URLhaus Database

You are currently viewing the URLhaus database entry for http://host-file-host9.com/files/2972_1637414223_8348.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1805912
URL:	http://host-file-host9.com/files/2972_1637414223_8348.exe
URL Status:	Offline
Host:	host-file-host9.com
Date added:	2021-11-22 16:42:07 UTC
Last online:	2021-11-30 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2021-11-30 14:19:03 UTC to noc{at}baxet[dot]ru)
Takedown time:	7 days, 22 hours, 43 minutes (down since 2021-11-30 15:26:15 UTC)
Tags:	32 exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-11-28	n/a	exe	f8f9f1b94184c22f482c2dd59b8b427d44f07b33cace64de6cdea0679b20ae05	n/a
2021-11-28	n/a	exe	4f5d6315b7407a267c82087b632deac13aec99c1961187d4f8b450033652c71b	n/a
2021-11-28	n/a	exe	9e19c2daa50fff83eeefbd1d0b6990b8d8b9a7d94535e3864e91870cb6765a7f	n/a
2021-11-27	n/a	exe	1383fb46b55839c686704bbb9e398bd7c84e4e3dd3cabfb5bd42ff1a9cf6f584	n/a
2021-11-27	n/a	exe	6fd753eb5e3c7e5e155c1eb46b573b6a74649980da79a02b4a0500dd7234649c	n/a
2021-11-27	n/a	exe	970f3cc633d1d2216e99fbc27bf6b750f397e1f3f54898868989916ec04357c6	n/a
2021-11-27	n/a	exe	95d7f76b04f6d047d74e91eb96b67ecd90f325d241268327700da47ce9386541	n/a
2021-11-27	n/a	exe	830903839b76c4c4f4d7bde74e5993b38ae3ea874e271fb0521a5f454d71d26f	n/a
2021-11-27	n/a	exe	cacce89bd22205be91796eeef56a72b7f87f651d61a4c30b182d73da96dc981e	n/a
2021-11-27	n/a	exe	5482cd76d743b5050e56d5eb4427d5ef4ffb5d8b16d4ff41ce8f63880fce2d8a	n/a
2021-11-27	n/a	exe	909c5039878bfcea6152b81b77de85a505a36e6b7fde24f025e1d2023ff71d65	n/a
2021-11-27	n/a	exe	3c43b88848d8442f36fb32da88ff1da5cdb8df2af975a4a69ca6872e8f45b268	n/a
2021-11-27	n/a	exe	69549f4ca4be6e25cc6e934b6286564ad262871dad0fd7e25a906a03711b4f4c	n/a
2021-11-27	n/a	exe	b1b9fb1539916a39dae97c479e07b4235900f7761c59947a6bc1f2ae1fed2d8d	n/a
2021-11-27	n/a	exe	887b96947ad557a6620e7207d718864a5a412372c3e4e04f0982557950953a3b	n/a
2021-11-27	n/a	exe	5fa1231352d031aa5adc4afd8d6d51aef51a02d5c3ffd15a25c85d2d690144c0	n/a
2021-11-27	n/a	exe	a15396d2d41011d230ef0ee572fcd99ba72bdaa19a27962b2436775df05ab780	n/a
2021-11-27	n/a	exe	1e1038729b8375e8456d47cdaebb9f5211d19f798359a819bc8316a3576db952	n/a
2021-11-27	n/a	exe	58d7aa121c194585376fcf6aa1d03cabdfe0362c8e58f973329f6b421a38b5c7	n/a
2021-11-25	n/a	exe	1b61a2c20f79e84de6ff2e9680ea4f4ad3153ce8c8a06eb83aaa06e941f7ba3c	n/a
2021-11-25	n/a	exe	f826f8f13ab81579b1a0a0e4053897300f907f21231b5324413d7a67fb4a5ae8	n/a
2021-11-25	n/a	exe	61228257822574968f03d94adf4ac299b094366e928daec1c7a55a49e2624d34	n/a
2021-11-25	n/a	exe	40581d093188acdbe7faf922a617532ea82162fec363707767a826125dc51219	n/a
2021-11-25	n/a	exe	3f8ed9c6a3df714a312950dbe919ea37ee656b29084f2974b29db5052a4ee59f	n/a
2021-11-22	n/a	exe	7ee9fb0abc60de5047fb5e85cafc5a05383978bb1653a8ae824437488238d611	38.81%	RedLineStealer