URLhaus Database

You are currently viewing the URLhaus database entry for http://92.63.197.60/r.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:16890
URL:http://92.63.197.60/r.exe
URL Status:Offline
Host:92.63.197.60
Date added:2018-06-08 15:20:05 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Unknown
SURBL:Not listed
Reporter:@Techhelplistcom
Abuse complaint sent (?): Yes (2018-06-17 06:16:38 UTC to hvfopserver{at}protonmail[dot]com)
Tags:IRCbot Ransomware.GandCrab

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-11-13n/aexe7afb56dd48565c3c9804f683c80ef47e5333f847f2d3211ec11ed13ad36061e1Virustotal results 1 / 66 (1.52)
2018-08-31n/aexec73c9e2ba1a42e4183d445696ba84908919e7d1cd6ba3f61e59e4837dc58a35fVirustotal results 29 / 68 (42.65)
2018-08-29n/aexecdef6a57b2916a39e89c01b9e2798c70a286cc114fe32f27864289fc6db26ba8Virustotal results 30 / 67 (44.78)
2018-07-11n/aexed739c50e4e0abae20442f9d397129b0ce4563338dc163a6b935b77f4a720ef29n/a
2018-07-10n/aexe2c6b23e7ee5c333ab885cc33829ea166eb09b70fae35a685a0e0f08a0622ed01n/a
2018-07-04n/aexea771a51473ab688e632ba4e6717f3fc7d687e75fa8fb9a263dca1cbe391631e0Virustotal results 17 / 63 (26.98)Cutwail
2018-07-02n/aexeaab61f5aeea9642d2886261ef10893e261383c425c31c29728f5486c518c6befVirustotal results 20 / 64 (31.25)IRCbot
2018-06-30n/aexe570d788a4f7c80274c2d1e00a4bfab2b93ac5ba713b052cab83dac6a8cc62ed5n/aRansomware.GandCrab
2018-06-28n/aexec8c3a21f016eee6d35ac8049397bf5e99330188185df53324554c6d3354c768en/aIRCbot
2018-06-27n/aexe438930af834953d232ded6a0e15b35593b6659431122dd045f02eb4ed661cfa4n/aIRCbot
2018-06-23n/aexe37aa13626192b5ec81899eb6ac4b6ad5c80666881beb29199d45ea7525d3fce9Virustotal results 20 / 66 (30.30)
2018-06-22n/aexea34845bc8c0c5e01c6d60201345afb935c65557c99a20a7d4952cc40c3204d4eVirustotal results 15 / 67 (22.39)
2018-06-21n/aexead8afd8cb598cee881ab45cadad294fd370ef9ad2a1a806c9e932f2107f5c31dn/aIRCbot
2018-06-17n/aexe80fe3d31328dec0be3b8fc5142e6caf7538bad4730cd921ba7e3cf2eea2fdbcdVirustotal results 29 / 66 (43.94)IRCbot