e1a515a85	n/a	RedLineStealer
2021-11-08	n/a	exe	3d9663a2697d4d7bab892fdaad3e307adb72fa8b55b47dd4db396e9512b8930b	n/a	RedLineStealer
2021-11-06	n/a	exe	b94b131d107cc46b9e0f48fb052660f587f2c52b23619575bea06e9879712807	n/a
2021-11-06	n/a	exe	c0592acd4714d89c4f9e10ef0b2a9b4a7f0a445f24fb5212781fd47ca7d34dd2	n/a	StormKitty
2021-11-06	n/a	exe	9f3816156b13a0e188a9ec8a1c221f933e884ca0e8db89737b879404389ac045	n/a	RedLineStealer
2021-11-06	n/a	exe	21900d2108c018713167aafb33c042196a52764acdd3742654b6d0b276694780	n/a	RedLineStealer
2021-11-01	n/a	exe	007327b2306a64c18afc3e55ab67b40d72475409b23afd7addc296ca30a02ad1	n/a	RedLineStealer
2021-11-01	n/a	exe	e2921b2596fa6a009bcc4171398a9b7a56ca36fe4d4af7d0cbff76fe6d94163a	n/a	RedLineStealer
2021-10-31	n/a	exe	1f9e76dd38415544387b94b6bb1cdf6d5df55e6bc2ce7f08600c37482e4be78d	n/a	RedLineStealer
2021-10-30	n/a	exe	fd55ec8688feafba956d5b448eeefb45e19865995e5a6e5bdf89a60796f4c0cd	n/a	RaccoonStealer
2021-10-26	n/a	exe	ecc19b1e96b761c7b6b62c21b7882ee816388dd22d708df55f41143ac44bd9bb	34.78%	RedLineStealer
2021-10-21	n/a	exe	fe5baacf899eaf4343aaf323af83d76f1d7b6a0c565826338cc46635118e2d9c	n/a	RaccoonStealer
2021-10-21	n/a	exe	e1c6e285620909031d9a6bbc341c609188d38656ecc81d9121bedb4ad59fc9da	54.41%	RedLineStealer
2021-10-21	n/a	exe	4643498111804354a0f93ac75944ea9e26b3809eb00183518f60de80c1f1054a	n/a	RedLineStealer
2021-10-19	n/a	exe	6e9fdb5f60d5607b5b4c7e5530e95b050b46d7c1d52c9ec14ff55014f7cdfb52	n/a	RaccoonStealer
2021-10-19	n/a	exe	4876d4f345981a20b761d4113e519d5a57e21d28c3d92462a3187665cc043d49	n/a	RedLineStealer
2021-10-19	n/a	exe	16b06e18530e2528d03f8dfa6e57cd1799b6123c1421c89e24bf0732d1ccf0f2	n/a	RedLineStealer
2021-10-19	n/a	exe	1cf4f8560912976c82c872d0f443d288751275c410a482c4417cf9826cf557cb	29.23%	RedLineStealer
2021-10-17	n/a	exe	2ea6afd8cd172d7a43de0e037d7250b9036de4b87e1f0c10ba04c286c8c58704	n/a
2021-10-17	n/a	exe	5aa54a8e89d6411e87645f525f1dd6ac94756dccb00c1044ee56ad1106d5f51c	n/a	RedLineStealer
2021-10-17	n/a	exe	28091a58b3a0daec9157b64979cd3df556f546cf3a5298c4536f966f5619ffed	37.31%
2021-10-15	n/a	exe	bb27f317f85ed418da357037135ff46c1e5e830a8d001296b24149e9e9664e75	n/a	RaccoonStealer
2021-10-15	n/a	exe	70c72a26044f1864f7d4db6d9a68e5a03821ef21868756d76b0ba162762cb466	n/a	RedLineStealer
2021-10-15	n/a	exe	2c2d995db36b2f97f96fc48276e363151be9e9324d5d1e64718bafb1e0749483	n/a	RedLineStealer
2021-10-14	n/a	exe	bed295ca607f5004fe28b926af784f7400f15cb4a58064542bba71879467eca0	n/a	RedLineStealer
2021-10-14	n/a	exe	d60e08c3beeb36b93d62c51d2dcf6ac7d395d6db15efa0f9d91b74b73b7a4e45	n/a	RaccoonStealer
2021-10-12	n/a	exe	3e4744ac44833f8b3c8b928226d84b5f02df9ce3502ddbc629d2e0b5116628de	33.33%	RedLineStealer
2021-10-10	n/a	exe	b2e27f70d33fce7c036f221ce6b2249b63eb465b1c0abdfcbeea0f7585884448	n/a	CoinMiner
2021-10-07	n/a	exe	d40c08e8f927017c98c6856c46c1d0c13184261ec34c4cfc3cad1cf91834897a	n/a	RaccoonStealer
2021-10-07	n/a	exe	4138c3b3168b4cf2846b18945a5b575c0f17afe63826f1ca05515ba88c8ca358	22.06%	Amadey
2021-10-05	n/a	exe	ed8513c6110eb76682b8d8f69d3f181e1ee9092478390088d958b572709a44dd	20.90%	RedLineStealer
2021-10-04	n/a	exe	5e11ca103543381353beac9daac75beb13a4186fa3470bf90550ee6467270a66	n/a	RaccoonStealer
2021-10-04	n/a	exe	1673e931c26ee9aee327700b011d366e308ae0413b62bd289eb52698a30eb685	29.85%
2021-10-03	n/a	exe	85725e4b5697239c9fe3c2b741d3f94f86e3f06855c18830d44f505333850df9	39.13%	CoinMiner
2021-10-02	n/a	exe	4a413f1ffc68426b52cca4011600c29d2ef3def3deaa90fc3646357bb9d8889a	n/a	RedLineStealer
2021-10-02	n/a	exe	6c00e0c637807f08989b686166ab69c7c250f2cab452b5a6d88f69cfb79d87b0	n/a	CoinMiner
2021-10-01	n/a	exe	5ed26d54f47c5376714fa9a081974bee529de27bfcb5ffbf15700e8dbe79d4ca	n/a	RedLineStealer
2021-10-01	n/a	exe	3549d53df2300ecf7ed1ad143c3d91f906752707cbd338306ad3047c83a8449e	n/a	RedLineStealer
2021-10-01	n/a	exe	3f9cbad72016af28582a9436d237832d41f1a6e7e963a525ca13d89fec2e28ba	n/a	RedLineStealer
2021-09-30	n/a	exe	a73ef499a6f9d0cd0f825f6b311398536d05067df7d58fd31ff60bea45dc7364	n/a	RedLineStealer
2021-09-29	n/a	exe	cb14f90c837063f7a2dee749306b1259579757ba73d7eb256defe08c254e3f8a	n/a	RedLineStealer
2021-09-29	n/a	exe	7851d7fd4c5478cb05083284efea41927171df454338898e3a46ab1ddc68eed5	n/a	RedLineStealer
2021-09-28	n/a	exe	224e32dcd36e8af7efcea6c931be7dfb41875897fb056d60b159f60eec4bac23	n/a	RedLineStealer
2021-09-28	n/a	exe	3e2ad0bff42e271ee0191a616154a630e496336cd1e59a66e2ae6c29eb5b5cd8	n/a	RedLineStealer
2021-09-27	n/a	exe	7cb004350951d0ed118bc9000b032c7f1021c0df932fdc1225c92b151e7748a4	50.72%	RedLineStealer
2021-09-26	n/a	exe	f7ed4e6663e464417a8c11a641c2935ca324ad6c4aaa418a323991cd9bff70e1	37.68%	RedLineStealer