URLhaus Database

You are currently viewing the URLhaus database entry for http://193.233.20.3/is/home/zhiga.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2525631
URL:	http://193.233.20.3/is/home/zhiga.exe
URL Status:	Offline
Host:	193.233.20.3
Date added:	2023-02-01 19:01:04 UTC
Last online:	2023-02-06 15:XX:XX UTC
Threat:	Malware download
Reporter:	andretavare5
Abuse complaint sent (?):	Yes (2023-02-01 20:35:08 UTC to shinomiya[dot]hosting{at}gmail[dot]com)
Takedown time:	4 days, 18 hours, 41 minutes (down since 2023-02-06 15:16:22 UTC)
Tags:	Amadey drop-by-malware PrivateLoader RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-02-06	n/a	exe	48d58189830cbd96cf05c3627c28c4385f63f34c0276b4f0f58fe6eb53d9df8c	35.29%	RedLineStealer
2023-02-06	n/a	exe	5d275427202f0def0fb46b5e470d56c7ca8999e8c866e4da7408fb854762ff3d	31.88%	RedLineStealer
2023-02-06	n/a	exe	1348f0d2f0edc75fa7063614a223f8d5d3fe1433b9c5c03164a1f6b33c4b8278	n/a	RedLineStealer
2023-02-06	n/a	exe	0fab275babfa7ba2b21b29e4efb1d38b2265a69a2fb86db374d7197b1d05b0de	n/a	RedLineStealer
2023-02-06	n/a	exe	67d9f860a2bf728918388c3cb328ed4093e8a01c4224bddc083507ed431658ad	37.14%	RedLineStealer
2023-02-06	n/a	exe	1668cddaa664eecb0dddb1337aa98205b5a6c143b47c04d2b70c6973ad47c0c4	n/a	RedLineStealer
2023-02-06	n/a	exe	328f08a4ed6354539a8aee1b5904905239cd48d37f47037cb967770a89ee10fb	n/a	RedLineStealer
2023-02-06	n/a	exe	0560deaf983f919b96cebb0fe17c28118b4b52b3d142664dddff068e03a59273	33.33%	RedLineStealer
2023-02-06	n/a	exe	a8225fb2419466511d04d5ac2111efe7872768501f49fdb8e9c89d2b243e221f	37.68%	RedLineStealer
2023-02-06	n/a	exe	ec4bb16de307088bbf1673784a45ea4676310a6afd918494cccced0bc871c473	39.71%	RedLineStealer
2023-02-06	n/a	exe	8ceb49ffb1f978becd6f1faff14e979f396e13b72301385498c490ed7de2b8e2	n/a	RedLineStealer
2023-02-06	n/a	exe	8b7eec692ffc591c832b49859d1325d7ab51a78dff695f5947c069479454c041	n/a	RedLineStealer
2023-02-06	n/a	exe	146b1e34b215648df11802da3b607ad42b38f4ef2aad59ee44887960b2f39b3a	37.68%	RedLineStealer
2023-02-05	n/a	exe	445b2d77c0d657d25f55c85c05c8e31c32438979a0a25292a512cc626518782c	n/a	RedLineStealer
2023-02-05	n/a	exe	2b675b58a615e60192edce313aedbb1fabb12531b26dcb60663768476b8f7d23	n/a	RedLineStealer
2023-02-05	n/a	exe	24d484b34e032003f0afa5498433a4e4ccb39abefe564b52af6fc5eb6f00d712	n/a	RedLineStealer
2023-02-05	n/a	exe	08d808416034e750b0bbc8f4a088552698c525f76e226a5f3ff59cd6e5a220a7	n/a	RedLineStealer
2023-02-05	n/a	exe	97aa31e6811d1c4e54d45210489101592c52009b2f0ad7946aeef8d9417f6ca2	n/a	RedLineStealer
2023-02-05	n/a	exe	8394294e5f6e28e68cabef13e247059466b100ecc2eec8c63bd5e1ce8062a5fb	n/a	RedLineStealer
2023-02-05	n/a	exe	2c806fe90660336abd2e685ca0dc54a7c6a46ed62d5e606179b9a845a7c79a65	n/a	RedLineStealer
2023-02-05	n/a	exe	be6a6e617c43155403ca66c8711ce140ac296996e519ddfa810dc748c78f7c70	n/a	RedLineStealer
2023-02-05	n/a	exe	fcacc4b58482ac40521190a8927c5a82db973acb65b04f02b4046c0dca9b5a55	n/a	RedLineStealer
2023-02-05	n/a	exe	5b6c84c09bfe0b51ad959259ac9ecfa4e21d440c9671e74499a5bb13c9e4d24b	n/a	RedLineStealer
2023-02-05	n/a	exe	cf3c983da21f765c0e8edc64c8121ae2e7e7864fc2d3b5539996f08e24c859d1	n/a	RedLineStealer
2023-02-05	n/a	exe	97528c214e35529f74133508b0b7b7ba84f227663d899e0e5a3805c0442c06cb	40.00%	RedLineStealer
2023-02-04	n/a	exe	377902c6a0224da517c5b2158c4249e0507d95871aab9399000e22d3e993bd74	n/a	RedLineStealer
2023-02-04	n/a	exe	f4536237e0e266fc43d9674b3e0b7fbe75d96500472342b607b65a4928197bbd	n/a	RedLineStealer
2023-02-04	n/a	exe	2d01ccfaf0759f25e5c1295407b13210bc36d99c20a9c934ba07246374d922d5	n/a	RedLineStealer
2023-02-04	n/a	exe	eea3064653587e54a46988beb77026830141417a8a552c4b5d1f1d4e0dbdef65	n/a	RedLineStealer
2023-02-04	n/a	exe	74f010b32c985a9151cafa95da88071ad790d7cd5f966b0d5acfe4d1b578b5a4	52.86%	Amadey
2023-02-04	n/a	exe	7114b1e46bd68fb8d8e16daebf0a34b36efd2d1674106599f39bf7419bcf723b	n/a	Amadey
2023-02-04	n/a	exe	42b5641e5885400a57499a0ce5937928b2e3843f30c86c820ef3631315a1fc6b	49.28%	RedLineStealer
2023-02-04	n/a	exe	8390f4631e557db48aac726a712df742343af5a547f01b87de444cc414133962	n/a	RedLineStealer
2023-02-04	n/a	exe	0a74c0aa2b21b8ff3595292e868a360009294f2d722de28109013992a8954465	47.76%	RedLineStealer
2023-02-04	n/a	exe	fd175c2b3abdea1356f213078f594cd33d643c39ce9db3360f30263bbafa90c9	n/a	RedLineStealer
2023-02-04	n/a	exe	716a1e8a2385af12aebf95bcaa32cd4b28db5c36aff954ccdfd4f550a5c54a00	n/a	Amadey
2023-02-04	n/a	exe	de9573b6d66e311748f8dd4deb632be37d5c03430dec960f3cb964fe72695a27	n/a	Amadey
2023-02-04	n/a	exe	15b8ce7c1ccf974f94c114d237f9779e67bb91dbaccc0f559a491659e6769efb	37.68%	RedLineStealer
2023-02-03	n/a	exe	afc76705bc1341ef989831e39b74c4ab4de644b9a18fd1e6a08950414f2d2b66	n/a	RedLineStealer
2023-02-03	n/a	exe	bac993e4fe8260c16d8b3936e4a2c0d4a4d37589e45f9860743432aff3804197	n/a	RedLineStealer
2023-02-03	n/a	exe	55a1d7e0314e4e1e3a68eaacc8446bad8a889f0297dde42fcdf1ca16971e195c	34.78%	Amadey
2023-02-03	n/a	exe	1ce750a2b863c4863b648ed0b3d0d90e87652d935e0616333d4c94e8d98143da	n/a	RedLineStealer
2023-02-03	n/a	exe	4e926a7ef3f5d7890cf3b890000757c2f79aac161f8359d460b9c9e6383b149b	n/a	RedLineStealer
2023-02-03	n/a	exe	0a9ad1b516536e141fa37603f8dda726720b4c776f033024fb4f7272f641f9e8	n/a	RedLineStealer
2023-02-03	n/a	exe	893b40ff0e8576eb9494a9a21e4752f4764d6a66133af24dae839fcd57aff2e4	n/a	Amadey
2023-02-03	n/a	exe	0b4dba50a4b4673f6681be4e06175409d0e13875d2bb8f48deb85c4de82b9c44	n/a	RedLineStealer
2023-02-03	n/a	exe	dc5b34bdced7fa49e52334863cdd3834cde95b2e259bd91e64bb0ff491ead2f9	n/a	RedLineStealer
2023-02-03	n/a	exe	4c71088d4df1a7c43f0d563634305a8ddce0ebaebaf2df7bcb4d972c55d91267	n/a	RedLineStealer
2023-02-03	n/a	exe	13fbe02b5bda307ba2ea7f12de31966d5d93ced9c2e9755d05a44902231f8f2c	44.29%	RedLineStealer
2023-02-03	n/a	exe	ff79367e72372a543a8dc2f9974c90e5fa61d286a52dc4b9a4e1a576052dfe58	n/a	RedLineStealer
2023-02-03	n/a	exe	598c10e16aca91f38e65d9a79e4dff53deed8897678f2b6115c19eb26c2a4c48	n/a	RedLineStealer
2023-02-03	n/a	exe	10b35cb93d991f52e7ca14c7a2ab707c2bf51d3337adbf47e7833d695a2b2e1c	n/a	Amadey
2023-02-03	n/a	exe	b1e4d72e54e778a132ec963b38ade6911e59564cdb86f860b35105445cba0587	n/a	RedLineStealer
2023-02-03	n/a	exe	d014221e7665a769df2f0a71ea6c7254f87061bba767ba50165e8f48f3d5a8f4	37.14%	RedLineStealer
2023-02-02	n/a	exe	b9b662268799479031a208b0d144559da6fe242a94b3329fc5b31d66f77900bf	n/a	RedLineStealer
2023-02-02	n/a	exe	f245f0c114f21bf3e08e3eecd9a1db8f6934c8321773bcc326e37458b3d3abbe	n/a	RedLineStealer
2023-02-02	n/a	exe	af7d617cb4151d5e372d775b98fa96038cd317d1bf73bee6481987bdaf0aa1fb	n/a	RedLineStealer
2023-02-02	n/a	exe	11ccf4ee0cb1a1883267f31068a7b6c1e05c0c1068d5731b543cde26f66fe3df	45.31%	RedLineStealer
2023-02-02	n/a	exe	f40c7ade5b9c0db90a222176cd2b2bccab34b4151e5f8941a0c04086de770d7b	n/a	Amadey
2023-02-02	n/a	exe	575ab216937075ea395aeeed13d84b8bb3297f81780b59165d1b697106e83449	n/a	Amadey
2023-02-02	n/a	exe	ab20677e0e62506c46f898df6a58bfce510999ed8ad13dc328aae56ef5000bd5	n/a	Amadey
2023-02-02	n/a	exe	e29edf9a9be9f66797439ca8e7aba4d97218d1bd2f9eab9c5fa5465ddc754c8e	35.71%	Amadey
2023-02-02	n/a	exe	3afce361856c31f7665e29156f285c5fda62162804eb74fbe22902f92744fb19	n/a	Amadey
2023-02-02	n/a	exe	2770144498bacc04d521d9c973e729007ff2c3694a353b979aae191f854ca59c	37.14%	Amadey
2023-02-02	n/a	exe	c57ba99f520a67028fa6b949bf174d46681ade2eb8c69bfa7b37944ca0738e09	n/a	Amadey
2023-02-02	n/a	exe	4ed06a694ba1832bb5526f2a5d52f6455f7ed317191f910d2e01d35bd8fba136	41.94%	Amadey
2023-02-02	n/a	exe	1a260322bd17696d664dc7e8023e287113d28dbeae9f0d9e0b6f0ab8e23dde10	40.00%	Amadey
2023-02-02	n/a	exe	e58abffa4b6d1463c1a9e19dbc44dd1c61dd6b52e1c4f3dae532a51bec2a62db	43.48%	Amadey
2023-02-02	n/a	exe	88294b5ff980e8d16d46e65608fdf678666f7a8d45581f9dd6e8d3d209f93612	42.86%	Amadey
2023-02-01	n/a	exe	6ef9b879049e0e8490811b7a90ccd47de82b17ba7e9850485e035780e474ff14	66.67%	Amadey