URLhaus Database

You are currently viewing the URLhaus database entry for http://193.233.20.3/leta/nita1.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2525245
URL: http://193.233.20.3/leta/nita1.exe
URL Status:Offline
Host: 193.233.20.3
Date added:2023-02-01 14:36:11 UTC
Last online:2023-02-03 03:XX:XX UTC
Threat:Malware download Malware download
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2023-02-01 14:37:06 UTC to shinomiya[dot]hosting{at}gmail[dot]com)
Takedown time:1 day, 12 hours, 47 minutes Poor (down since 2023-02-03 03:24:12 UTC)
Tags:exe RedLineStealer link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-02-03n/aexe d014221e7665a769df2f0a71ea6c7254f87061bba767ba50165e8f48f3d5a8f4n/aRedLineStealer
2023-02-03n/aexe 0fe11375742310d8bfd604692a89099c71ed79a3f49ebaa0e0a217dbd853d602n/a RedLineStealer
2023-02-02n/aexe abc4060ae7020687f7f086d67da78613b6ad681be4379e1f3b70ede4143e1d59n/a RedLineStealer
2023-02-02n/aexe 9b937c2d0300b162822d6aefaadd4a05aa6005444a6ebb0c34be78019f50da8dn/aRedLineStealer
2023-02-02n/aexe 5afb1d4be8973f25098bada5ca62eb52ee41e8fccd7debbdbe2b4c9ae6911e30n/a RedLineStealer
2023-02-02n/aexe 4b42d8504e2622f13e1605827e13140e81e204c3d0d2f0dfdeff0dc34f081178n/a RedLineStealer
2023-02-02n/aexe 3974a362e78341a13e78747c30cf901c007fb0bd3beca1f8162389d9ac486a21n/aRedLineStealer
2023-02-02n/aexe 966d8abd0c9e9ccfaf38c8a492be749847fed9dea13cf73b513a5185c52b913bn/aRedLineStealer
2023-02-02n/aexe e48aa4847a6413fa389e78a59f80cc86b1e7d38f69a2e2b3290bcbfa5d5bd571n/aRedLineStealer
2023-02-02n/aexe fe15159587b30b55007c4ad99cba929386209b64aa19a28cb3ff9b28f74c7ff1Virustotal results 35.71%RedLineStealer
2023-02-02n/aexe 862769c777a16b41d925fc395299ab3997110f336a1b72c4799e599a943e51f2n/aRedLineStealer
2023-02-02n/aexe 932e06ef373d93ea1cde5e4fef13d321e5ce8b3b707be937e87264fb64c3a545n/aRedLineStealer
2023-02-02n/aexe 1d480df533e3b8393bddaecd85b153fe55072329cc5d52f78f7d99af8dcc5769Virustotal results 33.33%RedLineStealer
2023-02-02n/aexe 3baf17a23a490f68f9a92415e0bdcd81162f3fec71775de9442817edfdff8a2eVirustotal results 35.71%RedLineStealer
2023-02-02n/aexe 250f05183329680ee72afa9443073a442e5428c9c14efaa4e3c6185d75727211n/aRedLineStealer
2023-02-02n/aexe 06dde21a625335975829a48f2993f0ccf99a62c1756bd58f3e110aed0be12c86n/aRedLineStealer
2023-02-02n/aexe 7ef99cf6b2378214934b430a7b9513dfb3fc188fdf212477bf1dc906207663f5Virustotal results 42.03%RedLineStealer
2023-02-02n/aexe 303262122fa39fdf8381e625e4def3bbb70a08f6ace6f8da04449438c606a3can/aRedLineStealer
2023-02-02n/aexe 66967d49e5d96c09737095adf9f655361955d4b41854662ced6cc2414f780db6Virustotal results 41.43%RedLineStealer
2023-02-02n/aexe 0b7804cb7e24879a4fe9268bc4c427f5200b99b89c4fab051c6e7500bdeb812cn/aRedLineStealer
2023-02-01n/aexe 8fb600b8f74db4b37a558ede015e4b8fd93ac52ea5439f48d74cfab53e32490an/aRedLineStealer
2023-02-01n/aexe ef3fa7ccbf35dec0f93f5b2605227192e68bf486d5a646faafbca6cb33286badn/aRedLineStealer
2023-02-01n/aexe 47841ab127448862f4f7373fa41034c91735c93ba0bd2ef58ecddc0db5e23d3fn/a RedLineStealer
2023-02-01n/aexe 94ae82ff9d499f7bb11fb59101c73edd5d99886793b15f4cba5bb5d514f0a7a1n/a RedLineStealer
2023-02-01n/aexe 5a81de0ae1985cca379f31cdbefe3a1f78576a2eba59a9683e6fbeda8f1de40cn/a RedLineStealer
2023-02-01n/aexe 41fa0edee86cfc72ac4bb3628b3773269038ca1227fe3abe88b878e39c4fdff9Virustotal results 46.38%RedLineStealer
2023-02-01n/aexe 768eba7cebce8cef3a57585b6b718bbcb4ce6b3a63453a81731fa1285ce39e8fn/aRedLineStealer