URLhaus Database

You are currently viewing the URLhaus database entry for http://89.208.104.22/cdn/3.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2273948
URL:	http://89.208.104.22/cdn/3.exe
URL Status:	Offline
Host:	89.208.104.22
Date added:	2022-08-17 13:23:04 UTC
Last online:	2022-08-18 09:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2022-08-17 13:24:06 UTC to abuse{at}aeza[dot]net)
Takedown time:	20 hours, 28 minutes (down since 2022-08-18 09:52:22 UTC)
Tags:	exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-08-18	n/a	exe	7500d8220589e8af8b2c0283fcb6488a8181e1894cf59ac6630b31619eed15b4	n/a	RedLineStealer
2022-08-18	n/a	exe	1e99a2963e2c8a70e97fb9ef96067aa0f35fc22c52c44ba95a5ef73de8ad134b	n/a	RedLineStealer
2022-08-18	n/a	exe	d41925b6079b5491d4623dfc5e386315494d4f49b18873eba42f5f7fa6e1a7ce	n/a	RedLineStealer
2022-08-18	n/a	exe	e9cec40d3a9f96cd8bd96f7d9ad62a102fe769006aa3780d531ff565e26da167	n/a	RedLineStealer
2022-08-18	n/a	exe	7c0b2e04520dedafc95b716324bcd863810fd4eb9eda40dbfe13b2033fb7a68f	n/a	RedLineStealer
2022-08-18	n/a	exe	d62eb867830d9c9afecd12fa27fa78e3a3872776c1082a91d30f2a38845c38df	n/a	RedLineStealer
2022-08-18	n/a	exe	209e2804276a80dc9014e508b944dab821d6f332de2d5231cd0533d02bd8bb10	n/a	RedLineStealer
2022-08-18	n/a	exe	d6f11e49f7a9b3e756c302c86aded26600dd89bb25c643416c6dfea510851461	n/a	RedLineStealer
2022-08-18	n/a	exe	83af6aff807278e4a3ec0a5b6150604cfdb67716a9031a4967d764a4770ffbaf	n/a	RedLineStealer
2022-08-18	n/a	exe	23c2a725aabb419e72e6e5ae0f9a66414eab002f5a4c8ebd86bc73f4c0ffd017	n/a	RedLineStealer
2022-08-18	n/a	exe	b4e2ff16159c2df5b1249c628234aaac93799c8d60942fc763725cdaab3e4e63	n/a	RedLineStealer
2022-08-18	n/a	exe	5cf90079a87acb395c2d5cc4e0518906b04c508c0694626316618dae2e57ef0e	n/a	RedLineStealer
2022-08-18	n/a	exe	b3d238549f29661be6ea8ef096710a127fb8835ed111b06d021423234c150144	n/a	RedLineStealer
2022-08-18	n/a	exe	7527b5cce65d0dcad9a5992b61693ee610a460beeff288df68ec1ec0cdafd410	n/a	RedLineStealer
2022-08-17	n/a	exe	14e66a3d44554a6c25a089fc098a86ad25f52a1df96031003ab2ef6cbc6c06b9	n/a	RedLineStealer
2022-08-17	n/a	exe	6a6046c2b8de41f7f8b35d6c008335f3e29fc9e3c61c62b477b0f854af88e695	33.80%	RedLineStealer
2022-08-17	n/a	exe	b15010093b950a3899110d6f796d56746473d3f83ce7b067f2d33d0f6e9282bf	n/a	RedLineStealer
2022-08-17	n/a	exe	f38f91a7287155f9f7c03e59c7b1f55e78ad239d5e58bfc64daac6e8630def70	n/a	RedLineStealer
2022-08-17	n/a	exe	298c53d5bdfcaf5e5feebc531115ecfaed10b9fd0a383586c97a4796d7af5294	n/a	RedLineStealer
2022-08-17	n/a	exe	c1a89d47a1a4ac1be8b2707621feec5bac153e9e4a74acc7fed30b015003c7cd	n/a	RedLineStealer
2022-08-17	n/a	exe	487fb66dd9a87181f9904f95bc457c5d4f3076ef5a54b6a3fc1c0888c798e76d	n/a	RedLineStealer
2022-08-17	n/a	exe	4c274197f93aa87fcd1c959c6e4ce66ea9f2a49116a7b7f00fc8341a27d6a113	n/a	RedLineStealer
2022-08-17	n/a	exe	96b6807e4bffccce0eb89fe541d1c245882f3799382be729a6e1f80b4725ed44	n/a	RedLineStealer
2022-08-17	n/a	exe	c2fdacebb89ce132239757ff5f2cb3c7403331f83f25842b5247a29a89f31093	n/a	RedLineStealer
2022-08-17	n/a	exe	d3189c486026c8fcff055849d5bd13137cf86eb828af0e67674510ffa1a61654	n/a	RedLineStealer
2022-08-17	n/a	exe	a226f256f3b661153c3c5c024595de26c038e65850f089285933018a6a7d14e5	n/a	RedLineStealer
2022-08-17	n/a	exe	9594c8380559c9b78787f0f4837532112b9f2eba800a4b15cbfa708c3b237334	n/a	RedLineStealer
2022-08-17	n/a	exe	b1fc5ec44724b83b6d564da14df8fb8b7067efd17971ed0655c315bd3728bb4e	32.86%	RedLineStealer
2022-08-17	n/a	exe	1d3281d767bfe4d4ffb8681aa841800f0062f2d55aa7793fd48e66e7659ff013	32.86%	RedLineStealer
2022-08-17	n/a	exe	9ff6a56877b98d903fcbae23615ed854b2278947d592b32b9af9719a880ed371	31.43%	RedLineStealer
2022-08-17	n/a	exe	2dec379478d0edcb2983df002055a1f548800c03c17ff088f1abdfee15d8b9f0	28.57%	RedLineStealer
2022-08-17	n/a	exe	7eef7a32313ec38da7119960ac81182117ca6199e62e77f16f4d87bfac208efc	45.07%	RedLineStealer
2022-08-17	n/a	exe	902b9c5abfb98b9443066aeb237a32b7394cbc6c57a05673b895ba05bb797c95	n/a	RedLineStealer