URLhaus Database

You are currently viewing the URLhaus database entry for http://190.123.44.138/myapps_x64.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2152953
URL: http://190.123.44.138/myapps_x64.exe
URL Status:Offline
Host: 190.123.44.138
Date added:2022-04-18 20:26:05 UTC
Last online:2022-07-14 15:XX:XX UTC
Threat:Malware download Malware download
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2022-04-18 20:27:08 UTC to abuse{at}panamaserver[dot]com)
Takedown time:2 months, 26 days, 18 hours, 56 minutes Bad (down since 2022-07-14 15:23:33 UTC)
Tags:exe rustystealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-07-09n/aexe 6eb0a5c01f9f05aea8ff02b78f8a68427d60c9d1b1e43bdd809187d20c5b1dabn/a 
2022-07-09n/aexe f7c42fdf4a76acb2cbbf4d97bc4cd315e5de36db95a740aef72f8fa184654eedn/a 
2022-07-09n/aexe 6b14756d83f180712edbed33d037cc8b1d31ba8c841039459c58c8f5e7badf53n/a 
2022-06-10n/aexe e23275f391e1c4b7d606a6d756cf78f9426b0cdc36621c4d9c3461f5ef94de52n/a 
2022-06-10n/aexe 6fe0466888fc3b325ddde1bbe740904e4cbdd51657ffc7e7cd267a2d72ba7fc5n/a 
2022-06-10n/aexe 4e1076f2ca29d52a338e2dc3951994dd6099a38fa7e1982e3a1f651b4ce185d4n/a 
2022-06-07n/aexe 91bfccde0460f32f26a80708b6d913e99c83b69e9ab905478935efcb4c363d18n/a 
2022-06-07n/aexe daa177cfc210a1e10e93647a1f60117039863a8ae280cbc1b6b24d32e9f16680n/a 
2022-04-18n/aexe 7d3ffa1e5293e944acad1ffa5f750bbb320988928169744c1e69fc67761f357fVirustotal results 51.43%RustyStealer