URLhaus Database

You are currently viewing the URLhaus database entry for http://host-file-host9.com/files/3339_1637331232_7898.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1802663
URL: http://host-file-host9.com/files/3339_1637331232_7898.exe
URL Status:Offline
Host: host-file-host9.com
Date added:2021-11-21 00:27:05 UTC
Last online:2021-11-30 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2021-11-30 14:19:03 UTC to noc{at}baxet[dot]ru)
Takedown time:9 days, 15 hours, 9 minutes Bad (down since 2021-11-30 15:37:40 UTC)
Tags:32 exe RedLineStealer link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-11-28n/aexe ebfeeb541cc21e1c47f2bb383a27951faa1af8992356928a62e0113e7e85cf19n/a 
2021-11-28n/aexe 3521413093ca316a56ed4f742812e01f1abd2b7981acd47e57a21de415472cb9n/a 
2021-11-28n/aexe 31815b3acf74de68c626296c7f085f2af61299bca789475ca9e0cb7da1007e4bn/a 
2021-11-27n/aexe f019f9b47cc59d24493f53b20b3aea90a06caab408502147f0853f27f84ed49bn/a 
2021-11-27n/aexe d8f2580d76ae99a8566d55f78deb86bfedbc97e316963ae587c2b4f878b35676n/a 
2021-11-27n/aexe eb82199a9d61724da3a27966432a374437564414f0789d874a22e96130555b40n/a 
2021-11-25n/aexe 0cf5f9184de92a8cc147de85f84540c3ad5f9f82ae37d463cdc4662c5f836bf6n/a 
2021-11-25n/aexe 297dd0fd41a626125191ec70f6697d95820c4d23ee962a1dc1ad0c375ac990b1n/a 
2021-11-25n/aexe bd6efbd7521632d20e14997b946a717c1258773e935d11c0f97b901e88852146n/a 
2021-11-25n/aexe b76589a55477c7446e321c44ca98ebfe17e64822ad9cb3ac5f00285feb1ab307n/a 
2021-11-25n/aexe a95dcc4ac7aed673d86d1dd66c2f13a0594b73c2bb78729f1c0d5de7fdf79286n/a 
2021-11-25n/aexe dbb6f3328443050532eb3a59e024196d5adcefaf7079eb0cc9c5c5b5ff99cdc9n/a 
2021-11-23n/aexe 24a0ae1f1986e4d8d27fb6c73fba2eb474277624190182b1fd0ce8eb67303b84n/a
2021-11-21n/aexe 36c527d85e746768c57a2380e17c5c847cb05975e394c40abf87ee8015565d0fn/a
2021-11-21n/aexe 67340b4c872eaca3d8367e90f4c07934ea12483171066eb9eae20fcb202e4f03Virustotal results 39.71%RedLineStealer