URLhaus Database

You are currently viewing the URLhaus database entry for http://192.227.132.46/ego1/ego1.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2376371
URL:	http://192.227.132.46/ego1/ego1.exe
URL Status:	Offline
Host:	192.227.132.46
Date added:	2022-10-17 06:57:05 UTC
Last online:	2022-11-12 16:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2022-10-17 06:58:09 UTC to abuse{at}colocrossing[dot]com)
Takedown time:	26 days, 9 hours, 39 minutes (down since 2022-11-12 16:37:25 UTC)
Tags:	exe Loki

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-11-09	n/a	exe	74765f5987c673b9ee4a33771ce1994de1c6e29ad225fa946a15bb2ba620b33a	n/a	Loki
2022-11-08	n/a	exe	0e20aee76808d1fe6428f204e201f5c704e4f8d57bb38b77c862d4ef2d61719a	n/a	Loki
2022-11-08	n/a	exe	16c1ada93c5abc25292da8c98a9d7882715ede3491863d51b02bce49628b57f4	n/a	Loki
2022-11-07	n/a	exe	9c9716c0719464b5374b65cfae882c5f4c61e81e186314b965f8648c7684c8cf	n/a	Loki
2022-11-06	n/a	exe	fcbe68196ecbd0f70b07df17e4b8092d42c40f1fce43009903347aec60bc74de	n/a	Loki
2022-11-03	n/a	exe	993d82f237874abba610ca0cbbdbb739ce2f6ef2fa992d04a32ca3d3d8eed29a	n/a	Loki
2022-11-02	n/a	exe	048c2abc57cd9b772827a1f2ab33e4e85cd5ad98c090c654eb631ed223dc7f5c	n/a	Loki
2022-11-01	n/a	exe	1b1c7a746491f2b2abd9499adcaae015c1d95374d8c2dddbd7305707cd8aa664	n/a	Loki
2022-10-31	n/a	exe	0fa92dcbcca84d98f6b96ce25ffcef4bba19111c34f139d1191e3e4186540391	n/a	Loki
2022-10-30	n/a	exe	d12315f2722d80d261f0879ddd7800d897a350d69235a926ffbff5992bb8c50a	n/a	Loki
2022-10-28	n/a	exe	e6c6e6e78b71aa2052f36f9a965ea140cc231cbff6592021811539ab5950891c	n/a	Loki
2022-10-26	n/a	exe	0274579738fef5480b9b049797988a5271ab64ecc2253449973a5b4e6a29d720	n/a	Loki
2022-10-25	n/a	exe	826453117d6e7af3fa2f2f643f1d8d8ed113a46f3218908d18b8ca3749b4703c	n/a	Loki
2022-10-24	n/a	exe	82ec38c1aef58fb5279ab67de0b9f81ec6d5f771f35723200a54c99bd8ead57d	n/a	Loki
2022-10-24	n/a	exe	aabcb8d9115716cdc6b486051310f30889303cafb0638fe9dbbb55fc52ae3c14	n/a	Loki
2022-10-24	n/a	exe	532c201d0ae011c0cdcdd8ddc806f9f9d9ca6042eec560d84bc3d6ceedff7542	26.39%	Loki
2022-10-23	n/a	exe	7811964f7f93c1fa2c2b19650be4055f2b4903d398b0f24b2083315515007582	n/a	Loki
2022-10-20	n/a	exe	0e41690be1d1ba651f4c8b28cccc4d154efc852cd3fa32ab99c6b587162fcfc7	34.72%	Loki
2022-10-19	n/a	exe	8881314a5cf2689bdac523355569f85d23a9a88866e625bbb6f5ec80b06bc386	n/a	Loki
2022-10-19	n/a	exe	ffcc3e256952ce5d98a021f6cf01f48e60d087be921062f9ea10b02560887f25	31.94%	Loki
2022-10-17	n/a	exe	24468faacfd0aae83a09c817101f87db799c2e8aad1c6974b551e22d901b56e0	36.11%	Loki
2022-10-17	n/a	exe	4c9a68e0231024b23ff2835c6fc3ec3fd3bc526ca7a437bbc4aa6b905bd68513	n/a	Loki