URLhaus Database

You are currently viewing the URLhaus database entry for http://176.113.115.183/leta/nita1.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2525235
URL:	http://176.113.115.183/leta/nita1.exe
URL Status:	Offline
Host:	176.113.115.183
Date added:	2023-02-01 14:36:06 UTC
Last online:	2023-02-03 17:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2023-02-01 14:37:05 UTC to dl{at}redbytes[dot]ru)
Takedown time:	2 days, 2 hours, 42 minutes (down since 2023-02-03 17:19:53 UTC)
Tags:	Amadey exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-02-03	n/a	exe	cdff27759fc4225de77938ecee8dcf3df13f00ca1a44083408e5652be8f89934	n/a	Amadey
2023-02-03	n/a	exe	818de0f6b23c024b38e2bb6162dc9dea3a6e3b99610a26c501a65a3e6bc18f17	n/a	Amadey
2023-02-03	n/a	exe	0b4dba50a4b4673f6681be4e06175409d0e13875d2bb8f48deb85c4de82b9c44	n/a	RedLineStealer
2023-02-03	n/a	exe	dc5b34bdced7fa49e52334863cdd3834cde95b2e259bd91e64bb0ff491ead2f9	n/a	RedLineStealer
2023-02-03	n/a	exe	13fbe02b5bda307ba2ea7f12de31966d5d93ced9c2e9755d05a44902231f8f2c	44.29%	RedLineStealer
2023-02-03	n/a	exe	ff79367e72372a543a8dc2f9974c90e5fa61d286a52dc4b9a4e1a576052dfe58	n/a	RedLineStealer
2023-02-03	n/a	exe	598c10e16aca91f38e65d9a79e4dff53deed8897678f2b6115c19eb26c2a4c48	44.29%	RedLineStealer
2023-02-03	n/a	exe	c98c6cce1f6d5d8428978db579c7a281de9546412515c9e8f9714659c33b31c8	n/a	Amadey
2023-02-03	n/a	exe	b1e4d72e54e778a132ec963b38ade6911e59564cdb86f860b35105445cba0587	n/a	RedLineStealer
2023-02-03	n/a	exe	d014221e7665a769df2f0a71ea6c7254f87061bba767ba50165e8f48f3d5a8f4	37.14%	RedLineStealer
2023-02-02	n/a	exe	7303dc9ac90226dcb24e214df6d44e98edd5a06be7da14768c3b01d80a1b0c32	n/a
2023-02-02	n/a	exe	abc4060ae7020687f7f086d67da78613b6ad681be4379e1f3b70ede4143e1d59	n/a	RedLineStealer
2023-02-02	n/a	exe	b70d2d4ad15716f5aeac54ce62c7dadb43871c624ef0fd1a9e98e0b28c8cb5f5	n/a	RedLineStealer
2023-02-02	n/a	exe	9b937c2d0300b162822d6aefaadd4a05aa6005444a6ebb0c34be78019f50da8d	n/a	RedLineStealer
2023-02-02	n/a	exe	a4b84e177edb2a3bc5755d3a1f88595d8b830f88377aa6f91f296b1b59b6aebe	n/a	RedLineStealer
2023-02-02	n/a	exe	4b42d8504e2622f13e1605827e13140e81e204c3d0d2f0dfdeff0dc34f081178	n/a	RedLineStealer
2023-02-02	n/a	exe	3974a362e78341a13e78747c30cf901c007fb0bd3beca1f8162389d9ac486a21	35.71%	RedLineStealer
2023-02-02	n/a	exe	e48aa4847a6413fa389e78a59f80cc86b1e7d38f69a2e2b3290bcbfa5d5bd571	32.86%	RedLineStealer
2023-02-02	n/a	exe	fe15159587b30b55007c4ad99cba929386209b64aa19a28cb3ff9b28f74c7ff1	n/a	RedLineStealer
2023-02-02	n/a	exe	1d480df533e3b8393bddaecd85b153fe55072329cc5d52f78f7d99af8dcc5769	n/a	RedLineStealer
2023-02-02	n/a	exe	250f05183329680ee72afa9443073a442e5428c9c14efaa4e3c6185d75727211	n/a	RedLineStealer
2023-02-02	n/a	exe	06dde21a625335975829a48f2993f0ccf99a62c1756bd58f3e110aed0be12c86	n/a	RedLineStealer
2023-02-02	n/a	exe	7ef99cf6b2378214934b430a7b9513dfb3fc188fdf212477bf1dc906207663f5	42.03%	RedLineStealer
2023-02-02	n/a	exe	303262122fa39fdf8381e625e4def3bbb70a08f6ace6f8da04449438c606a3ca	n/a	RedLineStealer
2023-02-02	n/a	exe	66967d49e5d96c09737095adf9f655361955d4b41854662ced6cc2414f780db6	n/a	RedLineStealer
2023-02-01	n/a	exe	8fb600b8f74db4b37a558ede015e4b8fd93ac52ea5439f48d74cfab53e32490a	n/a	RedLineStealer
2023-02-01	n/a	exe	ef3fa7ccbf35dec0f93f5b2605227192e68bf486d5a646faafbca6cb33286bad	n/a	RedLineStealer
2023-02-01	n/a	exe	94ae82ff9d499f7bb11fb59101c73edd5d99886793b15f4cba5bb5d514f0a7a1	n/a	RedLineStealer
2023-02-01	n/a	exe	95c91222ca06190e3b9c107d387436214ed867cccc3684b2278744e930971865	n/a	RedLineStealer
2023-02-01	n/a	exe	5a81de0ae1985cca379f31cdbefe3a1f78576a2eba59a9683e6fbeda8f1de40c	n/a	RedLineStealer
2023-02-01	n/a	exe	41fa0edee86cfc72ac4bb3628b3773269038ca1227fe3abe88b878e39c4fdff9	46.38%	RedLineStealer
2023-02-01	n/a	exe	768eba7cebce8cef3a57585b6b718bbcb4ce6b3a63453a81731fa1285ce39e8f	n/a	RedLineStealer