URLhaus Database

You are currently viewing the URLhaus database entry for http://62.204.41.118/11.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2264089
URL:	http://62.204.41.118/11.exe
URL Status:	Offline
Host:	62.204.41.118
Date added:	2022-08-02 17:31:04 UTC
Last online:	2022-09-20 01:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2022-08-02 17:32:05 UTC to abuse{at}gorizontllc[dot]msk[dot]ru)
Takedown time:	1 month, 18 days, 8 hours, 17 minutes (down since 2022-09-20 01:49:40 UTC)
Tags:	ArkeiStealer exe RecordBreaker RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-08-23	n/a	exe	bdbd5a0fb6a3ab99f0cfa3cee7e3f7f8f7ec078eeb628aadfb8a32a5df2be3b9	n/a	RecordBreaker
2022-08-22	n/a	exe	86360aa8ab41f3de1ba20cad54f2567c0d5994a20d5b58d0b71aa42c545bb9f8	n/a	RecordBreaker
2022-08-21	n/a	exe	3151a175ac9fcb2fd16045854da383ddc7139df5fb43d2f540cc645a47f6db59	n/a	RedLineStealer
2022-08-20	n/a	exe	216a5280c41774f8d5c9e9d71a29ad242fe7bd2adabb79fece903f30b9380912	n/a	RecordBreaker
2022-08-19	n/a	exe	3e8cd0eb4715ef2b9f3b9f676b90eb16b0842d289a34fdd41e46c106a845d983	n/a	RecordBreaker
2022-08-16	n/a	exe	29d877367db8db212c287c1d00ae96b837c492a7053d945a16db52ab100eb514	n/a	RecordBreaker
2022-08-15	n/a	exe	1dd402d450c484140663b57c516ca68b10f31976f324f268ac6e564c6ca177af	n/a	RecordBreaker
2022-08-15	n/a	exe	4492863fa654c0b9ecca4e878331fe522067fc7b61496720c74da28b1d628338	n/a	RecordBreaker
2022-08-14	n/a	exe	03aa04ba5e33493632300e4eebfa03226d2e1c2154750b373819c2907428892b	n/a	ArkeiStealer
2022-08-13	n/a	exe	cd846ec4ec9c0f6e6078d73b1e32b2488179f597307bcdf1777388192e916d54	n/a	RecordBreaker
2022-08-12	n/a	exe	463e7bb6693b947b343cd1ba77247bc8e6504a1fe80f36cdf2a3d7d345e15fd3	n/a	RecordBreaker
2022-08-12	n/a	exe	2f2d4587b0faf105a6d992856d7a92c03f599b68b84bd41b8c2cb32419b90a47	n/a	RecordBreaker
2022-08-12	n/a	exe	c33aec2527c88a003a6073ee31c1fec0cc3fea40b40f5b1170f67ea5c0838568	n/a	RecordBreaker
2022-08-11	n/a	exe	7f9507e2305941a7263daeba121ce8a83c91bdbe5ad7df94a9dfc0ab4158271f	n/a	RedLineStealer
2022-08-11	n/a	exe	b503e95080871d70f3a758124d473ed31a4ede3d2e87d252d3bc878868274023	n/a	RecordBreaker
2022-08-11	n/a	exe	9f6b69057e19a7fd08aab0b2df861a65337207dcfac2d6fbd0d1c0a2b75670e7	n/a	RecordBreaker
2022-08-11	n/a	exe	ba66c7a46a35c1b38aa76a199ae19a65674786771b153e0fadc62fcd28367396	n/a	RecordBreaker
2022-08-10	n/a	exe	8328a866d6094c361f988ef4147c06a07f000101909df338f9c28c4b373813ec	n/a	RecordBreaker
2022-08-10	n/a	exe	0fa60d79f881f8616d2b92c02874f6f2a5c16b216b1e256fc31c176355b5c076	n/a	RecordBreaker
2022-08-09	n/a	exe	011e175620bd2bb9be584bd874a952e645903820245d34c770afe47733a2102d	59.15%	RecordBreaker
2022-08-08	n/a	exe	72a40d2a9f86e23a04a0748441fb122b7c931e1b58b2cba7ca2f5fd7c3ffd4b0	n/a	ArkeiStealer
2022-08-07	n/a	exe	0f264f4e7431d4fc1f46d724fb66ab1833e4d54862a4b651e95727a4b4555b9b	n/a	RecordBreaker
2022-08-05	n/a	exe	ef825a80323d1b7174699bbd9e53b72edf39991bd358b33ec774242e8c6b0f36	n/a	ArkeiStealer
2022-08-03	n/a	exe	60e783c49bc2e6b421e0a265b5c9fafc883249fafe4f6d421ce2def561bf8d41	n/a	ArkeiStealer
2022-08-02	n/a	exe	22539844faca3d0029a5421ecc146979eb16ac4257fe8011a84f0686052f5b19	49.28%	RecordBreaker