URLhaus Database

You are currently viewing the URLhaus database entry for http://62.204.41.90/dell/trena.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2522535
URL:	http://62.204.41.90/dell/trena.exe
URL Status:	Offline
Host:	62.204.41.90
Date added:	2023-01-30 10:36:05 UTC
Last online:	2023-01-31 18:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2023-01-30 10:37:05 UTC to abuse{at}gorizontllc[dot]ru)
Takedown time:	1 day, 7 hours, 25 minutes (down since 2023-01-31 18:02:48 UTC)
Tags:	exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-01-31	n/a	exe	850cd190aaeebcf1505674d97f51756f325e650320eaf76785d954223a9bee38	62.86%
2023-01-31	n/a	exe	d7e88472ba1c93fc9186189cec9650fd323124c397808fddf51626355cf02bcb	n/a	RedLineStealer
2023-01-31	n/a	exe	4509c17a726b501c4e53dca03ef01f854a21ef76c34479f0664590a5d3e4a5e3	n/a	RedLineStealer
2023-01-31	n/a	exe	b3d6b025a07f766dbeea274339d64df7c3ac60ee3bd9374f3c4095f87cfd564d	30.88%	RedLineStealer
2023-01-31	n/a	exe	850424155ee3fed9a770016828d6bef4da87c1e2c3c8ad7394586d71a466a2f2	n/a	RedLineStealer
2023-01-31	n/a	exe	ff1a47e896fd7ab3121312d38cdc4869d657fdedd5f80cd37cef98741df396b8	n/a	RedLineStealer
2023-01-31	n/a	exe	f4ca53174fe9af954d7a683802474af04ea5ceedd36e7c09e1d526931cddfa6b	n/a	RedLineStealer
2023-01-31	n/a	exe	d7f70754b6711765bce39a63665c8751aac6cb4cfbf02af6d69f31f7b54fcab4	n/a	RedLineStealer
2023-01-31	n/a	exe	89974c7e54e50a51c8264b0d9df2651a762836ff394a33ff5ab6c9e59aa515d4	n/a	RedLineStealer
2023-01-31	n/a	exe	f7b2bd0b936dc8d299c4424aef17b7d4f1f3b0bef7dbb0ea58f570169d05ef9f	n/a	RedLineStealer
2023-01-31	n/a	exe	775186cb7736272cab20d3fb24c3ddcb251a7aaeab954a575513d987fef3caf5	37.68%	RedLineStealer
2023-01-30	n/a	exe	b228fb75ab9e17894d4ba8e2b2bb572e217ced4d9018604aa397a04b7a2a93ac	n/a	RedLineStealer
2023-01-30	n/a	exe	019d0aa5cefe0d61170dd4e3446e5337d272200255123d98ae429c13742e5e7e	n/a	RedLineStealer
2023-01-30	n/a	exe	3e8b49c064ae53b4c2d63fd475af72479a31e10eaaad3b8b43d29c1f1a8050be	n/a	RedLineStealer
2023-01-30	n/a	exe	6b45ba2302fb3a301b4e63485329dab471ef2f3b9a265b71c0f0556d65b4910c	n/a	RedLineStealer
2023-01-30	n/a	exe	333ec094eda4208f1dff736f520466c1251ae6240d33ba33b2910e3f822037c3	n/a	RedLineStealer
2023-01-30	n/a	exe	cd1e51dd7489606fc3f4d89dd12b7957206c827c63e346e426a8c1f228b816dd	n/a	RedLineStealer
2023-01-30	n/a	exe	fcca12ba324be5e64de0d32deb5ceae026e64c35deb8d1e4e36324a585559601	n/a	RedLineStealer
2023-01-30	n/a	exe	265635c6e56859165e094e8ab02e33de58352f1d0c8bec4aa11d8539b2b6fcb8	42.86%	RedLineStealer
2023-01-30	n/a	exe	a7d4f615671c918aaa9c8a71244581a8acf3d6fff3a012142f42867deaaf3e64	n/a	RedLineStealer