URLhaus Database

You are currently viewing the URLhaus database entry for https://ndddb.world/gallery/photo_004.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2573668
URL: https://ndddb.world/gallery/photo_004.exe
URL Status:Offline
Host: ndddb.world
Date added:2023-03-16 15:52:21 UTC
Last online:2023-03-18 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: andretavare5
Abuse complaint sent (?): Yes (2023-03-16 15:53:09 UTC to abuse{at}cloudflare[dot]com)
Takedown time:3 days, 17 hours, 52 minutes Bad (down since 2023-03-20 09:45:19 UTC)
Tags:Amadey dropped-by-PrivateLoader RedLineStealer link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-03-20n/aexe 7bcaeb136bf2225f28ae991de867aa2199ff31d94c2f12c6e6c8e01393eb253an/a RedLineStealer
2023-03-20n/aexe 1201ecc3683863fbe00a4801453b9569f11fc66e047c59c91777ef8c8c9dd3bfn/a Amadey
2023-03-20n/aexe fd8d15c9c3f0432e4db41c4acbeeb496d94f95498b2c8c82a519a6482c578c30n/a RedLineStealer
2023-03-20n/aexe 7b492dd3c4e6928a35fd17405b5f93899976603af83c53fecd0337ed3e682faen/a RedLineStealer
2023-03-19n/aexe 16dfd4473796b1b44e505e2002b439a071b2b24f7248377d5607f8f5f34d2102n/a RedLineStealer
2023-03-19n/aexe c252fbe29c318d2d55f46f8ed72affabc34ac6b24fac4d8ac1a133bbe22fbb13n/a RedLineStealer
2023-03-19n/aexe 3378f1c92e188a51a447f623d025f694d3622be5d1bd0426d78e0f1fc5b1c7a6n/a RedLineStealer
2023-03-19n/aexe 6eea404c0d4a7f9275142d61ba08d679ce1efdf020662a5a31a531945f6d0ac9n/a RedLineStealer
2023-03-19n/aexe e6d1e84a896042511fe40a7bfaaa1d04694c410bb98e5a3868b71c13ff3a6122n/a Amadey
2023-03-19n/aexe 12fa295986b5a41b8bb496009e1508a4b521f27a33e233657e1602f61d58ba89n/a RedLineStealer
2023-03-19n/aexe e1be3985f0706b94bb55591aa14a0d5c252f8685ca31c174e3241e88b6bd67dcn/a RedLineStealer
2023-03-19n/aexe 75c3df3f8e08131d26fa272865bcc115a1a7ca4105b5166c670f33eba8907c90n/a RedLineStealer
2023-03-19n/aexe 902f8d2ceffb7da91ea584ea0ca53616377cda152d184c85c4bd66e6bb6cfd50n/a Amadey
2023-03-19n/aexe cb9ddff1daa05e888682cda741056028296a3c82ac48f1ffa4f9228a39aefdban/aRedLineStealer
2023-03-19n/aexe 5d276ec8415933f4a88bfcf54cba14b9352c09f7343d8149d70f1a0fad784962n/aRedLineStealer
2023-03-19n/aexe c21baf813837da9edaa04bf813f01338f9159f8e349e90764067607728723813n/aRedLineStealer
2023-03-19n/aexe 693c37a1a0442fb8d8141d447a92da619f077ecb4d6bbf14d0697bca2f17a9c7n/aRedLineStealer
2023-03-19n/aexe da3001e0f32a2b6215fa1a76a5cb9c6aba29312f3199999c58de3d1dcaa23355n/aRedLineStealer
2023-03-18n/aexe 2bab0d267c652080d420cf7e6733d45fa27507d2abf7369c27cb4671c3fd7b01n/aRedLineStealer
2023-03-18n/aexe 595828d15dcdbc852e32486b78048bef6ba0fd65bd20326f4a391f4f78d4f281n/aRedLineStealer
2023-03-18n/aexe e4bb034ae47776c7c1553e74541aae6a674efe94c9850992802798dba34bc092n/aRedLineStealer
2023-03-18n/aexe 585f7ca66d86edcf3abead7ab1d5e27fde65fbc3a340d2c4956d32f019398d56n/aRedLineStealer
2023-03-18n/aexe a460f28077b388b7191a1fabbc759d4c242c46336a3cd94d62d9d6a12a5d791fn/aAmadey
2023-03-18n/aexe 21d124aa8f6847289416f557bcb821499219f86201b9057861dee1ca0a151c79n/aAmadey
2023-03-18n/aexe 2866c0db33e8cb0a6e0d596370bcb3d79ac5be45a14bf26564fdf96810ac4489n/a RedLineStealer
2023-03-18n/aexe ac63e0491cf31a60d507f9dffe4b5f402f9047d5f68763ccdc0d64580395433fn/a RedLineStealer
2023-03-18n/aexe 5e0a4220b0f05b7699b2e3d26aa0c1f99f34909f616e2a4d1cbda59d9608bc6en/a Amadey
2023-03-18n/aexe de543b46ec02b2a12f027e19fe72269445fe28adc5c8f60c909861742be9fab2n/a RedLineStealer
2023-03-18n/aexe bd4275e2ed036d82ad1607a306e1c85ecd343fe57c70b4788a59e06678a7ef06n/a RedLineStealer
2023-03-18n/aexe 208e7706c5c61d1f17ec1b6aaa6284079e010d003f2e20d9c8437cc0f619c86fn/a Amadey
2023-03-17n/aexe 2094742f947cb130c87d1b63f464671297d2c2169cd8dc95038fabf171dc80bfn/a RedLineStealer
2023-03-17n/aexe 433a636ac3d86cf391a333b88508c29907dc89f2f2f27ab8ad4ed18d336399ecn/a RedLineStealer
2023-03-17n/aexe f77fc5f71d18fc906e33f7e105c6a43ae0480b2e3272f1ffd4edb1c421979f43n/a RedLineStealer
2023-03-17n/aexe fa99588104ac3ce6ff68f26fda86ff717d8003747bf85216d095360ec4c675dcn/a RedLineStealer
2023-03-17n/aexe b258debdbe723197136b34009aeecd93697b22bd7537f167e04de9b054776ce7n/a Amadey
2023-03-17n/aexe eb072d4f5379ae0411209c612ac3f0ff670ec433a0289fb57624f6c5a6b8fff3Virustotal results 39.34% RedLineStealer
2023-03-17n/aexe 27939e7d62ea8bb1c3e9f1216dd4b7ce5a9e8e8b264f3ac6038468a484ffc2ben/a Amadey
2023-03-17n/aexe f6bd22d371a64327831853fa6bbd9a57c8da0cf2d15b8af45dd41290b512d411Virustotal results 40.58% RedLineStealer
2023-03-16n/aexe 6a5df5b84e44bbe5ce5cce5ccd6c82a26ebd34b14dd530b4ec9a5a7115a28927n/a RedLineStealer
2023-03-16n/aexe 25d21e4fc131a2fc482ad5257402e435f9679e6037797884e5d1ab13a8890d0an/aRedLineStealer
2023-03-16n/aexe c6ce5c681f8dc1c98524c0f691e9dc783a5e6ff70355f61513e705dd532e67a9n/a Amadey