URLhaus Database

You are currently viewing the URLhaus database entry for http://198.23.202.49/sky/new/dos777.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	243630
URL:	http://198.23.202.49/sky/new/dos777.exe
URL Status:	Offline
Host:	198.23.202.49
Date added:	2019-10-11 07:23:40 UTC
Last online:	2019-11-08 23:XX:XX UTC
Threat:	Malware download
Reporter:	JAMESWT_MHT
Abuse complaint sent (?):	Yes (2019-10-11 07:24:06 UTC to abuse{at}colocrossing[dot]com)
Takedown time:	28 days, 16 hours, 23 minutes (down since 2019-11-08 23:47:07 UTC)
Tags:	MedusaHTTP PredatorStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-11-07	n/a	exe	b4bcd33c1ad3999953d158c6f17df0d0fd094c4715eaf87f686a4d530146867c	n/a	MedusaHTTP
2019-11-06	n/a	exe	90f6865286dc40c8cbb55f85f58f9347ab11ecf9d1976472cb5170280c41fc84	n/a
2019-11-06	n/a	exe	8a85b8e1dc214405f9fae552b88490efc2eb5ca65067b176bd747b130f1bd699	n/a
2019-11-05	n/a	exe	a58e681f4f733cd5e3749ea861b74dcd4f13ea0eaad2cf07bcea2e2f7f5c6046	n/a
2019-11-04	n/a	exe	57a2e2dbf2a4911ae39a73b40f8801dad49ac2e726d086cfff2fcdf8502e9a61	n/a	MedusaHTTP
2019-10-31	n/a	exe	8f89465b07dd4a7c726b2eae85b44ee77f030f4e76e7b04f1aac3f74a0474ae2	n/a	MedusaHTTP
2019-10-30	n/a	exe	e3ac61011f78a9d7befb436f0e799084555855f95fe1c29bc93572c357c1b0aa	n/a	MedusaHTTP
2019-10-29	n/a	exe	a8f9b78226bbe95ae35e175e79ede07a2f894829eb4d2dca63b887432a991ecd	n/a	MedusaHTTP
2019-10-28	n/a	exe	2087d3156a09a9f3aaa45e61e8f8a547caff9d83576322ad2675fb779bcf86a4	13.24%	MedusaHTTP
2019-10-28	n/a	exe	1fc6daf61c0aaa0e1ae19204668004ea73b29835c91fa5023a0b38438032db75	n/a	MedusaHTTP
2019-10-27	n/a	exe	f507655af6d35eec487be793730950bd29c086fc07703a2de1644842590d74f9	25.00%	MedusaHTTP
2019-10-27	n/a	exe	d7b30d6ef9904790d4d3cf637b1fb44bb0dd8798304c02cd29dc8528d5a4b0cc	n/a
2019-10-26	n/a	exe	dd0d31c0cf1fbf685dfbe7cbaf50ee965b9bc6edeb404c67e721a59b9b2cae4d	28.57%	MedusaHTTP
2019-10-25	n/a	exe	209dbfc4c492241698a5b80c0af074773a4e57dd0a0ef341426efb92dfe46d4c	16.90%	PredatorStealer
2019-10-23	n/a	exe	54f8299901b19a4cbc0c537f7f02ed615a9d253eda7d6774502c781f8bf83a8a	n/a
2019-10-22	n/a	exe	feb946d148f7453455ab28b1b6b05e6a810404628d36a3e1a5936e145ce4f7e8	21.43%	MedusaHTTP
2019-10-21	n/a	exe	69818a6b8b0c535ceabdc578058c93cc5e7338efc24f52104fc0beee3f48a654	n/a
2019-10-21	n/a	exe	9f076a7f0a0215f8e4c97ef75deca9e243082e6f444c89f42d8380de99f2e76d	18.57%
2019-10-20	n/a	exe	60ebe8a9a5884354e72de4efa26702d2be7ca64c2c9edacf72c51fa3a69952f4	n/a	MedusaHTTP
2019-10-19	n/a	exe	1b224edd8e9d976341fd185f6ae115cee62ba379dde9130ac086d4ae1e5a7a69	n/a	MedusaHTTP
2019-10-18	n/a	exe	233cf06724daa94b71e962a7d8915e783bcd37524dac884af9f2fab729476f03	n/a	MedusaHTTP
2019-10-17	n/a	exe	1c9a19612ca325f2065f3490734c9d1dbcc93c2caca6ef756d0aca01075070a1	n/a	MedusaHTTP
2019-10-16	n/a	exe	e806dd8fe344e38a00a76b52b28476b7e3e25147b5fc7eed01b8f0ab86bd7bf5	n/a
2019-10-15	n/a	exe	6b0201ff9fb2c65424593f78800e6366a722db64702f76864753067c0d1588e3	n/a
2019-10-15	n/a	exe	99309482ac64b019d42a905a6d12372bd8f3e9ec84118fbbc3f2a074b7fae38c	n/a	MedusaHTTP
2019-10-14	n/a	exe	67d25c982075a2f7d1faf4e7d1e116e577838d152077cd28e6e5465150c72cfb	n/a
2019-10-14	n/a	exe	0fbced499bf6ba7e8e61e120c8621867d42d9481b6a1a44c9163d1aee190cd5b	n/a	MedusaHTTP
2019-10-14	n/a	exe	7658f14373155a1bfbaf4974febe0a6cca36eb44d6a0c1d29f2d636c70e4155b	27.54%
2019-10-13	n/a	exe	7fb50a4af4459ce8ba201be79d0b021ded9d46087c02e33586b1de9d697f7218	27.54%	MedusaHTTP
2019-10-13	n/a	exe	9521b465d4a93b526af71fa5c382e65dee8ad09da05c0166c09f5ab78a321626	29.41%
2019-10-12	n/a	exe	6a6a25de5e609d1c3de72585cda17c9161b23ef1f9c6352b3fd2e582ce2abebc	27.94%	MedusaHTTP
2019-10-12	n/a	exe	340a1edce6259c39e3eb81150a926b40a267769335f006f1f8321fc460735233	n/a	MedusaHTTP
2019-10-12	n/a	exe	ca81dc6d40f32099831ad46af5e629b547111ee8d9bcf804c31bb6d6b27d7897	24.64%	MedusaHTTP
2019-10-11	n/a	exe	e8019df6572b12d099ac33d3c02e7cbd02971e55700430f5bbcd7855c4ff6ce0	n/a
2019-10-11	n/a	exe	64521d7224b8fddbb288699c4404a5774304b2b50b04289e4b2e5081c0418a87	n/a	MedusaHTTP
2019-10-11	n/a	exe	48501fa0480f8bccbdbc7924ec5a303ecd94535ae5380172f1917a7b61305c59	32.81%