URLhaus Database

You are currently viewing the URLhaus database entry for http://31.41.244.253/kara/niga.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2451178
URL:	http://31.41.244.253/kara/niga.exe
URL Status:	Offline
Host:	31.41.244.253
Date added:	2022-12-08 07:12:04 UTC
Last online:	2022-12-12 09:XX:XX UTC
Threat:	Malware download
Reporter:	andretavare5
Abuse complaint sent (?):	Yes (2022-12-08 07:13:04 UTC to dl{at}redbytes[dot]ru)
Takedown time:	4 days, 2 hours, 20 minutes (down since 2022-12-12 09:33:52 UTC)
Tags:	Amadey drop-by-malware PrivateLoader RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-12-11	n/a	exe	b5abfd22cee51a742c163d5ec42b22db2e2f0d5a7b472c12f45ed441a1f340f5	67.61%	RedLineStealer
2022-12-11	n/a	exe	86d88e21dc6151312324c3bc0bf679d30a45e454852ab698bd3e9c5cd30cba70	37.14%	Amadey
2022-12-11	n/a	exe	60f6fd9eb2727f3cd23ebbd6240f705d40afd06ba4517734bc09472f1b8b546f	39.44%	RedLineStealer
2022-12-10	n/a	exe	3b9a9f905b8ffab58530739ce0c1b5abf20cfb022c389cc0532da8f57b1b4bed	n/a	Amadey
2022-12-10	n/a	exe	735270fc28c77a17c1912c5e6d42b7e4e006fcc98f5b2c30a8c8b82ab7cc4703	n/a	Amadey
2022-12-10	n/a	exe	2ca231e2ea75f0dc1d82b824aa6580c476cd6b655a1adb1deb5b011587cfd32d	40.85%	Amadey
2022-12-10	n/a	exe	a68cc99eca32af9cfc1c6899b6b670b664a96ab2c22e22e8f705836364ea0f34	n/a	Amadey
2022-12-10	n/a	exe	0c70ea23514de6ee4e51cee37ed8fd00654d8a09674a4a6c9a0b0030b967eaf6	n/a	Amadey
2022-12-10	n/a	exe	eca9af12a8276bc4c6bf14b891f7150d94edf6cf6dfa64e96736cfefe01ab71a	n/a	Amadey
2022-12-10	n/a	exe	e60bde983001aae502901b9a36f6f728bde4a9c9562f01f33566c713a5d24638	n/a	Amadey
2022-12-10	n/a	exe	8aaaedf9149651f4a02855e3ce3652efb346912650d120d61a053d4940832ebe	n/a	Amadey
2022-12-10	n/a	exe	7700ba36b46c20bd2bb5bc76f23cbf064c96f890f2e95358165a325d0907eaba	n/a	Amadey
2022-12-10	n/a	exe	bb538efddfd7ecd6089e2b84964efc50b58ccb58ad5f2c29c2fdfed706c30be9	40.85%	Amadey
2022-12-10	n/a	exe	490cab0abed093066395e6e0a2d285792235669f054d139904595560f48c0fc7	n/a	Amadey
2022-12-10	n/a	exe	14035e7977d57d2b263e564146fc71d8a462df50924297aeca140525b3a70444	n/a	Amadey
2022-12-09	n/a	exe	ed0dbb2a4b12540bc18bbfedf0898e2719c0558e0cb59f8b46f24cc1b8db531d	n/a	Amadey
2022-12-09	n/a	exe	09d4065f8c8d2838e805f7ee1a00e8a6f203753248b3763f030e7044dff0bbc6	n/a	Amadey
2022-12-09	n/a	exe	9dbdc3c9e284fc587309b4a1a77be51648c5775ce99220bf96c61bda0dc9c284	n/a	Amadey
2022-12-09	n/a	exe	e9b1108b4e88967c62b73a1e392da592b8d44dc43b9c70cb56da5b76ce2d484e	n/a	Amadey
2022-12-09	n/a	exe	7f194e2b209903faaf9d196a319ce521511c272b84bc25225e6381075724c048	39.44%	Amadey
2022-12-09	n/a	exe	ed0519f891d16e2e9b63e1a4e482afa6f14aaa7750ffd8020c403f64c8f2c7b1	n/a	Amadey
2022-12-09	n/a	exe	9b41459b3890dc8cd4ea04e68bed8dd6670382f66265192226ddc14529ae4fb3	n/a	Amadey
2022-12-09	n/a	exe	927dab0e547bac8286ec7466ed3e6d13dccf154d2cfa94f731eb6d2838704f79	n/a	Amadey
2022-12-09	n/a	exe	29095ad33d62e7a596a74363fb3815a3245ae64b198f5a622415b5dcea62e944	35.21%	Amadey
2022-12-09	n/a	exe	b41300b36598c97def7004f3e0a60f52b04c1d78de0edec2c71668e41ed894e5	n/a	Amadey
2022-12-09	n/a	exe	ffb3b5acfac62b042a2670d3e0749c8c26fc4a20c5d7e72abb769a3a3220db7f	n/a	Amadey
2022-12-09	n/a	exe	f699f789401d587c40a6b42f6ad864eba953bcfab6ff1e882daf8d0481647ccb	n/a	Amadey
2022-12-09	n/a	exe	08716ddc2829484acf776a24d86709cc5863bc02a7736a34a906a65c183ff0ff	n/a	Amadey
2022-12-09	n/a	exe	aea7b5d1a5d7142341534c0864912f78a9f9b796076109314277f8c5698b4982	n/a	Amadey
2022-12-09	n/a	exe	073800cd8cc8699bc5441ea956715ae5df4d694b726df8dd6c0dd3ee74fc4284	n/a	Amadey
2022-12-09	n/a	exe	5e2895f410894329cc9d00f8bd9654534b4c03bab9ce07d12b4374a1f1323d9a	n/a	Amadey
2022-12-09	n/a	exe	51d878f00166f0fa41b1d26d3f1f386aae3697fd35bf1a798aecb442eca437c5	n/a	Amadey
2022-12-09	n/a	exe	655d879e601f9615c0db5cb3b64a16593a55a80a9fcd36bf3010609dc8356043	n/a	Amadey
2022-12-09	n/a	exe	5303903685c561fea5503c10bcb695e49a53f7b7f520562e4e06dd75f4d2f5f8	n/a	Amadey
2022-12-09	n/a	exe	81e1e6844fbb26b8858bf5efab95beb40abe5172b7f34b4e5b59372adaf210ab	n/a	Amadey
2022-12-09	n/a	exe	5e535fca8f9a9ffc8f15d6cc24ef479929f40c802959f788334898e3e074f87a	n/a	Amadey
2022-12-09	n/a	exe	67d33477a01e341bf7b476f9e36006e551680047a51e36ee27144177b43ae279	n/a	Amadey
2022-12-09	n/a	exe	53dfeec0fd19b6caf91977f975603c54c1b688f62f767f87f5e5e1402b9117c3	37.50%	Amadey
2022-12-09	n/a	exe	6e2a8c7d73124f53550cbed5ebb92fb968ad3d30e03f90b111edb04c29193b31	n/a	Amadey
2022-12-09	n/a	exe	fa69ce11f14f54bdcd09dd80227ae4dd67c3571803b5ff71b54e78fe79badb5a	n/a	Amadey
2022-12-09	n/a	exe	f8bdd973686c56d6c5a6c22fe6f02991b0e928e4778796a819118f6d83860e94	n/a	Amadey
2022-12-09	n/a	exe	ec3f28431cca4a69e07f7e67aa434a9ff4db4600c40f39f9a47e0f74462942dc	n/a	Amadey
2022-12-09	n/a	exe	50c723306cc6e6ac8d86af0a7c22ca56b85426223dce8685e89b69c8c5f8d2b9	n/a	Amadey
2022-12-09	n/a	exe	93db53c57ea6c3f83713e6a68892c4ae5c801d355b760f0b861fed1bbfa71f75	n/a	Amadey
2022-12-08	n/a	exe	bf2b57ec5048d574ad425e14ba2b184d6372b245eff964e63c10ff20a516d9a7	35.21%	Amadey
2022-12-08	n/a	exe	91114e48c517dfb130aaba4aaf16fa49e63d5c68206f34797651e228319a9652	n/a	Amadey
2022-12-08	n/a	exe	e16f7c2fe72f16b8abc057b2aa030a93aa0893251af7a8f5c4a5e09dc6d701a1	n/a	Amadey
2022-12-08	n/a	exe	4fbe207b354f6d24d404f0f1edf0562162d016d261b57200ee33f31e2693148b	n/a	Amadey
2022-12-08	n/a	exe	f1bde5908f624524c84b90c59a279fd456084ac3c6e660cae869fc045448cc4e	n/a	Amadey
2022-12-08	n/a	exe	fe3ae8dff0ea995492bd88dde47be8cb04c86e9e3649488e7660dfdf0d50f00f	n/a	Amadey
2022-12-08	n/a	exe	654707747a2873856917b4f743f30e240808023251e321c8b571edb8d4914e74	n/a	Amadey
2022-12-08	n/a	exe	e16d68f4d811f327f14e337f4a0bfdc616133c2300385a9eac29b272978c1f6a	n/a	Amadey
2022-12-08	n/a	exe	0549e96037003412239cbafb1c787d6b7963dd4b88148a4b631743ee7da9de4a	n/a	Amadey
2022-12-08	n/a	exe	abfb8689c686ad05177bd8064c528b0209c5882efde367ac71a5f4ef33312dd4	n/a	Amadey
2022-12-08	n/a	exe	50b4fd877978108f4e1944e3b46fa68b9cdf5e40752e9fe366d9a8fcff5e9404	n/a	Amadey
2022-12-08	n/a	exe	46ebbc17afa1e9e7e86ac13aeb39b2a1e0f866f681d73a5a8a752f5b9c477d5a	n/a	Amadey
2022-12-08	n/a	exe	78867102c50918967693a8e76a94a57897df54c6581ecc7017e46b44d9636be7	30.99%	Amadey
2022-12-08	n/a	exe	39437a6ab4a870c305ec8e6877bfc3837ee2d50006c707f723df0efb11bede31	n/a	Amadey
2022-12-08	n/a	exe	27d5f164e27915bf8ea82b02d05a5cb8f922d7318dae63ffd3dd1e11f64a13a0	n/a	Amadey
2022-12-08	n/a	exe	fb68b8b4ee9607132069a93d4c00f66ba97ff093268f34a35f8f94d7b8228224	n/a	Amadey
2022-12-08	n/a	exe	da03baaf29d5d84a1759242096e58dbb655e6e0f8096190b07afa7295cbdd43a	34.78%	Amadey
2022-12-08	n/a	exe	f3a9022b045cf24b4726b310a1094624ffc40f705b628f283cf4e3e2e4db2942	n/a	Amadey
2022-12-08	n/a	exe	425608cd7abc8902204a42ab2c7280915471c1bdcc4d49ff06e7d5a1635e5997	n/a	Amadey