URLhaus Database

You are currently viewing the URLhaus database entry for http://dwefrfgqwgq.top/holler/rolle.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2114626
URL:	http://dwefrfgqwgq.top/holler/rolle.exe
URL Status:	Offline
Host:	dwefrfgqwgq.top
Date added:	2022-03-25 00:39:04 UTC
Last online:	2022-04-02 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2022-04-01 13:39:06 UTC to abuse{at}gbnhost[dot]com)
Takedown time:	8 days, 8 hours, 38 minutes (down since 2022-04-02 09:18:13 UTC)
Tags:	32 exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-04-02	n/a	exe	1005232670c8eaf9a50f548824ba78cf8970e323a9fe0b814f2c8ea47b2507b3	n/a	RedLineStealer
2022-04-02	n/a	exe	b75e2124caa6ea512a2f6924456516e7b22f97e2b5bfdc283fddce806969fbba	n/a	RedLineStealer
2022-04-02	n/a	exe	8af1e3c3580f804f2e08427d98386395444a13055a7b5a93e2f32249ab430867	n/a	RedLineStealer
2022-04-02	n/a	exe	afafcd17938bac49ea8d0060dc56e4768779f1556e04cc55cbd81c48f7e68cc2	n/a	RedLineStealer
2022-04-02	n/a	exe	a7cd9b43314773dfb9cff411116f7ad3ace062fd49ac888c743d2eb8b717cd2f	n/a	RedLineStealer
2022-04-01	n/a	exe	024799c144dc1bac968f1b09bb9ce44db8221ed652c9435c6f38522430ad9ddf	n/a	RedLineStealer
2022-04-01	n/a	exe	6b7fac49e2f635251ac6a3845ec1702bcb923f7259691a7b3fa9595065e44e95	n/a
2022-04-01	n/a	exe	c7df701d727283f8e2ec08ea566a765b59d4f98a92befb0519a22fa3d576aab1	n/a	RedLineStealer
2022-04-01	n/a	exe	1eb806f35e0725c673985b3f27015327429e5dc7c86422a05605b607ec3a1685	n/a	RedLineStealer
2022-04-01	n/a	exe	7b49d279640e78ed2f2f9a63ae1cee35ac7b7bb1c8b04ec9b8d46805d024f6b9	n/a	RedLineStealer
2022-03-30	n/a	exe	f27bad25a7cd0fa8fa981680109c8df95e768a5c517af5e244fe5f4984387fab	n/a	RedLineStealer
2022-03-30	n/a	exe	818c6fe4d685efacf5608a731d7ec09d1e7fdb5752069296e7861500c738d627	n/a	RedLineStealer
2022-03-30	n/a	exe	e1ccd2f2479f358e05c388d73c358b9c47d7d681a94255465cd4370059b56283	n/a	RedLineStealer
2022-03-30	n/a	exe	88160f0e829fffd70ddfa78c0cc32d6cd7c0d21eed1ee383586ab6626d862711	n/a	RedLineStealer
2022-03-30	n/a	exe	54d9d26581158ac6021931121a2ce3ae13cefacad06bd98320488b8a43e1f519	n/a	RedLineStealer
2022-03-30	n/a	exe	a4519b4ba186e7e6e75e74fa46970d67b16ad803145c7fbfd87aad84b21ef4df	n/a	RedLineStealer
2022-03-30	n/a	exe	5ae30f989e5fd2407e440a51f2d72a8817f3d41b29eab02f4fbd0d6b1c05e8aa	n/a	RedLineStealer
2022-03-30	n/a	exe	648516e4c0f6a03fede99b91a0e3802eddfe8bab47e65b082068e91d9456dfbe	n/a
2022-03-30	n/a	exe	9056bf280268dc3759fa18f97dd087ce5bea7acf0ed2dc879602b9ba6447473c	n/a	RedLineStealer
2022-03-30	n/a	exe	ff6ceca415c6baf0db45ec70e8f1c455392dc6c6efd09367600fe10b6c89bbe8	n/a
2022-03-30	n/a	exe	514ac97270ca8e24408bc8a822fb83a463e021704135dd6869460cc028347aa1	n/a	RedLineStealer
2022-03-30	n/a	exe	f62e906a0c298528e1f817b719f2b81f4ca4fdbbc72e0d4eac787c6bb71f82ec	n/a	RedLineStealer
2022-03-30	n/a	exe	b239ac9afd9a46b23af445739ce5e3e97f5b20dae1c7155281971e7fbc2e8a0b	n/a	RedLineStealer
2022-03-29	n/a	exe	71d78e917379716a073231e781d3761ead959249f1049ebe156399d3f8bd536e	n/a	RedLineStealer
2022-03-29	n/a	exe	bf2ba5858b43dd1f1d3539c70677997bba15c8d0cee6913f36fbd1508285a079	n/a	RedLineStealer
2022-03-29	n/a	exe	12ffb5b0eba7dd0593f4b99d737b9848dafd9a01fd6ebd0917c11a8c725496df	n/a	RedLineStealer
2022-03-29	n/a	exe	017118612816b95f23b39dbb5a82ea128aaf3afe315ce0314c020a9848dd6d80	n/a	RedLineStealer
2022-03-29	n/a	exe	393f88b816d5666375317cb78fe5564f18c7d7f7a5c893659edf7c56edeeddfb	n/a	RedLineStealer
2022-03-29	n/a	exe	dfae60ced4d302cb8c9f542b52a8cdca8a4a73d5d66831b9c27463c7abfd5280	n/a	RedLineStealer
2022-03-29	n/a	exe	4f0c14ddfb291a9abee26f48cbda6384f78b9181959eb8551b227523dfa08414	n/a	RedLineStealer
2022-03-29	n/a	exe	eccb2ec3e7edf17aaf09e41c8aab3f45fcb4aee06bf47fbc8f0f4999abaeb2d3	n/a	RedLineStealer
2022-03-29	n/a	exe	59a7fb0c405575ddaae36ebc706f0a999872b7e6a008d7986a4cdb0547565652	n/a	RedLineStealer
2022-03-29	n/a	exe	e8c1712e0489196efc9349939781e2a989681d14a95e83a30375753040b7ef3a	n/a	RedLineStealer
2022-03-29	n/a	exe	a63806a04c7dc23ef99da422feb1192d69b6b627aa39ccc989362ae508af899e	n/a	RedLineStealer
2022-03-28	n/a	exe	a454a62f30bebc302c31e84a6244756351743ebd6f6a2e48b6b8c61432dd2399	n/a	RedLineStealer
2022-03-28	n/a	exe	a7195f13946a807de7c48567e0f4f96267a7f0b4435307717ca5c57dfd56f1db	n/a	RedLineStealer
2022-03-28	n/a	exe	cbc785162fcc3a07fe7e9330cd3abbc98ca7857e7d1b92176c262bd16347e12e	n/a	RedLineStealer
2022-03-28	n/a	exe	9ebda86aa5459c6d98fc455e7f8b4358b321828623546c491f9eaef922292fa2	n/a	RedLineStealer
2022-03-28	n/a	exe	72863d9fcbfac3ee7d0166c4d1b84aa4b40e4052a90662807e3585ade3a25eeb	n/a	RedLineStealer
2022-03-28	n/a	exe	8b4cf50e57bf824d420ee9754cae394ce57eac0caa3d0b1b38a780074646d47e	n/a	RedLineStealer
2022-03-28	n/a	exe	6aa6b976c20a1ad3a0a1cca757ec2e545a49e255120669622308e1205dddb81e	n/a	RedLineStealer
2022-03-28	n/a	exe	c705b3f317cae85e5047a615877a98d7dceed444acd99193ce5d9bfee8386798	n/a	RedLineStealer
2022-03-25	n/a	exe	feb32b614bc7f38cc0b553b5fee80b7e68ad8ae78df1f1cae4016a5aa1c4677a	29.69%	RedLineStealer