URLhaus Database

You are currently viewing the URLhaus database entry for http://193.56.146.5/koh/narko.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2551757
URL:	http://193.56.146.5/koh/narko.exe
URL Status:	Offline
Host:	193.56.146.5
Date added:	2023-02-27 16:16:13 UTC
Last online:	2023-03-04 14:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2023-02-27 16:17:05 UTC to info{at}janeirollc[dot]ru)
Takedown time:	4 days, 22 hours, 2 minutes (down since 2023-03-04 14:19:33 UTC)
Tags:	Amadey exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-03-04	n/a	exe	b3363e628b280f10234ce0004f618768ee3f34dcd1b79fcc387fd41d1510f269	n/a	Amadey
2023-03-04	n/a	exe	49c7ef14f200cf153f805fb7eb2419dbd515bfa9b791ef702daa6d63492a8ad8	n/a	RedLineStealer
2023-03-04	n/a	exe	d381cbd98b297b4bd76b0cc1125f17aafcdfbbb411e41741b7ffa66a386c9dbb	n/a	RedLineStealer
2023-03-04	n/a	exe	28c0993f570320758586c858f825b6f7d93a9bebf9cdb8293885579c85100a64	n/a	RedLineStealer
2023-03-04	n/a	exe	024e02d6a58127dfbbc8d607705f1c46daa8f0e0847e3bcfaf22343eb7b63ffd	n/a	Amadey
2023-03-04	n/a	exe	439dec9ab34ef5c79638775a02efe6a92c55d3769bea68e40ff6bf6a301f4863	n/a	Amadey
2023-03-04	n/a	exe	a4e567c533dc1aab5af753372c8b7b2988bc30f9518a88229f74080ce19fffe4	n/a	RedLineStealer
2023-03-04	n/a	exe	2a122b97e52b979d33c5056d553ddf393fc99e82d11d96092b7bec021b7a4f96	n/a	RedLineStealer
2023-03-04	n/a	exe	911a41c5702111d09c5737caa38a5aadc7f49db4b2e1f16d87c1c899efc7a16d	n/a	RedLineStealer
2023-03-04	n/a	exe	6c315f876d30c9f45ee225163058e217d1e87e884b7541921beba0d043c9b1f2	n/a	RedLineStealer
2023-03-03	n/a	exe	436fff36fe7db2e64642f157e4d13c33e205c0baf9f6159a32138159e6feea19	n/a	Amadey
2023-03-03	n/a	exe	dd0d21114871016d76a48ea6d02786f32dc023f89f1092cb1f051d02a44e8b85	n/a	RedLineStealer
2023-03-03	n/a	exe	9a0e6e1a36ec191da8df53450e575ba3ad907e1f7ddcfa6bd7f15e3de8eaac7d	n/a	Amadey
2023-03-03	n/a	exe	a20e1cfd3f693cf506a3fc3eb97dbd8d7974b7697a359a1f714bd5bc06d2145d	n/a	RedLineStealer
2023-03-03	n/a	exe	2787f8d009ef48698a104dbada13f38807bdc23f9d8cd272877c634b6e760b66	n/a	RedLineStealer
2023-03-03	n/a	exe	f7cf737c50329dfdb61ba4627802b23db702414a6b651c8cbada0b7904edeff6	n/a	Amadey
2023-03-03	n/a	exe	16f1bec125ca87845727b2a04ab2c9a145a0cfa3b57f57587405e85b390a5738	n/a	RedLineStealer
2023-03-03	n/a	exe	7415233bcc0b25e68dd1332453d318475628270df8a021a5ce1c988b9fd635cf	n/a	RedLineStealer
2023-03-03	n/a	exe	dfcfe1ebe78436f7f7a050b001d9b756475918f25c164ea3cf874143df2f08d3	n/a	Amadey
2023-03-03	n/a	exe	66a4e11b4b456161e5561e8ffb153daa896db70e6575cf167acf2338dbdf3861	n/a	RedLineStealer
2023-03-03	n/a	exe	049dc4bde6ac879a23950d749d93ee9f6c5ea2a9ced45a0aab02af4466590180	n/a	RedLineStealer
2023-03-03	n/a	exe	58cf3176c772441906155e88a40caa990157516f333f8bfd0724c269a7825484	n/a	RedLineStealer
2023-03-03	n/a	exe	5c0d9ce0c3ce6b5671a18fcc429f544246648af4b45b638b4af4189682608174	n/a	RedLineStealer
2023-03-03	n/a	exe	25f7661cfb8167422eb077e718b9c38529258b2fefbdeba7a801ca35c7b5e16e	n/a	RedLineStealer
2023-03-03	n/a	exe	59d932837802c1b81d5194008c7fdd6cef59c78a83aef291ca4af4e5e6a16f9e	n/a	Amadey
2023-03-03	n/a	exe	279f9ca8b7a1ee460ee5bc0ad626a7f2a3526404deff5c226d614582a044ed14	n/a	RedLineStealer
2023-03-03	n/a	exe	8d16985aac3e40f8038e69aa35b81acd1accd4772c8fd6b03a2b9f96f867bcac	n/a	RedLineStealer
2023-03-03	n/a	exe	d6b5bafed2d187d8f59b53f186668cc3ebd1cd5c06c549350a6d3f20744dcd3e	n/a	RedLineStealer
2023-03-03	n/a	exe	34532f862c001878203a4c5f8f2b7efa5c47084ebaf7ca26d906099d753e2471	n/a	RedLineStealer
2023-03-02	n/a	exe	855bc313cd023ebfd1155fd0b738266478707c4cb03de2c08422025696130e40	n/a	RedLineStealer
2023-03-02	n/a	exe	9b1f4025ad6964df06bcc3496c274985c44c71d4dbdc5e15f51e9c92a2493c02	n/a	Amadey
2023-03-02	n/a	exe	f4689213483ad9b6641ab51755d456500e0a017390b3bb36ad0c7377f7cbeeba	n/a	Amadey
2023-03-02	n/a	exe	73ab8018aadf7c94b7ff2ea58f87cb2dbc48bfd5a0c0d82435267442238d27b3	n/a	RedLineStealer
2023-03-02	n/a	exe	cd9e3e52c7da7b25a9852947e5c3b8c15f8a0e97266dca7c8b5746ffa9c7088e	n/a	RedLineStealer
2023-03-02	n/a	exe	24b1b8e018c8d390f20125a93083b18a1b1d96df14472b3a712e791eb1a46857	n/a	RedLineStealer
2023-03-02	n/a	exe	ebd7e2c75c313e2c5c5e31e97642cd69e197fcd82d7e648826b55c28b8d2f6dc	n/a	Amadey
2023-03-02	n/a	exe	d90cefaa970a76faef607c3d06a09fef9817ecd8a7f6fcda5f97db79aada00a7	n/a	RedLineStealer
2023-03-02	n/a	exe	f4695f2c2b85bdf19785541e134ae958fe5fad0f7965d0b3f6e19ddab92668de	n/a	RedLineStealer
2023-03-02	n/a	exe	d90fc54bb2b9a40093ead1c3075017c5cd90dbe6b69daa8fe4d19b8a6b07f1bd	n/a	RedLineStealer
2023-03-02	n/a	exe	68f0db7980f51f7ea06ba95e4b282677d4d0bc7af38341d69121e873381cdede	n/a	RedLineStealer
2023-03-02	n/a	exe	8d82d706e740b03a9c1d4d390ea343723d5c09c7c5749c9f1100f93298e45511	n/a	RedLineStealer
2023-03-02	n/a	exe	c4af6fdeb3bbde1f87e5b2a59cf0c1b9151754c7e2bd72329bbf49206d905cd6	n/a	Amadey
2023-03-02	n/a	exe	e1ef227e9460948c8330838f9a690e0f2a8ccc17d6507a3ec9c30507cc508b8f	n/a	Amadey
2023-03-02	n/a	exe	6f5bf4afea063b5b6052a88cc7bb3d11030f19b27db397fbcb39f56d1b1cdc0c	n/a	Amadey
2023-03-02	n/a	exe	07e57266f1c6808343472603967cc87f599afac3cac36b7fcc74494db164b2cc	n/a	RedLineStealer
2023-03-02	n/a	exe	a0d004fb08a4183800e0e4d741edcf6dbb4aafb6a3710ee00dfa2fd0506ce5c0	n/a	Amadey
2023-03-02	n/a	exe	7ca570abf699afaf13c97f3c9af686dc61a02aff010ea286c9085d9992bb9468	n/a	RedLineStealer
2023-03-02	n/a	exe	755d7321420f9afac09ee2cbba1b6d0692e796027ddbe3f52c03f2c1f80203cf	n/a	Amadey
2023-03-01	n/a	exe	3898fbb3f5229dae50c9c51a8a571220f5166f44b12aff131d9227da487156ed	n/a	RedLineStealer
2023-03-01	n/a	exe	18e5990f45511e155c2409e9d5dbebd229ad58c3cf1ca484dc6ae089bb525850	n/a	RedLineStealer
2023-03-01	n/a	exe	50b5ea8a319a9c973c4e6cefaa9e403d04fa790dbf7ef2041d5915fe88b12ae7	n/a	Amadey
2023-03-01	n/a	exe	8fa4bf16bc71b1344c64c1588167c17635f790188318598c0e06d91c184abbc3	n/a	Amadey
2023-03-01	n/a	exe	30ec02c0f220c0781c72fb574ec9069e183e09f3ce7507f422f576f8678b08a6	n/a	RedLineStealer
2023-03-01	n/a	exe	4f3c12637e6b2404b9195f7e271a84b635fa619e1b4227aa95dca5bc2b36f5b1	n/a	RedLineStealer
2023-03-01	n/a	exe	601abfb446683707114b467c21c2b8cfd14ea9b97a870865506dcaf60ddbd4ce	n/a	RedLineStealer
2023-03-01	n/a	exe	04ad8d2ed7616b53d7f156e4745b5d1519ba4fee92bf896e08f53153fbf09c61	n/a	Amadey
2023-03-01	n/a	exe	c9b6af99ff8682234ac6f320848eb4b55912f7e809d88df68303e62a994913e2	n/a	Amadey
2023-03-01	n/a	exe	256f2e4d5d92e4d80fdf4caf114b86a70b83fe840a35dbe93741f4b5f08d7bbe	n/a	RedLineStealer
2023-03-01	n/a	exe	4149ac6fea8938ff492a2341a830c371c4d013046e82172501dff27e57b835e4	n/a	Amadey
2023-03-01	n/a	exe	7ba108fc1901e0fd8426ec5b41567c25d15aa32763531a2f2cbd24a5c6028a6b	n/a	RedLineStealer
2023-03-01	n/a	exe	3e42bf9918a7818c01a9111fe7f09c9d9d7a7153a4a9b82d0318363ce41266c9	n/a	RedLineStealer
2023-03-01	n/a	exe	10f2d4cfb5f0beccc72b78d08f4a579fc6a058769bd09736409fad2e22a2b513	n/a	Amadey
2023-03-01	n/a	exe	f33e605cabebac019eea428195a8818b3e870f66fd30af3ea4b02d42afb175e3	n/a	RedLineStealer
2023-02-28	n/a	exe	282753377f4d6122f4b69a190e5d36f23a3d6ef6cc05ddd56fa6d2a1ea1003d5	n/a	Amadey
2023-02-28	n/a	exe	8508f6a591889fbd963c6d9dad0ee968888abb577d036878691594622e3e8221	n/a	Amadey
2023-02-28	n/a	exe	398f98cfa7c965d5e7b8c75a1f7ba3e34480d7805c08bcd472ffed2d25de1bca	n/a	RedLineStealer
2023-02-28	n/a	exe	caf00150589120b59ea0145206e2aacad383d3cc18431674fd58cc84f49b0e25	n/a	RedLineStealer
2023-02-27	n/a	exe	e9c88f74d20a8dd557d222e1c68eed764d9488309e42b5f8e1e2230d6a6ffa47	n/a	Amadey
2023-02-27	n/a	exe	62f904cc9eedaa25441da7951ce8a95e6f6385d7b8e583dc3d50064db51c3b5a	n/a	RedLineStealer
2023-02-27	n/a	exe	a6f919a5713787c37a2cb584e6b924d90a374aa3b56f735c829b23e3f36cb2c3	n/a	RedLineStealer
2023-02-27	n/a	exe	a8d469976cd5468c207b3ddd3663e6e34a613f3b7065363a767927ec4f39d4c5	n/a	RedLineStealer
2023-02-27	n/a	exe	d98a1459433a5d548c03cb8bbeb17d425e2b0e2f09156e9bb9335c59130404c2	n/a	Amadey
2023-02-27	n/a	exe	76379db4924458765ebe4f2e9f3fbab142ca7db9c0398acdaaf6ada5d482ca94	51.47%	Amadey
2023-02-27	n/a	exe	ce27d7fd7575a5858a9aeb745f8acc32ec983523b38a29ebacba66f357b54771	n/a	RedLineStealer