URLhaus Database

You are currently viewing the URLhaus database entry for http://dfsgbhnjmnyhtbgrvfd.top/strong/mix.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2206272
URL: http://dfsgbhnjmnyhtbgrvfd.top/strong/mix.exe
URL Status:Offline
Host: dfsgbhnjmnyhtbgrvfd.top
Date added:2022-05-22 06:00:06 UTC
Last online:2022-07-14 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2022-07-14 09:39:05 UTC to abuse{at}macloud[dot]ru)
Takedown time:1 month, 23 days, 4 hours, 21 minutes Bad (down since 2022-07-14 10:22:47 UTC)
Tags:32 exe RecordBreaker link RedLineStealer link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-07-11n/aexe 9739246cc975d1ff15936f9c59db66651a44bddd71048ff9168d7f75e2b945cdn/a 
2022-07-09n/aexe 03f9385cc83549641ebb75d5d2a3f11941a29132193e20da1602cfa22577f7c5n/aRedLineStealer
2022-07-07n/aexe dcd134f804aa015e6c84fb1ee9a2e65942e80cc1a740512ed1bbe087f44a242dn/a RedLineStealer
2022-07-01n/aexe 57cafe882ac3a3889a2121256c044efb112c98b97f15e9b47b64dd083ef16387n/a RedLineStealer
2022-06-24n/aexe 17be3f5a030e5e25e6e1950b99b6af54d8a6d239154f91ab4ba74ac1f1204242n/a RedLineStealer
2022-06-22n/aexe 1a0e3cf79a9a58af2ae76d49c2135e318a26c62abcd13e962d76837af6426b94n/a RedLineStealer
2022-06-20n/aexe 6da2a6f1037e65427460c225e124d058bedf657143700f33ed04dbc3c2cdd05cn/a RecordBreaker
2022-06-19n/aexe 4223eed73e2e2aec32626dc339fcfc7c13707b13c36691ef1935dc873463ea52n/a RedLineStealer
2022-06-13n/aexe 3d6b544e6ef26f2aacc33c48e8fc79c189dfb7fdb6b47d0247f5e5d81a77c04an/a RedLineStealer
2022-06-09n/aexe fb4c1d99f53ededb398c10f5563c024be9cba391816970d20715379d04ab5e3cn/a RedLineStealer
2022-06-07n/aexe 809e303ba26b894f006b8f2d3983ff697aef13b67c36957d98c56aae9afd8852n/a RedLineStealer
2022-06-05n/aexe fd088b4f7e1e9e1f391974e2f635375c52ed3ca147ed99d909a8f084e2f88755n/a 
2022-06-04n/aexe f6ac71b0442ddc6e22488a118a1260301be7421aa280fe9ba48dd339e5a82a81n/a 
2022-05-31n/aexe c49c86e7a26eae0532e080603cf0175095e49b0eac7b6e7e7de0265a53481dben/a RedLineStealer
2022-05-30n/aexe 83879331514451ba4a95dfd1f5b1f06e2dacb8effb9cb58acab5d5fb06d908f3n/a RedLineStealer
2022-05-29n/aexe 13b127d253cba7bdf7548e8541e19f3087a5ea98105a7ea76d3052308b91b6fcn/a RedLineStealer
2022-05-28n/aexe e2e52641cf38063022f411aab1677766c0c4b41acac750f872373fe3032766e2n/a RedLineStealer
2022-05-27n/aexe 063d68a498ca1d79f269f286988b6cf4c0f37030d381d46b3e1022719fde189cn/a RedLineStealer
2022-05-26n/aexe 06e85620626d06f1d4f3c84825a8c12a5701d16807f0e5d25a5ab1132523cec1n/a RedLineStealer
2022-05-26n/aexe 24b3e8220bb56f40ac29dce28310b362a5b8e25bfe0c27aaeeaee77d877e8916n/a RedLineStealer
2022-05-25n/aexe 66883e0b51e1f34b1fba6555dff3e50559b1116c353b2579f94314000f6742efn/a RedLineStealer
2022-05-24n/aexe af2267850e0b5da4d978980eff90ceb91b83a51ea695bbcbbfe9aca99a25a293n/a RedLineStealer
2022-05-24n/aexe 804f149cac4ec3ac403d61db2d26d6ad3497a655f1e97cb750d1d457731b358dn/a RedLineStealer
2022-05-22n/aexe 0ee628ef37d2ae2d6f6e3b1c98e36fc9ca685c26b2bced1e299746aefb09e0a5n/a RedLineStealer
2022-05-22n/aexe f7491341509fe582a63437f0f92c3c66a6f4c98c20ff8e6574e1ecf844d4fa19Virustotal results 45.16%RedLineStealer