URLhaus Database

You are currently viewing the URLhaus database entry for http://77.73.131.123/files/wood.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2275072
URL:	http://77.73.131.123/files/wood.exe
URL Status:	Offline
Host:	77.73.131.123
Date added:	2022-08-20 14:23:04 UTC
Last online:	2022-08-22 02:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2022-08-20 14:24:04 UTC to abuse{at}aeza[dot]net)
Takedown time:	1 day, 12 hours, 22 minutes (down since 2022-08-22 02:46:09 UTC)
Tags:	exe opendir RecordBreaker RedLineStealer Smoke Loader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-08-22	n/a	exe	b316e26864ba9128dd451950f1ccee57d700914f4188157c80a94d5b65aecc10	n/a	Smoke Loader
2022-08-22	n/a	exe	07f9ef4af647888403c3edb8f6a5c10fe96e78517d51676ba4ccb3336de0e80e	n/a	RecordBreaker
2022-08-21	n/a	exe	e4c3f2efee30ec18151641ac43181942a271db6663f8d207bf27cf8afe02570c	n/a	RecordBreaker
2022-08-21	n/a	exe	5ff4d7f9d4dc3352cb24d2839731512f27448a91d69c25e9b8462667d9c60d87	n/a	RecordBreaker
2022-08-21	n/a	exe	774f204e8c7f3c2b9c2cf3f20ad35cfaea55aba372eef7a9e461ca432fa9d989	n/a	RedLineStealer
2022-08-21	n/a	exe	85bf2ff2f98d3d5362de75f41ac85ac1de6efc721186630198ff0610379eb724	n/a	RecordBreaker
2022-08-21	n/a	exe	ee1b2b040563eb20bcbed8162988e704ae2d2174f391f9fcc1c6160834e660c3	n/a	Smoke Loader
2022-08-21	n/a	exe	bc88c130c5c9f90a7b0fd2d9cc54530b512e115c4e011e10aedc4121ce98b9f0	n/a	Smoke Loader
2022-08-21	n/a	exe	a5eb789bbda817d8e3059a3e24a486b13ee6e98ea705921d8995f3d6a8bdd1af	n/a	RecordBreaker
2022-08-21	n/a	exe	080c245145c62ccf92e9c974baf354792574a708d2df7b5856c132d1e0cd6fcf	n/a	Smoke Loader
2022-08-21	n/a	exe	c0bef88382f267e8abf24abf4446420d79ce6b6dd511aa5d30133703b29778f7	n/a	Smoke Loader
2022-08-21	n/a	exe	4d61666686d47ff2c922477bd06aa8b89b4f6c62c487cc94d93ad1451fb549e3	n/a	RedLineStealer
2022-08-21	n/a	exe	818b63d74c47590104ef9baace1ef5511c3fd92842ff7f44aa9ca6b23ea121f8	n/a	RedLineStealer
2022-08-21	n/a	exe	c75fa5a183d9de039fae1229a674e602733a996f9cc40c47a76a81c58d1b4e6b	n/a
2022-08-21	n/a	exe	c528749cce7a8460428a8eb2d0b9888eafcb39a6c1c3dad57bee7f3c67a801e8	n/a
2022-08-21	n/a	exe	c72bf997c9a2c92574eab7a06490125dba02b9b8cb75142812213161da56496c	43.66%	Smoke Loader
2022-08-21	n/a	exe	6036a4ec2176dbbaca9a4b31d6a2695606217716a5dd41c5c6115a1382381266	n/a
2022-08-20	n/a	exe	d5ab407d6f9d4c0109ae5a3d359133a31cd5e6920aa2e782be08710d16d7ff4a	n/a
2022-08-20	n/a	exe	17e5dc18039b1719f606282520b8687436011d0ad40cbd5c684afdbe3415a2ec	n/a
2022-08-20	n/a	exe	209f5d770a727cc4f92f78267961b60aaa950527fe060e8499f4e66fd4a9ccd7	n/a
2022-08-20	n/a	exe	9e97ce2c18c30f392062c42b61e31f0ccefd970c43676019834766614ba79b82	n/a
2022-08-20	n/a	exe	e109b5ece3504a3c0473879b5e499d81fe3ba2a071d1183bd107523a3f756923	n/a	Smoke Loader
2022-08-20	n/a	exe	5586765ad89f3f167b3ca3f5489b8a99c4f867d7b50af63fc23292293fccb5ba	41.43%	RedLineStealer
2022-08-20	n/a	exe	16c32131c745115942dd6fedd809c8464bd7af2b90f331484c2b8841acc2d441	n/a	RecordBreaker