URLhaus Database

You are currently viewing the URLhaus database entry for http://intecilab.com/1/data64_2.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2258535
URL:	http://intecilab.com/1/data64_2.exe
URL Status:	Offline
Host:	intecilab.com
Date added:	2022-07-18 08:57:05 UTC
Last online:	2022-08-11 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2022-07-18 08:58:05 UTC to abuse{at}publicdomainregistry[dot]com)
Takedown time:	24 days, 5 hours, 40 minutes (down since 2022-08-11 14:38:11 UTC)
Tags:	32 exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-08-10	n/a	exe	b39c1a0059d5729e112e76eb6e89d60c817f59fd113891190355cbe03a8f3c3a	54.29%	RedLineStealer
2022-08-05	n/a	exe	85cd54ad14dfaca9873e64462e357dda2a3802756003999c6b0ad401ee5787c5	n/a
2022-08-04	n/a	exe	fe5b00764eb4027b26c66190399516cdd113a0aaf1ec691a89dee9d8c8a6c7d1	n/a
2022-08-04	n/a	exe	049849c1ac13f5e6f3cc8ccb5be031094df1d2eb9a107ad882a19e05ac5e5c92	n/a
2022-08-03	n/a	exe	af7857cf1df14eb5c0336314e5c1cce6970d487e780dc4fd72cb18ea9dfed75e	n/a
2022-08-01	n/a	exe	63d60be3342fde88769b1dcce00cf64aaf2a484cbb1e54a491574a534e329ad8	n/a
2022-07-31	n/a	exe	0aa4313d7d3f4e2462eda21e07a8f7baa353d6d83db1942e8fa24f962184fa9a	n/a
2022-07-30	n/a	exe	97d9949d69bec85513936c7847b927402103da8bbf5c66fc5891794d9adfd6b0	n/a
2022-07-28	n/a	exe	b4cdc079421b84df9a84fd0e7fbbe07283056c554cb00b755b886e5050ca4aac	n/a
2022-07-28	n/a	exe	0cf858ae02953155a2d7ea956bc1f581fe06dbdf061994f3d74f22b1a3090703	n/a
2022-07-27	n/a	exe	14f80e1fd5208d326b1cde734405a3d1de29fbaf9da5e20206055377ba51637c	n/a	RedLineStealer
2022-07-27	n/a	exe	f5cd474b7df7fc1a15f8ca2da5a421c419afa564a3361b7848f3cd97a6339f40	n/a
2022-07-26	n/a	exe	d400f72babb8d1860cb0f5e3a48322ac0dcb5cc5917f6099f48f7ce5be5f9086	24.29%	RedLineStealer
2022-07-26	n/a	exe	4963f0b0b48c699dfc8925dbfc02f4fac3edf7c897ceb7c752bd4d3f0bf58dbd	n/a
2022-07-25	n/a	exe	225b1a73b22299aacea0c0ca49601c9c23c0ff2431b9adce0f5416d5e2c988a8	24.29%	RedLineStealer
2022-07-25	n/a	exe	66a9bb5aca16baff27fb08246384857f61b6e649f5a86e4dfe3e57ceba244148	n/a	RedLineStealer
2022-07-25	n/a	exe	e411cbaa2af218bdd0b614d836125b450656cacfee09e55b8d0d938c0998e8d7	n/a
2022-07-25	n/a	exe	0ebefc2d6015115f179c2d4a0c9d28d43c3fab4233eec52a2dd893d6834cd220	n/a	RedLineStealer
2022-07-24	n/a	exe	fba6ded472d1a930ca30f66019bfc8e711fc17d23888a5f1d8f6674436907f49	n/a
2022-07-23	n/a	exe	05857ac041f7ed9e0b55ec929a03e48321a4ed97ad8b3adc5e607845ce3d7bad	24.29%	RedLineStealer
2022-07-22	n/a	exe	19c64b42979e40a6c30e320a7126555ec456b7452bb60fd78a0f6206b634216b	31.43%
2022-07-21	n/a	exe	158e969da4640ec11665b2c34d180c94c1dd92bea1f7144e21c5f2f9823f0e7a	26.09%	RedLineStealer
2022-07-18	n/a	exe	b0187f7834ad6a332fea9b47b758f70f02a592cffa824c13b41772f3912487de	37.14%	RedLineStealer