URLhaus Database

You are currently viewing the URLhaus database entry for http://62.204.41.119/next/pilka.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2517263
URL:	http://62.204.41.119/next/pilka.exe
URL Status:	Offline
Host:	62.204.41.119
Date added:	2023-01-24 15:39:04 UTC
Last online:	2023-01-25 09:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2023-01-24 15:40:08 UTC to abuse{at}gorizontllc[dot]ru)
Takedown time:	18 hours, 14 minutes (down since 2023-01-25 09:54:10 UTC)
Tags:	exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-01-25	n/a	exe	966f1dd7747f4a3ea97c66aad2c4b1c509683db173f48e6589aa539727807c9c	n/a	RedLineStealer
2023-01-25	n/a	exe	e2dca132058c0de5f8116a7590934bfb3b8050810582257a328006c3029582cb	n/a	RedLineStealer
2023-01-25	n/a	exe	bddd3b172bae5588cf7d48d150d521c54f26b827390a90a324c46ce6f4b2f55c	n/a	RedLineStealer
2023-01-25	n/a	exe	7f64cef9e827e98ea52699d6f99409012d90fc22c1a467136e21985f83ea967e	n/a	RedLineStealer
2023-01-25	n/a	exe	ebbc26204f41020443be369e04cd8b17b44953e4e37cd5817ee0d77883b59162	n/a	RedLineStealer
2023-01-25	n/a	exe	c954eac26e49dc3f21da8c5b6d1523462e86392374e6880ee952e037d1a67afd	n/a	RedLineStealer
2023-01-25	n/a	exe	e78aa6fe31f36e82a39cc625a5e4c20a8f014558c257bf41a6aa2955520fdb6b	n/a	RedLineStealer
2023-01-25	n/a	exe	c6f201d61eb9fcbcffc65444ced3ae226615248c690f7647c1fd8a6f545a8f7e	n/a	RedLineStealer
2023-01-24	n/a	exe	048589ea3018e664d6fdc3faa93d652b6461e76e8353290ebde5df1b483f8c60	n/a	RedLineStealer
2023-01-24	n/a	exe	5fe1badcbe953df5a0ef020647950ddbe437fd56191d6e75ea88919af4d5da28	n/a	RedLineStealer
2023-01-24	n/a	exe	cef6bcc01e41da878b3ce85c111c3d0642e3eccf52846e9de0fe6128960822d6	n/a	RedLineStealer
2023-01-24	n/a	exe	71db1b1223fd4df410307a64ea7e4c35c72820ce71a166f97eaa979f44b70a8a	n/a	RedLineStealer
2023-01-24	n/a	exe	80059d19b737a50dd1b1761452581dee7976af770c50131f41d7876c9d7a0623	n/a	RedLineStealer
2023-01-24	n/a	exe	22e30e2eb592c22827710072d68eeff604571a8992bc7309b74e2932a9d25df2	38.57%	RedLineStealer
2023-01-24	n/a	exe	f4c1f6d62de7e7d21982d732a6bb499648a677fda000f6429fd2317ac9435b57	n/a	RedLineStealer