URLhaus Database

You are currently viewing the URLhaus database entry for http://193.106.191.30/MicrosoftKeys.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2422680
URL:	http://193.106.191.30/MicrosoftKeys.exe
URL Status:	Offline
Host:	193.106.191.30
Date added:	2022-11-17 15:16:05 UTC
Last online:	2022-12-12 09:XX:XX UTC
Threat:	Malware download
Reporter:	andretavare5
Abuse complaint sent (?):	Yes (2022-11-17 15:17:11 UTC to info{at}kanzas[dot]msk[dot]ru)
Takedown time:	24 days, 18 hours, 5 minutes (down since 2022-12-12 09:22:59 UTC)
Tags:	dropby PrivateLoader RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-11-23	n/a	exe	e3c6e8cd5be1ceeec2cafaa59d8acadf6ec6e26e0d8c225d2b3c264622df0fa7	n/a
2022-11-23	n/a	exe	ec7f6e8e4a1be817948a7068579987eb9f28205d2f2cbbf270e185f9139627cd	n/a
2022-11-21	n/a	exe	08eb889660d9302844e073a90f01a999dd220ef609d276d415c6c67032db69be	n/a	RedLineStealer
2022-11-21	n/a	exe	f29190f00b2eb1f1452fb444e4668e8eeb23a7f29b97d3824e9ed688e8c8135f	n/a	RedLineStealer
2022-11-21	n/a	exe	adea78b4c7b6b76b80e581b55f082cc6df741b0e450706d3e10922589a604d7e	n/a	RedLineStealer
2022-11-21	n/a	exe	e51d7948a04eb3088f904b424b15405ed335fb86638a299fd4b07da25e65f0bc	30.00%	RedLineStealer
2022-11-20	n/a	exe	051c7fd0c329d57420826e84e0ff7888f7a2ea91176e1a39a5139a6422bb117e	31.94%	RedLineStealer
2022-11-20	n/a	exe	6bc8101e00a14f8ddab14d986ab1fd0eeaa9a69f10f73697edbae8b2e1bdcbf3	n/a	RedLineStealer
2022-11-20	n/a	exe	99d3e8e677488bed6f7ab10988da7eff0abc3032659aa1306951d9e60dcd1524	n/a	RedLineStealer
2022-11-20	n/a	exe	53b4f1f0c960519ef57056d3ec9206701ed03f8076bcdab819fd033b66a48970	n/a	RedLineStealer
2022-11-20	n/a	exe	47132890ae330f4d234910177cedd8c55f2e2221318708c0957abbe723092efe	n/a	RedLineStealer
2022-11-20	n/a	exe	a7195b4af46ea73c5ee41a67672c75d1c3204be7534251b59bab04bb18f4a8d2	n/a	RedLineStealer
2022-11-20	n/a	exe	614e1692785d9958b1cedba4ba648f3a5ba971100e3c89df9b12cf80a68100c0	n/a	RedLineStealer
2022-11-20	n/a	exe	90881c224d77520a4cffb5ff0dca516bc22474fe3eb8aecd565a08c9eee54f3f	n/a	RedLineStealer
2022-11-20	n/a	exe	9cb696bee3960c077367c53ee76957cb904b2888029e0188a28e71b809600153	n/a	RedLineStealer
2022-11-19	n/a	exe	cc8321982633efd133f144be8c2d287462dc8faf858fceccc7f4722544b3a749	n/a	RedLineStealer
2022-11-19	n/a	exe	3d68b1e6c89a05f0ccdc50ca3144123c736c31bc818e5078258028abb59401c2	n/a	RedLineStealer
2022-11-19	n/a	exe	db266ea1e5adb4a44965e8becef1d1ad7b41ba48d45afeff56aa2f229e16f165	30.99%	RedLineStealer
2022-11-19	n/a	exe	d7b731af07c7cd86b2d25c314ef0bff43e3c935daddc6d6d60a2efb8c3fa91c7	30.56%	RedLineStealer
2022-11-19	n/a	exe	9f802a2ecff20f749a93b197cb18ae6b67eeca85b12f801f3d5de0bae0c54066	n/a	RedLineStealer
2022-11-19	n/a	exe	3e79825ebc2073617eac207ffaf639a4dd97f7436b4b25b7226617adc59b689e	n/a	RedLineStealer
2022-11-19	n/a	exe	2a7b4330b0f92e2f07a053d2e4da5bd28de34e736c37ca7d799642519f6a6ef5	n/a	RedLineStealer
2022-11-19	n/a	exe	befb72b0133ceb62aebbc2cb3cec399f89b3a99f6cb163d494f1176685ed19fc	n/a	RedLineStealer
2022-11-19	n/a	exe	c8bf9f62050fd5ea2b05756d42aa309b142fda4109b2bba7d7d0b0bb8e2db289	33.33%	RedLineStealer
2022-11-19	n/a	exe	88a6579adeafcfb7ed5c9bcd054253ca0c33a2158624cf73c3f528e16add5f1e	n/a	RedLineStealer
2022-11-19	n/a	exe	de5a55573afe040af55517efbd83afc4c686e8c707fbec6ccdf8cdfdf39077dc	n/a	RedLineStealer
2022-11-18	n/a	exe	14d5376e3237559a314402aec6e3ab605304d32f3842d75fe2eda0e836688b8c	26.39%	RedLineStealer
2022-11-18	n/a	exe	369f8d75c0b2934f02ccac05557fd46e00b34bf2e8b793939b0ee32813385fe7	27.78%	RedLineStealer
2022-11-18	n/a	exe	64e9f03e59e64fe9a95a9966f0b4550a6f2c99ad99a08d45a0c79d383d720d1d	n/a	RedLineStealer
2022-11-18	n/a	exe	de53065c8fe0e17ab1b9875ad9d4bbefdf3ee2f749326bc5793f2da509f17da5	n/a	RedLineStealer
2022-11-18	n/a	exe	97b4110323e2aab7ab3c10be8f06d18e65cbfafbbe87f5ee77dc8cc42f150b5a	n/a	RedLineStealer
2022-11-18	n/a	exe	eb452bc0241954ff78b9780c4710f5657ab3bbddd8ba2316afe13379ed86ea3c	n/a	RedLineStealer
2022-11-18	n/a	exe	b10008bb099f081741456daf29af0a24934b4828e4071e934c3ebdf2d600fd71	n/a	RedLineStealer
2022-11-18	n/a	exe	9de65be7854aa8dd5431e5633ce0a8844fe9e688f2a79bac6ffff076757adca2	n/a	RedLineStealer
2022-11-17	n/a	exe	474b857a9ae1d311198c37c13617c00b1d111f3f2a1a462aaef75dda5a9e37d1	n/a	RedLineStealer
2022-11-17	n/a	exe	1e1c1160f517a2e9186861a2e2bb104fa33711c7d7f40f04cda721f50d62df5f	n/a	RedLineStealer
2022-11-17	n/a	exe	f18f8472bcfe47304e02dac3121d113af06d6eba8d94a0911d192807da34f294	31.43%	RedLineStealer
2022-11-17	n/a	exe	5c51b93c1c6c3417222b12f14d7182d2f6892da208bd363ceb8487d23c7d8361	33.33%	RedLineStealer
2022-11-17	n/a	exe	9cc5b5b9f77b61631e3e85e834b22e4b1685a6d43dc3b1c813b879e263b4a438	31.94%	RedLineStealer