URLhaus Database

You are currently viewing the URLhaus database entry for http://77.73.131.83/cdn/binary.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2274168
URL:	http://77.73.131.83/cdn/binary.exe
URL Status:	Offline
Host:	77.73.131.83
Date added:	2022-08-18 06:22:04 UTC
Last online:	2022-08-18 09:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2022-08-18 06:23:04 UTC to abuse{at}aeza[dot]net)
Takedown time:	2 hours, 52 minutes (down since 2022-08-18 09:15:14 UTC)
Tags:	exe opendir RaccoonStealer RecordBreaker

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-08-18	n/a	exe	fe27c3502400135616913513552d340186eb5599d246ee8606c7e232b16e7612	47.89%	RaccoonStealer
2022-08-18	n/a	exe	bb77ff59d76bd99692b1dda4c1ca720c9922884c79e7e9592c1f5504fd18722f	n/a	RecordBreaker
2022-08-18	n/a	exe	82b6840b707fdd967b202c532c13b476ac8c5a29f0763f18d4d51bd3a518a973	47.89%	RecordBreaker
2022-08-18	n/a	exe	0394a22e08728205b8068f3681368427668132e1d1405e5416e66b0241688538	41.43%	RecordBreaker
2022-08-18	n/a	exe	cd11c0cb84e0dd5f059bcd722068d845ec3351f6ada4a0151428001b8dfd69a8	n/a