URLhaus Database

You are currently viewing the URLhaus database entry for http://176.113.115.183/leta/nita.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2525238
URL:	http://176.113.115.183/leta/nita.exe
URL Status:	Offline
Host:	176.113.115.183
Date added:	2023-02-01 14:36:06 UTC
Last online:	2023-02-03 17:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2023-02-01 14:37:05 UTC to dl{at}redbytes[dot]ru)
Takedown time:	2 days, 3 hours, 11 minutes (down since 2023-02-03 17:48:53 UTC)
Tags:	Amadey exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-02-03	n/a	exe	cdff27759fc4225de77938ecee8dcf3df13f00ca1a44083408e5652be8f89934	n/a	Amadey
2023-02-03	n/a	exe	e99c991a0e212e07b49a05c1af19f14c07ad9dd904cdc9805925ced9bcd2459d	n/a	Amadey
2023-02-03	n/a	exe	0b4dba50a4b4673f6681be4e06175409d0e13875d2bb8f48deb85c4de82b9c44	n/a	RedLineStealer
2023-02-03	n/a	exe	dc5b34bdced7fa49e52334863cdd3834cde95b2e259bd91e64bb0ff491ead2f9	n/a	RedLineStealer
2023-02-03	n/a	exe	13fbe02b5bda307ba2ea7f12de31966d5d93ced9c2e9755d05a44902231f8f2c	44.29%	RedLineStealer
2023-02-03	n/a	exe	ff79367e72372a543a8dc2f9974c90e5fa61d286a52dc4b9a4e1a576052dfe58	32.86%	RedLineStealer
2023-02-03	n/a	exe	f8d86ffd797da81b58136a711f18088c235dc2db72cfb19cee744f6612db6120	n/a	RedLineStealer
2023-02-03	n/a	exe	c98c6cce1f6d5d8428978db579c7a281de9546412515c9e8f9714659c33b31c8	n/a	Amadey
2023-02-03	n/a	exe	10b35cb93d991f52e7ca14c7a2ab707c2bf51d3337adbf47e7833d695a2b2e1c	n/a	Amadey
2023-02-03	n/a	exe	b1e4d72e54e778a132ec963b38ade6911e59564cdb86f860b35105445cba0587	n/a	RedLineStealer
2023-02-03	n/a	exe	d014221e7665a769df2f0a71ea6c7254f87061bba767ba50165e8f48f3d5a8f4	37.14%	RedLineStealer
2023-02-02	n/a	exe	abc4060ae7020687f7f086d67da78613b6ad681be4379e1f3b70ede4143e1d59	n/a	RedLineStealer
2023-02-02	n/a	exe	b70d2d4ad15716f5aeac54ce62c7dadb43871c624ef0fd1a9e98e0b28c8cb5f5	n/a	RedLineStealer
2023-02-02	n/a	exe	9b937c2d0300b162822d6aefaadd4a05aa6005444a6ebb0c34be78019f50da8d	n/a	RedLineStealer
2023-02-02	n/a	exe	c3bc3e8b2938e6df87e0793a9c89f72edbdf41a4c39bcc1646fb29aa716c5c61	n/a	RedLineStealer
2023-02-02	n/a	exe	4b42d8504e2622f13e1605827e13140e81e204c3d0d2f0dfdeff0dc34f081178	n/a	RedLineStealer
2023-02-02	n/a	exe	3974a362e78341a13e78747c30cf901c007fb0bd3beca1f8162389d9ac486a21	n/a	RedLineStealer
2023-02-02	n/a	exe	e48aa4847a6413fa389e78a59f80cc86b1e7d38f69a2e2b3290bcbfa5d5bd571	n/a	RedLineStealer
2023-02-02	n/a	exe	fe15159587b30b55007c4ad99cba929386209b64aa19a28cb3ff9b28f74c7ff1	34.29%	RedLineStealer
2023-02-02	n/a	exe	862769c777a16b41d925fc395299ab3997110f336a1b72c4799e599a943e51f2	n/a	RedLineStealer
2023-02-02	n/a	exe	932e06ef373d93ea1cde5e4fef13d321e5ce8b3b707be937e87264fb64c3a545	n/a	RedLineStealer
2023-02-02	n/a	exe	1d480df533e3b8393bddaecd85b153fe55072329cc5d52f78f7d99af8dcc5769	33.33%	RedLineStealer
2023-02-02	n/a	exe	3baf17a23a490f68f9a92415e0bdcd81162f3fec71775de9442817edfdff8a2e	n/a	RedLineStealer
2023-02-02	n/a	exe	250f05183329680ee72afa9443073a442e5428c9c14efaa4e3c6185d75727211	n/a	RedLineStealer
2023-02-02	n/a	exe	06dde21a625335975829a48f2993f0ccf99a62c1756bd58f3e110aed0be12c86	n/a	RedLineStealer
2023-02-02	n/a	exe	7ef99cf6b2378214934b430a7b9513dfb3fc188fdf212477bf1dc906207663f5	42.03%	RedLineStealer
2023-02-02	n/a	exe	303262122fa39fdf8381e625e4def3bbb70a08f6ace6f8da04449438c606a3ca	n/a	RedLineStealer
2023-02-02	n/a	exe	66967d49e5d96c09737095adf9f655361955d4b41854662ced6cc2414f780db6	41.43%	RedLineStealer
2023-02-02	n/a	exe	0b7804cb7e24879a4fe9268bc4c427f5200b99b89c4fab051c6e7500bdeb812c	n/a	RedLineStealer
2023-02-01	n/a	exe	8fb600b8f74db4b37a558ede015e4b8fd93ac52ea5439f48d74cfab53e32490a	n/a	RedLineStealer
2023-02-01	n/a	exe	ef3fa7ccbf35dec0f93f5b2605227192e68bf486d5a646faafbca6cb33286bad	n/a	RedLineStealer
2023-02-01	n/a	exe	94ae82ff9d499f7bb11fb59101c73edd5d99886793b15f4cba5bb5d514f0a7a1	n/a	RedLineStealer
2023-02-01	n/a	exe	5a81de0ae1985cca379f31cdbefe3a1f78576a2eba59a9683e6fbeda8f1de40c	n/a	RedLineStealer
2023-02-01	n/a	exe	41fa0edee86cfc72ac4bb3628b3773269038ca1227fe3abe88b878e39c4fdff9	46.38%	RedLineStealer
2023-02-01	n/a	exe	768eba7cebce8cef3a57585b6b718bbcb4ce6b3a63453a81731fa1285ce39e8f	n/a	RedLineStealer