URLhaus Database

You are currently viewing the URLhaus database entry for http://212.193.30.29/WW/file2.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1829213
URL:	http://212.193.30.29/WW/file2.exe
URL Status:	Offline
Host:	212.193.30.29
Date added:	2021-11-28 17:32:06 UTC
Last online:	2021-12-07 20:XX:XX UTC
Threat:	Malware download
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2021-12-07 16:33:20 UTC to abuse{at}des[dot]capital)
Takedown time:	5 months, 29 days, 1 hours, 12 minutes (down since 2022-05-26 18:45:44 UTC)
Tags:	32 ArkeiStealer CoinMiner exe RaccoonStealer RedLineStealer Smoke Loader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-05-26	n/a	exe	632e133505a888d61233e5b675ee8504de05c9fec2f8c3bf7da31a37e8ab6959	n/a	RedLineStealer
2022-05-26	n/a	exe	9fdfe37c3f8f3109a7c0612f3b41fbb58d96c3ff4fd464f35379ab8d1e6c1a88	40.58%	RedLineStealer
2022-05-21	n/a	exe	80802737ee2d26a338711c625f42dff0504d1442db08c63520d0c8efc25c919c	n/a	RedLineStealer
2022-05-16	n/a	exe	1031f8c60635ccc68753eb86d22e69a086a0100d1fc94876e24d66b1074b0cd6	26.09%	RedLineStealer
2022-05-11	n/a	exe	fe85df1b0bac9b9824eff7aad95775dfdc2ab2489b4c3f3b78ed941d24cee39e	n/a	RedLineStealer
2022-05-10	n/a	exe	9f085ad6e5270dc8c0b95dddc12a35b945123cc5e5a1fc39771118c9a2139531	n/a
2022-04-17	n/a	exe	5054781b994f42d244814933d545cb9af0869e88d79a6278a8629e8172bf20c0	33.33%	ArkeiStealer
2022-04-11	n/a	exe	180dfbda7c9865f540b48cc53bceb1877650a402cc9bb540e55be3dad3ddf2c7	29.41%	RedLineStealer
2022-04-09	n/a	exe	9936503f9cfcf11c83bcb1221c4424c1210af6127f619e85816acbf2dc91ebb8	n/a	CoinMiner
2022-04-04	n/a	exe	e98e191eb1d8db16b5ff15bc7197bfffff210945a88e46b4a91c7e6b75c73eb5	24.29%	RedLineStealer
2022-03-23	n/a	exe	315edc2dec9e1e8ade22e1505ac091ba818ff0fea62f29bad063f1135e446553	44.78%	Smoke Loader
2022-03-16	n/a	exe	19199652e05783b730da3acc2f0dc72ae691936d6af5e667ed52455316a30527	n/a	CoinMiner
2022-03-16	n/a	exe	e4b8b65d748dfb2be2021309f39211105841bfeb9d453e5bd7013aa57cf81a8c	n/a	FirebirdRAT
2022-03-16	n/a	exe	9fec043150b71d67a2c256ee27f179192802319bb79b107858c54d1571275f99	26.87%	RedLineStealer
2022-03-12	n/a	exe	dbecea3dc584e1739a913d37e3e9e2b275e4690aef7b1d914e5fb97757e5f91f	n/a	RedLineStealer
2022-03-11	n/a	exe	ddadba31cacf2b4b034edd00a01ef85a02d8bf09567c2a6798c87d33e4d94486	n/a	RaccoonStealer
2022-03-04	n/a	exe	ea0d2a8a2f33bb285087e71d9188783e118dac2c07ad214f40e19890530bccc5	n/a	RedLineStealer
2022-03-04	n/a	exe	733f3e07ddfb0c08271e304bf2c374cd3240436e9793d4a85e419c4fceda863e	n/a
2022-03-03	n/a	exe	bfba912f86588a410781218b65a8bc2f20f5e86cf96519ce9846ca288b0eb4cd	n/a	RedLineStealer
2022-03-02	n/a	exe	da890cd5152dd0e3a47e66b86594ab465704bedfcb2b1c912f669db0a9daf7f8	n/a	RedLineStealer
2022-02-05	n/a	exe	72d6c13caf04858e548d6203509d3449d70782d7d21e3d6b173ec810ec609553	67.69%	RedLineStealer
2022-01-22	n/a	exe	f217278576329ea3c3fb76fabc35ccb9515aad8c5580bbb6bb040094508b7763	n/a	RedLineStealer
2022-01-20	n/a	exe	7ab0ca2f99c2ca16cf251073f6d2e8dee6ce80c47735bc465bcb8c015f7d1ce4	n/a	RedLineStealer
2022-01-19	n/a	exe	650f2409b85f546ee7345a8281edddd2b084152df6bb45778c958b31ab14d84b	n/a	RedLineStealer
2022-01-17	n/a	exe	6891bb476690273b6964d47b6c83c45825a198a965fbd530c8ab9cd9e9a6ac7e	n/a	RedLineStealer
2022-01-13	n/a	exe	930a0d8a21af9926f0f0863921840281516e48f4a7d2d701f3155bc459ea4047	n/a	RedLineStealer
2022-01-13	n/a	exe	11bb46be82c461e2c177030706f25884ce0c648a27bc94c73d30bec86d5ce95c	42.65%	RedLineStealer
2022-01-12	n/a	exe	798018bb6024b779db0819fa6ea8650e6831435cd27ef58bc6bcc59ccb4457ce	n/a	RedLineStealer
2022-01-10	n/a	exe	5bc595b4428d278f1c02e81afa373411d59533aeae16cf7fa09ea04b24599951	n/a	RedLineStealer
2021-12-26	n/a	exe	f64927b6d4e797fa7f4202d9abd520bd0d4a824a3a464ef57c332c8f57dc8f75	n/a	RedLineStealer
2021-12-19	n/a	exe	8c0937effd15c07a0679a792b042869de44655f59a393da6e2dc1f06da1aa721	n/a	RedLineStealer
2021-12-17	n/a	exe	585d8f76bb5c69976d2dee7592a784c2645aa22526206f1d26900b15ae491373	n/a	RedLineStealer
2021-12-13	n/a	exe	15aaa5aecd7ba5e5ffe29c5a95bfcd5f6a2a36e60a77d595005ca56ae224da6f	n/a	RedLineStealer
2021-12-13	n/a	exe	9310c63a163d28cfb71a9daf23f0c780d5b646b6a54f47271f75841b4008cdaa	n/a	RedLineStealer
2021-12-12	n/a	exe	7b1fc745f2c91507dc42493cbeca74aa4b3600cd37e6dd78e9db66042e123b1a	n/a	ArkeiStealer
2021-12-07	n/a	exe	c578b56b3b49c030d975f5925c03bb80b3e19f1cd934fbea64a27e7e2638bc24	n/a	RedLineStealer
2021-12-04	n/a	exe	093d02c31db59b42587445953ca60db61f27beecd840d204f6c89cf963b07545	25.76%	RedLineStealer
2021-12-02	n/a	exe	6a765e970a8dfc05ab894954bf34064258237e1ecd6049498ae25f78ce17b614	n/a	RedLineStealer
2021-12-01	n/a	exe	efdebc55c7edc0a6ff7b5cf856f2d6f95d4715ad41a3ee8242d98defcfcc7d55	n/a	RedLineStealer
2021-11-30	n/a	exe	63782ba80479efb33857f5803dd7edcca86d44b817d2bfc6e6030131fe243eee	n/a	RedLineStealer
2021-11-29	n/a	exe	99ea2e36b667500b27f7943824f80a4eab21213e845b2f3d50f57c832fdeff6d	n/a	RedLineStealer
2021-11-28	n/a	exe	aad9ce469bb7e26758b08a1945b82328e5f47945b89d77af3b2b0349147e5777	23.88%	RedLineStealer