URLhaus Database

You are currently viewing the URLhaus database entry for https://kondio-safari.com/2.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2485197
URL: https://kondio-safari.com/2.exe
URL Status:Offline
Host: kondio-safari.com
Date added:2022-12-24 15:08:09 UTC
Last online:2022-12-28 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: andretavare5
Abuse complaint sent (?): Yes (2022-12-24 15:09:08 UTC to abuse{at}lws[dot]fr)
Takedown time:3 days, 21 hours, 46 minutes Bad (down since 2022-12-28 12:55:16 UTC)
Tags:drop-by-malware PrivateLoader RedLineStealer link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-12-27n/aexe 007475d84db6b3046d60428b499f8a881dedcc4bc2b0e85222b725005699dbf8Virustotal results 19.72%RedLineStealer
2022-12-27n/aexe b3ecf50e232abd59a59b8015ff03f74e4b1285dd65d04ea0053de8bf1fc0b907n/a RedLineStealer
2022-12-27n/aexe a3f6dbe0e98b1bef0c4e4b4a31c7b3ea42e5e4d2df9a1cd618e3699ca8c72747Virustotal results 30.99% RedLineStealer
2022-12-27n/aexe 58d7db40a50b925a9dc7a31ab1a75c2ea242384008c7d07c18a2f4891e64a8f2Virustotal results 28.17% RedLineStealer
2022-12-27n/aexe 12647f02cfd078513ab7f32b82dcd67ac14f672a5988d45437c7dca5ffbabedan/a RedLineStealer
2022-12-27n/aexe 6d3c6795325dd55b1c07a70573875a31721fe3989f81fa761e8091f21a24b262Virustotal results 40.00% RedLineStealer
2022-12-27n/aexe da7e60e0d37a5b8064f287ac41b0802e47653f4c3978a509b78d8fbcc6f2f9f7Virustotal results 41.67% RedLineStealer
2022-12-27n/aexe b5e8852c7ca0b33b63dd35c38e0981ec382d32fe69f1c1453dfaf5a15418cea7Virustotal results 33.33% RedLineStealer
2022-12-26n/aexe 2f917c7224323ac3c9b7379d2876565adb9cf7b680c659c73158df8383e088b6n/a RedLineStealer
2022-12-26n/aexe 33ffecf30b60d3b70498b0990c288a2333a55a1477375115581d226bc6a6d80bn/aRedLineStealer
2022-12-26n/aexe 6eb7ccf3426f06adf611a28d5f476e94a5e2451674534a49f841be42a49f35ben/a RedLineStealer
2022-12-26n/aexe 448a9411445529ed92410e76a188477b7d9d3beb0eb3025a7b52e4e40df9a539n/a RedLineStealer
2022-12-26n/aexe 964dca57b4d7f5b9d8f4a7362eafa659c57b9650828bc44420a17e6182fb85d9n/aRedLineStealer
2022-12-26n/aexe 0a85cd28bf585161600770a1fcfeed0478291b56b124fa672b4e5e6af5786476n/aRedLineStealer
2022-12-26n/aexe 3e791c43864dc520b5fe936e13dda7e54cd7ab177572a19b5d0e92514d8207d0n/a RedLineStealer
2022-12-26n/aexe 98a9acdad4855e3a9fb5f24fc6a94303845f24bf7df098cc4a6ba3d3cc562ab8n/a RedLineStealer
2022-12-25n/aexe 6262bb24d9e2babfa0eba8af7785fedae014676e9c09dcd40663f727439bcd03n/a RedLineStealer
2022-12-25n/aexe fcf0cb29bc4af64d5e1f9d34d71ea6d9936bcaefedcbe84bfd37ed048646546an/a RedLineStealer
2022-12-25n/aexe 86d107ecb183a07d0a3f51107749697ff99fba158008d48ea69a7186fec88420n/a RedLineStealer
2022-12-25n/aexe 6dc0c8e8a21dfde1379366fb0f7a14da5e276bc87173dfa18fe67428f3bd3f46n/a RedLineStealer
2022-12-25n/aexe 505509de0eccbd99559118cc90f42f5618c68827d963394afdef810c7fc3b2f1n/aRedLineStealer
2022-12-25n/aexe 3ca4879853a8f13a89473cb07e7ae77ab830abbf0ea5e09b3f525c5810b153b9Virustotal results 32.39%RedLineStealer
2022-12-25n/aexe 99b7396773e11d0a1d44f674310025344f2d8c9d2813d33e9bd7dd35ac5f2360n/aRedLineStealer
2022-12-25n/aexe 13b8a421f7b03dc4ff1ab5a537dc120b89f1c1daacbbb2678ab323a9f5a56c47n/aRedLineStealer
2022-12-24n/aexe 8e2e0590b0418adf88d487f37a49107538e7e2d243f165845852c3f7ece6a337n/aRedLineStealer
2022-12-24n/aexe 1268e655f6de27245a9d7d1b5a8ef50484865fd9833078ecec2c46c3247c7c6fVirustotal results 33.80%RedLineStealer
2022-12-24n/aexe 18b946d10fd3e8d8508fd47749aef1df080e2804b3457f2f4589da13065eaccfn/aRedLineStealer