URLhaus Database

You are currently viewing the URLhaus database entry for http://62.204.41.90/sarda/fular1.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2522538
URL:	http://62.204.41.90/sarda/fular1.exe
URL Status:	Offline
Host:	62.204.41.90
Date added:	2023-01-30 10:36:05 UTC
Last online:	2023-01-31 18:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2023-01-30 10:37:05 UTC to abuse{at}gorizontllc[dot]ru)
Takedown time:	1 day, 7 hours, 30 minutes (down since 2023-01-31 18:07:54 UTC)
Tags:	exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-01-31	n/a	exe	8d9cc932a8c8d0d59b03f6ccfe063c57a47534b7f56ee95be4701f2dcc4359fd	n/a	RedLineStealer
2023-01-31	n/a	exe	45816853564f3cb2f53bc215ff6cfa4454205cf49f60615ec6c862b07ba470af	n/a	RedLineStealer
2023-01-31	n/a	exe	3e8c02b2f79b5bcde41ed274f3701758572fadf8d46d26220ea71f6140ba87c4	n/a	RedLineStealer
2023-01-31	n/a	exe	6efd958606ec90cc6f25465df9b2c8e5fc57cf8273f625575072184c45056d3c	n/a	RedLineStealer
2023-01-31	n/a	exe	c00bfc39058a4aea98fa37af55a1f8e184963c0a8009cb5af70698c7ce710fcf	n/a	RedLineStealer
2023-01-31	n/a	exe	0202f9d47b918598cb9bf91c19f91b6d673e8546b7a342f9412ec33ebb08dd3f	n/a	RedLineStealer
2023-01-31	n/a	exe	043bbb47e714983e34511ddfdf954ebb8b7ff83db41636a4fd13c0a5ecc912c5	n/a	RedLineStealer
2023-01-31	n/a	exe	a304fc511b913e65ba0dcfd2caea58f967f455cb3436e6b6275bb051749a0d73	n/a	RedLineStealer
2023-01-31	n/a	exe	98f051c829cc863561995a46c07bb5e7c043a318bc2a4b5e6d1558c4dbe8de80	n/a	RedLineStealer
2023-01-31	n/a	exe	23471129d64141ddb76aa5dfda8bd159e0674d87b9ae7a5b0d503caa2c7145ee	n/a	RedLineStealer
2023-01-31	n/a	exe	0ad8974967e5b040c9f112adf9ab7ad5ea091d0abd3d59972f4abe7fd3cf0e38	n/a	RedLineStealer
2023-01-31	n/a	exe	7225159bcc0e1bd185cc9ace6c79b51ed90015553feb36b1266abd9744518265	n/a	RedLineStealer
2023-01-31	n/a	exe	ab7655834ed8de755fd0e542ecfe3e7cfb33d033f156260fd3783b369825a766	n/a	RedLineStealer
2023-01-30	n/a	exe	ffdac5f06d01a215a72ac718af799d9cd5c3a37ef9579e6d52ddeedf3371be6e	n/a	RedLineStealer
2023-01-30	n/a	exe	887b308094e75dce34e38e52860010e8ce22c78f87bbe3735f4cfbf57366e993	n/a	RedLineStealer
2023-01-30	n/a	exe	6d47c4f3aa896e3c81f097337159c6b0ddbe231d1226fd9c9b833638adb2b056	n/a	RedLineStealer
2023-01-30	n/a	exe	c0ac1f32d94c24588592f1e48e50618661141b9c8d3b33a942603b46baf7edf1	n/a	RedLineStealer
2023-01-30	n/a	exe	e131d969329ac28bb0b5bf9e4d0ab500950958f0ef5a28c8af14c25d3afe4923	n/a	RedLineStealer
2023-01-30	n/a	exe	bfce4ceceb39988f6fa4e9b498673ccc20f6e9b9ad4a803ec38fbfd6bebaf12e	n/a	RedLineStealer
2023-01-30	n/a	exe	c656768d580da10ebec5cd4d211da1fb70a2e40be23dcd6897faf5070274dceb	n/a	RedLineStealer
2023-01-30	n/a	exe	548a2a81d9aa6b91f0f7fb44f1e5a5fc8febd68134d73a3d191753083cf289ff	42.86%	RedLineStealer
2023-01-30	n/a	exe	18dfa886e69641bb8e681733a3be42d153d734e1e103910cde2143fe9fd5c09b	n/a	RedLineStealer