URLhaus Database

You are currently viewing the URLhaus database entry for http://77.73.134.248/lab/vok.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2401722
URL: http://77.73.134.248/lab/vok.exe
URL Status:Offline
Host: 77.73.134.248
Date added:2022-11-05 18:58:04 UTC
Last online:2022-11-08 15:XX:XX UTC
Threat:Malware download Malware download
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2022-11-05 18:59:08 UTC to abuse{at}lethost[dot]co)
Takedown time:2 days, 20 hours, 24 minutes Poor (down since 2022-11-08 15:23:52 UTC)
Tags:Amadey exe RedLineStealer link Smoke Loader link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-11-08n/aexe 4809cdd8ba2b0a819bed16ce9e0f50e0d760e78006d0cd3f34607ef3c8980791Virustotal results 32.39% Smoke Loader
2022-11-08n/aexe b69d3523b7deb01e2bd98cde24e90a2c209f66310558ebc97d6815a28eb8bb2fn/a Amadey
2022-11-08n/aexe d57f81eeb5a365841c85e30fc03cee7ff7a81d2358c6ea47a039462767ce507an/a Amadey
2022-11-08n/aexe ec7fe301076954a67687dc34cabb5d85fceb7790cd643af2d62832c2cd418588n/a Amadey
2022-11-08n/aexe f6beeb052fc8c37296787d20c4530f1775f0b0b9c5b324b68e47766e38ad89ben/a Amadey
2022-11-08n/aexe 9359f505b3542d006d6c2d744c2963d75342f5102b9d96f1abff9591030aaab5n/a Amadey
2022-11-08n/aexe f1a764554aaef770abd2d840a69d788f8ed809072eecd7a1036a1eeca0ea3ef6n/a Amadey
2022-11-08n/aexe ed733a88c6b1f7dbff87ff52dc05eb683f2206bdeab6bf0e1fd8584fee40ff60n/a Amadey
2022-11-07n/aexe 77db3006d18c0cfb089d275f4c82613188a39f09014d90e4a0558799d93fb241n/a Amadey
2022-11-07n/aexe 1590e7d1c11258e545e1cefcb115e9b623500dc0a928c27d5be6eca5d1499c1dVirustotal results 36.11% Amadey
2022-11-07n/aexe a448016a7f08c698913c48c8541de7991c7e872f9bd69caf5126636738cff36fVirustotal results 31.94% Amadey
2022-11-07n/aexe 869fa90f8739f36ceedbf5851e69a2c3657e5ac20a7493a4fc067c2221cc6aefn/a Amadey
2022-11-07n/aexe 4784dd0543ac52cbcc99c00be8329bb45f63a6750fb69dd7fe1c310208f1f9den/a Amadey
2022-11-07n/aexe a2b6a98905e13d8fd736d1046505e356375db660e9ad89477ba6dd45f6acb6a6n/a Amadey
2022-11-07n/aexe 6e95bc499e1ec3d6e15d72bfdb90ddd296cb5be325e7cf5925c86e9341bb6643n/a Amadey
2022-11-07n/aexe ca98d205e892119079394b13df9651847f17359011010b19e19230b95c7f0c2aVirustotal results 36.11% Amadey
2022-11-07n/aexe 5ed05e406815a65c8db9d9e33beb9856e9395f8d1dc7b6cbfc12bfa9cc4c580dn/a Amadey
2022-11-07n/aexe be5722e8a968d49e25574211b4d226849b96f4c1f6b06aac7534210db2b7797bn/a Amadey
2022-11-07n/aexe 12397ba3b49bb5e1b6c97daf2f83024843b651b972b031e95df234afeb776be6n/a Amadey
2022-11-07n/aexe d35581384a9874e82ca817a52e9b23b2ff8f14fb2424fb37a0924686bc8011een/a Amadey
2022-11-07n/aexe 0bf2fabd5fbc44a640c63ad2a8510b4bd45a28c854b0906f692024e918adff84n/a Amadey
2022-11-07n/aexe 26582f8ff9fbeb4876a90cf0ec38ca4c45455b48cd9bf3a0d4e61a7de3b884d7n/a Amadey
2022-11-07n/aexe 6880bcc4d18b3c684c5571353282d29fd2e46b4f8a51aa401d370d22e968e2f8Virustotal results 32.39% Amadey
2022-11-07n/aexe 1d53b1c6183f05db5fef2b1f23000c9c93e7c7ecc60f2586254f0342840424d4n/a Amadey
2022-11-07n/aexe 4de9da50ad49c858a72c91bf5a5e945df288121abe277db1f048cb120a9c1d28Virustotal results 32.39% Amadey
2022-11-06n/aexe 06b73ab30244ca63a426267b35250c93b04f43f7939fa5b1823341492a582d18Virustotal results 29.58% Amadey
2022-11-06n/aexe 02c292f298bdc9104bab1737e591f76a80730a519ab2f12fd0164218229d8ba3n/a Amadey
2022-11-06n/aexe 0e582eba9ef63c0a590a632ff8351ea60ee1aa829b61c524a71d643224a8ad57n/a Amadey
2022-11-06n/aexe 58b1c1b782c0d519023c3c6e050fca959a36abf999619a54d777c3d3c34bdc15n/a Amadey
2022-11-06n/aexe 7cae03faa2517c3ca671fbcbf76f43391a1bc0b913bb697b8b9c9db501b58a48Virustotal results 36.11% Amadey
2022-11-06n/aexe 73b30d6b3a3cd38d23551f4c529cab2f30fbd8c0eba3ef49b93ac329011253e4Virustotal results 29.17% Amadey
2022-11-06n/aexe dcabc848ed37957b19a14845ced9457352e32b3a5ddd98a8e05479cef0abc743n/a Amadey
2022-11-06n/aexe b26dbeaab69d7fc2d74731c917f824be28a36d8f3e188626d0ca53022012d57en/a Amadey
2022-11-06n/aexe e5656c2d9a4d4f59b1d5ff438a645901e30b7ed96f35c7ae3bf96f202d6c11c1n/a RedLineStealer
2022-11-06n/aexe 2a7293f6ca4dc1fd08cfeb8571bf30d5a6c2c1ace514303a0ca6619cb98cc26an/a Smoke Loader
2022-11-06n/aexe 8c6cc003b22d2e89c2816be48eddb8a4be2bf50391c71c963d02f94a1e71509en/a Amadey
2022-11-06n/aexe 38d016809f459e05ef3663e03955bee3054bcf7543655070b021a264ccb177a5n/a Amadey
2022-11-06n/aexe 8185a6a2abd82f5cda2a2488057e3c9411f1e55372bd3db8c80a7f7bff98a93fn/a Amadey
2022-11-06n/aexe 342ab103cc41e5ba9f1b48064baa2ddfebe01fe83de16cf904be3b2f96e0fce9n/a Amadey
2022-11-06n/aexe 7c62bb878335edcda43095971826ea232c195c6784e2eebb1a07713ac59ab018n/a Amadey
2022-11-06n/aexe d04b3f83a0693ad28397f673e58bfee3a1b0f8cb7ff95926fbe495ffae4d9defn/a Amadey
2022-11-06n/aexe 0cba131e7ac3a6c1b492782d616c0c66f887281f3b9d8a53f16a5a9adbfd7b1en/a Amadey
2022-11-06n/aexe fc5c76b657cecae4141d0218893f83f00dbb97a15462e206f3ca944c479fb3fen/a Amadey
2022-11-05n/aexe 6d425ca4014a6d36e5051a06087977e67aece3bc1a9c203e957e6dba241595bfVirustotal results 28.33% Amadey
2022-11-05n/aexe f406e1d826633df3d5dfac3e26bdf98fabcc49e829290e8ddbd96576049b75a8n/a Amadey
2022-11-05n/aexe 5b1df4750d790d84e682eaf46506683e3ddcc285047d6482b62c86de9c758f4eVirustotal results 33.80% Amadey
2022-11-05n/aexe 306a0979d9ed6d0cd1914efebc3890702ba6d59a784cbb03dca86162f4c368b2n/a Amadey