URLhaus Database

You are currently viewing the URLhaus database entry for http://intecilab.com/12/data64_2.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2258658
URL:	http://intecilab.com/12/data64_2.exe
URL Status:	Offline
Host:	intecilab.com
Date added:	2022-07-18 17:29:07 UTC
Last online:	2022-08-11 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2022-07-18 17:30:07 UTC to abuse{at}publicdomainregistry[dot]com)
Takedown time:	23 days, 21 hours, 36 minutes (down since 2022-08-11 15:07:04 UTC)
Tags:	32 exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-08-10	n/a	exe	b39c1a0059d5729e112e76eb6e89d60c817f59fd113891190355cbe03a8f3c3a	54.29%	RedLineStealer
2022-08-08	n/a	exe	73cfb5e52a62bc00aa43e4efadc6774e9cfc618b34fa0aa876f4b0573f49636e	n/a
2022-08-08	n/a	exe	a12bf14b42799694cded03594b1c8a2849bbaf842ff8eab0f3118ca003877e7e	n/a
2022-08-07	n/a	exe	000ce72f645921e956368d7315c2de526742920889353de57565b39b0c745c74	n/a
2022-08-03	n/a	exe	07fb319df6ca51bff85ae80b3244c6ed4e50a45f374359f0c3230c5a66093910	n/a
2022-08-03	n/a	exe	3fc568a8eace99d136502ddcf208293b559c133c3f9ff67a52a03820e7fd0325	n/a
2022-08-02	n/a	exe	90463f751c1768f7c7ecbecac288ae07b759351e3381a6a047cfde920b26f5a9	n/a
2022-07-31	n/a	exe	3d4c0af7ad79f14dd7909d625aa0c59c196b5d2b8d982367b6d49d8f367f2a5e	n/a
2022-07-30	n/a	exe	3b307b07e257bf6653e3be524f1d072c66ff3257f5b6b81e60243ad86b71974f	n/a
2022-07-30	n/a	exe	28e346cb35200246e78797d872bf560ad4fb7647b83c5a7a4a2d08dc73a73f0a	n/a
2022-07-28	n/a	exe	155393196cb47577fa2a50364a9410a965900391d8cd8eee17fe02e2b818a8ff	n/a
2022-07-27	n/a	exe	14f80e1fd5208d326b1cde734405a3d1de29fbaf9da5e20206055377ba51637c	n/a	RedLineStealer
2022-07-27	n/a	exe	96a15eea7fd6ef9961d7138ab4a1987243b83534fd6d33452bdf94ab7008ffff	n/a
2022-07-26	n/a	exe	d400f72babb8d1860cb0f5e3a48322ac0dcb5cc5917f6099f48f7ce5be5f9086	24.29%	RedLineStealer
2022-07-25	n/a	exe	225b1a73b22299aacea0c0ca49601c9c23c0ff2431b9adce0f5416d5e2c988a8	24.29%	RedLineStealer
2022-07-25	n/a	exe	66a9bb5aca16baff27fb08246384857f61b6e649f5a86e4dfe3e57ceba244148	n/a	RedLineStealer
2022-07-25	n/a	exe	dafc059bc0a8bc620a9148f9eaa3213921fc1baed4de476a3889867d4dbfc1b5	n/a
2022-07-25	n/a	exe	0ebefc2d6015115f179c2d4a0c9d28d43c3fab4233eec52a2dd893d6834cd220	n/a	RedLineStealer
2022-07-23	n/a	exe	05857ac041f7ed9e0b55ec929a03e48321a4ed97ad8b3adc5e607845ce3d7bad	24.29%	RedLineStealer
2022-07-22	n/a	exe	19c64b42979e40a6c30e320a7126555ec456b7452bb60fd78a0f6206b634216b	n/a
2022-07-20	n/a	exe	158e969da4640ec11665b2c34d180c94c1dd92bea1f7144e21c5f2f9823f0e7a	n/a	RedLineStealer
2022-07-18	n/a	exe	b0187f7834ad6a332fea9b47b758f70f02a592cffa824c13b41772f3912487de	48.57%	RedLineStealer