URLhaus Database

You are currently viewing the URLhaus database entry for http://185.216.71.16/new/new.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2404941
URL: http://185.216.71.16/new/new.exe
URL Status:Offline
Host: 185.216.71.16
Date added:2022-11-08 15:45:09 UTC
Last online:2022-12-08 00:XX:XX UTC
Threat:Malware download Malware download
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2022-11-08 15:46:12 UTC to abuse{at}des[dot]capital,abuse{at}serverion[dot]com)
Takedown time:29 days, 8 hours, 56 minutes Bad (down since 2022-12-08 00:42:50 UTC)
Tags:exe Formbook link opendir

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-11-28n/aexe dcc8a16c411d371bf110f3d0bfe6a4224a53810844ef1bc02d3f89f2e02e7c0bn/aFormbook
2022-11-24n/aexe 03bdef1835627c2aff6b3c97d3e2096f95606c52769845304f1702c1bf62bc6an/aFormbook
2022-11-23n/aexe 46c11187b0eeba2ad55a36d97fc897cd2612a4cdf491405826346092af6e261en/aFormbook
2022-11-23n/aexe a0100cdcf0ca5dc88199e0492a61e0c750b4f8c2da8098a1a5648bc1d46ce50en/a 
2022-11-22n/aexe 37372679b024d50d46f5c1dbe0c0e1de65ff4b97a8e3915d229982769c891a2bn/aFormbook
2022-11-22n/aexe 31290c42c120bf24a495dbaea237c72ee00f267128bc811280ff16756875e222n/a 
2022-11-21n/aexe 747dac1e7f06dfc43cd785fda4ef50c1b8f8dab4d02087f167c51c4ac465af3dn/aFormbook
2022-11-20n/aexe 596b439c3130f5a6668f71725e2cb80791bcda5cad2cbd8ba828e7ef676118f4n/aFormbook
2022-11-18n/aexe 02811c0c7eed997879c5c54e2b8ac6bd2e0ef9aee0df3ab0ff7273e6234010fan/aFormbook
2022-11-18n/aexe 6360a668af79e33842abc28064ac6a65829ddd3182f6ae0e2cbf84488b8e2507n/a Formbook
2022-11-17n/aexe bc3d6ac010a0a9b7dd04daeef112c3aa5524fd52076cc38665d4ff7377292c85n/aFormbook
2022-11-17n/aexe 70979411d48a99855f53ecbc0ceb1d2d9fc42e8c423976567cce06f2e76d25a8Virustotal results 29.31% 
2022-11-16n/aexe 82dab0084009dd05a0beee74a261131edf8ebe11a9a4e3988ac37fe58656511bn/aFormbook
2022-11-16n/aexe a5c16ba971fe03602b849056cc54bdf14af77f14c0889cebbc7e902b89178678n/a 
2022-11-15n/aexe 3d2cbed1415d9c5abac10f801c53569d98a206baa314201df0bf75ad8b0f3a47Virustotal results 28.17%Formbook
2022-11-11n/aexe ff25677389d599682cc411460963f6adbff3879c2f2d3d7239312acfd57f42feVirustotal results 31.34%Formbook
2022-11-10n/aexe 0c9dc6461e9d17d77e3a04b5e60a0c4ad3ebbffd70f7a2c3eb9c6b52b9f94cfan/a 
2022-11-10n/aexe 06f70f464ff8f4c5049e49327ed9e0d2bf07ba874a2205a201053301f1a372b5n/a 
2022-11-09n/aexe 0ffa0fb8a347d9ec67f54f94d9b2c4c9550b4f97b664bf3acf2d117bd568e12en/aFormbook
2022-11-09n/aexe 1b2a39c6d89881862439d0870f47cfacd6d6ab60cd39cf1bc7d2135a738c512dn/a 
2022-11-09n/aexe e0e9cc5a3d0d4bf2782d25d0a578b9f354c7d5ad215e65c1090e378c91e0d63en/a 
2022-11-08n/aexe ee5d38dba17ae62136092b7288149dd6fc472a829eb35daee3047ec5d32111b5Virustotal results 32.39%Formbook