URLhaus Database

You are currently viewing the URLhaus database entry for http://89.208.104.172/412.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2381532
URL:	http://89.208.104.172/412.exe
URL Status:	Offline
Host:	89.208.104.172
Date added:	2022-10-21 15:11:07 UTC
Last online:	2023-01-11 19:XX:XX UTC
Threat:	Malware download
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2022-10-21 15:12:10 UTC to abuse{at}aeza[dot]net)
Takedown time:	2 months, 22 days, 4 hours, 0 minutes (down since 2023-01-11 19:12:30 UTC)
Tags:	32 exe RaccoonStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-12-20	n/a	exe	ff891544b71debbfd4223562b0e4eb47316e3567ce89f34ad8db30f48079467e	n/a
2022-12-01	n/a	exe	f792ec1e3f84c0a2fd60ab4f34067c5382070c15eedcc3488b268b61b57e21aa	n/a
2022-11-29	n/a	exe	53f4f1f175ac136690ccc03c8a3b50c2f6340ebeb70ed3d2a99c045f57e10559	n/a
2022-11-27	n/a	exe	6209d7bd17c17be968d3d9efde11cd4e4cc242aa7b1aaff84d37217524d2094d	n/a
2022-11-24	n/a	exe	28f24b10045dda8430a1074287838432195f2e347ad9ffeadf741a5a22997501	n/a
2022-11-23	n/a	exe	f47d8735d6baffad1b8773cdaf20a5cd42f30e56d8327e012803cfda0c91809d	n/a
2022-11-22	n/a	exe	6df6c02f418f655494e7d5b0ad0108bc62b8393eac9979a228fad3c57d5f013e	n/a
2022-11-20	n/a	exe	f13b748fa1215f4ef09c5b8f17af930512a926e33cb8f6a25e90a6d2252a205e	n/a
2022-11-18	n/a	exe	d2056b13dc3328dc6778991289fd8fa48502ea746512ba2796ce167ba96a6015	n/a
2022-11-15	n/a	exe	39d3df8f4a3bacaf1456712177c36f4fd76acf69a174c74927c15442bc80a398	33.33%	RaccoonStealer
2022-11-13	n/a	exe	be1f5c60874f279ab47b00da58c3b634edb4819a33652938281a799f3cd4e256	n/a
2022-11-08	n/a	exe	0b0c86bcf3f22e3032f68c80ed7d278263cd51b8a6fb0de32b0eff387e371ea3	n/a
2022-11-07	n/a	exe	f2d24ff7b7ed9641453cac5b4a0d97591e7c5c9ec7aafcead9f14bc9d0b461a0	35.71%
2022-11-06	n/a	exe	90079e1d2d3ac5c8c9674f40d3affc6102ea4ea8abaab7c689093afebad6e25e	n/a
2022-11-05	n/a	exe	97dd986c40ac0b8fa6126879fa97163297a21ff926966a63c4ecb5a50becae8d	n/a
2022-11-04	n/a	exe	5608b873002868b505078e82a8a0040fda98240a3670f03f5998a0377ad040c3	n/a
2022-11-04	n/a	exe	b505130d5de2f09e24b1d0065a3fa166fb064fe9151b2e5624f74cf993cfcd8b	n/a
2022-11-03	n/a	exe	f5faf1f6336d82c464b59af3e68141fa2fcdb43804f30ec258c09b11c486d58b	n/a
2022-11-02	n/a	exe	21659f7b55d30fd92b976f7eff8fc635d3e536926536ffeee79364afa68b77e9	44.44%
2022-10-21	n/a	exe	0596dd9f0350b7526c910a9a26e45b1886fc5e9130d96ea2543935a4bc410295	65.28%