URLhaus Database

You are currently viewing the URLhaus database entry for http://62.204.41.12/goka/brost1.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2509205
URL:	http://62.204.41.12/goka/brost1.exe
URL Status:	Offline
Host:	62.204.41.12
Date added:	2023-01-16 09:28:04 UTC
Last online:	2023-01-17 16:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2023-01-16 09:29:04 UTC to abuse{at}gorizontllc[dot]ru)
Takedown time:	1 day, 7 hours, 4 minutes (down since 2023-01-17 16:33:15 UTC)
Tags:	exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-01-17	n/a	exe	d6585ac1d93bce56450b721bb60939f3f74ca934055201ecb1705d895c91dba4	n/a	RedLineStealer
2023-01-17	n/a	exe	cf2b3f0297537c4c079f9a4f84969eb23fbb9317fea0edbbdd55c41763bf92bf	n/a	RedLineStealer
2023-01-17	n/a	exe	68e1febb1887f9a38f2eafb1e3ea64e5fcf714c7dc1a5a0d214e5c911f1d2f8c	n/a	RedLineStealer
2023-01-17	n/a	exe	29a63c00cdd05cc72723e4a111ac7156b90b1697c8f48ce80d711b1a6a6f0e2c	n/a	RedLineStealer
2023-01-17	n/a	exe	a348bfd634d43278e736f295613304660d7c48e7e0737b435cc56947450bcd7e	n/a	RedLineStealer
2023-01-17	n/a	exe	9b547403188a06bbd2096af56f05c996cc88582ad8820d95f8b3475708a8c53c	n/a	RedLineStealer
2023-01-17	n/a	exe	f6225e8a701fab1ca2afb507a7531ac67c3cd66f55d3c8ad782e12d5262ab324	n/a	RedLineStealer
2023-01-17	n/a	exe	0be4395e9e84e31e8b0da89662ae09740b6e90bb74a8b97c901ca161184a7dd4	n/a	RedLineStealer
2023-01-17	n/a	exe	88fc12ac72455221a63739e8991d6c59f89632df6540a20626bd84f6b8dbb1a2	n/a	RedLineStealer
2023-01-17	n/a	exe	7263f3b9f805d9894d74d558f99370f500124fd77c1b7cad8af215db9d6add13	n/a	RedLineStealer
2023-01-17	n/a	exe	6f80b652a018a5c5590bcbe04535c500b47fe75983dc8b24a980feaa8e509c77	n/a	RedLineStealer
2023-01-17	n/a	exe	eb2886f6c2ed134b196fb1d4674a44a2fcdce369b82b6348431b4993b0c76b4f	n/a	RedLineStealer
2023-01-17	n/a	exe	77f26f9fdb00434f0bda8349c2303ee3bf9d51db92d4dab61e28a1e50d6f1e4f	n/a	RedLineStealer
2023-01-17	n/a	exe	4ab7d036b2bfa19c4e63b0230282dd167e47917b72a4dce7bb847cf1932ca89f	n/a	RedLineStealer
2023-01-17	n/a	exe	f32696093f5ffe9dff08afbbf4589a4681aa53a0b9a9b2a5f619139834edd6cc	n/a	RedLineStealer
2023-01-17	n/a	exe	527c7daf8e675b63877019243a8b27245f0a2421f2acf138b010352bfd046ce0	30.00%	RedLineStealer
2023-01-17	n/a	exe	d3f4e44c10bb29ec48f0a67d367b927243f63f16013eec8d38a192a4ad2f04f1	n/a	RedLineStealer
2023-01-16	n/a	exe	84c87d1623aa0e5fcb382d28c55a2c259ff43d4a6cd34718440851ad4ae7bc81	n/a	RedLineStealer
2023-01-16	n/a	exe	025c1d11efa61b5824b1402b13de1ac84cadb7928cc9eb5f2552e97d333357c7	n/a	RedLineStealer
2023-01-16	n/a	exe	0e06fb8ec71a30279b6d3c2a7cca4df1cbb0e718ab07ecd897a718e78ec62f1c	n/a	RedLineStealer
2023-01-16	n/a	exe	63971950dfca67e93c48b6930724e9ce5eeabc74b5de2ed31e780a9c66ee7aec	n/a	RedLineStealer
2023-01-16	n/a	exe	1dfff5d86193f4d356f3b34f881c931d981a34e97bc666d1c3bf3b437f2a8ed0	n/a	RedLineStealer
2023-01-16	n/a	exe	7c4b9ef9af6a5d1a730298feb521ebdc115dc9e3ec3bfebdf7499b1fe78497ea	n/a	RedLineStealer
2023-01-16	n/a	exe	8ab710600c77254b8553ac6cc15300431a8b6a37fde22d4f4d8dde64c3d45959	n/a	RedLineStealer
2023-01-16	n/a	exe	3ce9c328caae11fe74f4ab6d29202bac6ebbc9bb3c0bf2adfc4bfbc823e29b50	n/a	RedLineStealer
2023-01-16	n/a	exe	2d15c1a499ff5ae36c8f7e88be915614da1c3e2da96438ce4672bea50844a551	26.32%	RedLineStealer
2023-01-16	n/a	exe	ae7887689ad1207903713659d1671937291476dca8ed786209fb2637ee6f2bfb	n/a	RedLineStealer
2023-01-16	n/a	exe	8f7779489db5683beba3c4bae236b52a5834b2df6d17f9126f04ea807ea1c145	n/a	RedLineStealer
2023-01-16	n/a	exe	affb1611b8a572bff4175f41f2f12635d59b714f19824243fc561dd308c9cc25	35.71%	RedLineStealer
2023-01-16	n/a	exe	2fff9ea3a4fc0cbe35b454161c92d2a98bc09f977e3cf427ef70ca8e96244e6a	35.71%	RedLineStealer
2023-01-16	n/a	exe	0a333ec1f3216d76adf315d6b35ba7f46511c009565de6465136643e33040595	39.44%	RedLineStealer
2023-01-16	n/a	exe	05d05029b5f6847a4234db7b97327c94ceba4c6afd5e3e21f007010b40792a92	n/a	RedLineStealer