URLhaus Database

You are currently viewing the URLhaus database entry for http://192.119.110.239/anksuma.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1891554
URL:	http://192.119.110.239/anksuma.exe
URL Status:	Offline
Host:	192.119.110.239
Date added:	2021-12-16 21:27:05 UTC
Last online:	2021-12-18 11:XX:XX UTC
Threat:	Malware download
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2021-12-16 21:30:08 UTC to abuse{at}hostwinds[dot]com)
Takedown time:	1 day, 14 hours, 1 minutes (down since 2021-12-18 11:31:53 UTC)
Tags:	32 DanaBot exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-12-18	n/a	exe	98365896cc37bbd213f8e0f4b1d0d98581e7243c84d802eb4966abf276e2945a	n/a	DanaBot
2021-12-18	n/a	exe	dde6c1be8bd3c1f2b502db0c2e79bb7a040175fa5df8d495cbb7f0b7a34ae8a6	n/a	DanaBot
2021-12-18	n/a	exe	868020ef059f8f3d7326b4834a9b44f468a9eac82b812c736c1d7a7f6780b06d	n/a	DanaBot
2021-12-18	n/a	exe	ebeb1298dc030f39bd90b677da90e1130b511447ace5831fdca4d847f7611376	n/a	DanaBot
2021-12-18	n/a	exe	dfb82b1834a91b7555ea647a9d8ef511099afbfff0794a1a664ecc19aec5b002	n/a	DanaBot
2021-12-18	n/a	exe	31ce043c7f92bc265aef250c258d3b872b068f4a81b558e72b0b50bfe3780552	n/a	DanaBot
2021-12-18	n/a	exe	bb57733ebd8307f0a96d5e32970e759c7d8769d48d13f87e98bf7d8a676894e8	n/a	DanaBot
2021-12-17	n/a	exe	5f558b6e30a5126e03af2a67149dcdd7e29f08afe913a59f8d9c56c0cfc9f773	n/a	DanaBot
2021-12-17	n/a	exe	84b83b1a9853416e3467273f9d226c8987e30184f846a3ffc3f1ea6aa8632279	n/a	DanaBot
2021-12-17	n/a	exe	894b92ead5778815f3ac0806af78a9cb01c234cc850342227506d4fe149e20eb	n/a	DanaBot
2021-12-17	n/a	exe	22a2118e79a04b58656a9cbd2c34adc1f6c387d34cc594ade740e6c1b37836d8	n/a	DanaBot
2021-12-17	n/a	exe	71d3c6f81f52f5f0a7bf8556efe0fcea1ab19bb2599d233675c6b90941561067	n/a	DanaBot
2021-12-17	n/a	exe	7d40590b82ee9af506412b1f1ee181aace9482da70141411a5790f545c040043	n/a	DanaBot
2021-12-17	n/a	exe	5962cc9972f882f12524bc1003a1633ca35655f6b833125168ca7a13fe33683c	n/a	DanaBot
2021-12-17	n/a	exe	2e12930d62d99ded2d70b1af512244f0e54987c6e088244aa5a0be4ae77ff52c	n/a	DanaBot
2021-12-17	n/a	exe	f73da0ec6c710f682fb76142a0c856d93a0781a422c42d441574a3423e257786	n/a	DanaBot
2021-12-17	n/a	exe	1458cc1cf26e0ad4690192cbfa94d78cc1439fbf785ba0613ce8c98791e31ea3	n/a	DanaBot
2021-12-17	n/a	exe	f7c452fd0d9049e783c3f645a07334206df021d0b1b88fae356a78f5c21b8f8f	n/a	DanaBot
2021-12-17	n/a	exe	6975d41b8936723fc9483a44f1589a3dc72c69f8a731582149468e9be6495659	n/a	DanaBot
2021-12-17	n/a	exe	cf08f80fe430cc666d3c25a939d49976129da08db2c467375eada6e041efd432	n/a	DanaBot
2021-12-17	n/a	exe	017190d28b8fd79edc04d0efc71bb66561a80f6908e979d451d00f8d7339a7dd	35.82%	DanaBot
2021-12-17	n/a	exe	6777ebe2c39e27f0bee03860b02a8ac080e3ab98375d933d6bb4ca792cc046ba	n/a	DanaBot
2021-12-17	n/a	exe	f60d2c6bda016a6fd0d165a5ee38ed4dceb39c9835ce0dfb6d5b1ddf31dd6f5e	n/a	DanaBot
2021-12-17	n/a	exe	13a5b6c1e9448b929c84b72839ea2553d998f5b2f601a62ae38f13cac9cd8e83	n/a	DanaBot
2021-12-17	n/a	exe	78c154678b2cb822b684f553b92dd7ff0d1eddf335838cc6703925c70f8300fc	n/a	DanaBot
2021-12-16	n/a	exe	2a3dcd8b0f20008c19b62626833651a30c6bd5481f5cae3196650a2f520e9422	n/a	DanaBot
2021-12-16	n/a	exe	1cdb8bfb8075c1e1c1bd93987ec457a83a2e8af4e98e3fb7dfc1d3a25db71037	39.71%	DanaBot