URLhaus Database

You are currently viewing the URLhaus database entry for http://185.119.196.167/zhiga.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2575099
URL:	http://185.119.196.167/zhiga.exe
URL Status:	Offline
Host:	185.119.196.167
Date added:	2023-03-17 13:47:10 UTC
Last online:	2023-03-22 11:XX:XX UTC
Threat:	Malware download
Reporter:	crep1x
Abuse complaint sent (?):	Yes (2023-03-17 13:48:05 UTC to abuse{at}stark-industries[dot]solutions)
Takedown time:	4 days, 22 hours, 8 minutes (down since 2023-03-22 11:56:58 UTC)
Tags:	Stealc

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-03-19	n/a	exe	4e92d369cc121131b68a5bc2839fca89752a8bfa39f1819bc576ed717f0a1441	n/a	Stealc
2023-03-19	n/a	exe	15539a353d5b7e18b87b30f717454dc25c4261954d97af791596ea49acb1fa92	n/a	Stealc
2023-03-19	n/a	exe	29d41c9566739f5371b7e2c1142ffb3c55fe8771d1e4d872d4755ca1f6141f53	n/a	Stealc
2023-03-19	n/a	exe	bc169d66a15f7a459d73225fe925d3d08fa693530313bc6f31b2e711eaad1f0e	n/a	Stealc
2023-03-19	n/a	exe	6eca42031f2809aca73b3cc3296cde7d49852f2ed14985c3093c10244d22376d	n/a	Stealc
2023-03-19	n/a	exe	67bcfd8b4e4705f88ddd43f9ee4a0ee7efb252e6a74fadc4b1dbe132ce33addb	n/a	Stealc
2023-03-19	n/a	exe	ad12983641a6deb84c9c86d5fa24eb5380db39c010e15c004ecf4837440a8a7d	n/a	Stealc
2023-03-19	n/a	exe	9cf45a082d2a9a3aca0ea3c0dc160cb7e3a33a928e58bef1fb77d419de8afad9	n/a	Stealc
2023-03-19	n/a	exe	9aa35dc2156011e95e3b7692e7fccacd8be52681042ca198bfe50305c75248f1	n/a	Stealc
2023-03-19	n/a	exe	cc83ee64b2cf6d7bef4aea6c5fb58328223749d6bfe86e6dee21149e4321eab6	n/a	Stealc
2023-03-19	n/a	exe	39c6e03af114a0046c77f185fd98ef1dacc418939d9f8379a89da1212bf9af43	n/a	Stealc
2023-03-19	n/a	exe	aacb20f669b174f1d38daa0fd94c42d375ec652b0623e47a1d69f6823d1c8892	n/a	Stealc
2023-03-19	n/a	exe	9dacee1ce29d21d9798bbb30cc8ef8d62346f0d09e26669c50cb7d47e8441315	n/a	Stealc
2023-03-19	n/a	exe	241d2d6184620ce8d617065bd69eb92d833705518e485868399dd0fa514b0670	n/a	Stealc
2023-03-18	n/a	exe	15cf9bf2faf0e67d058abf46628467ff05ecf90097ffbcb1dd434e477685f75a	n/a	Stealc
2023-03-18	n/a	exe	de565992035f04954144853c6ea32bcb011becb55422c243bdeaaa65bb69c68c	n/a	Stealc
2023-03-18	n/a	exe	7a2a0872367e2b8d2440d3fd5e57db5e988b2db98e3a82f9a5e4ec1705d88291	n/a	Stealc
2023-03-18	n/a	exe	6e53cd4ff1c9a249cfb8f15e0ace2d7139843b14726ef12cc26bf9b469f59c4b	n/a	Stealc
2023-03-18	n/a	exe	788f40e71fe7def232556f15af985c2f9058a0d4a3155548b91b5f46bf04fa92	n/a	Stealc
2023-03-18	n/a	exe	223c077f6eeb0ff32fd5c932f5a4dd311feb4e0156e2d464a6cb9a3645dede90	n/a	Stealc
2023-03-18	n/a	exe	7c2e73b65f763f492847eaa6b91be2eccb6c335e1217ff01a7d6a4a7b2c82014	n/a	Stealc
2023-03-18	n/a	exe	a0e69f08c2fa6024b971272ca58b242e2f315c6a02dc021f985a1ec296b4ca66	n/a	Stealc
2023-03-18	n/a	exe	ddb0eb49fbaccec15aa023cd0e3f184b431ceccad615cdaf419c8dde6f4ee0f5	39.71%	Stealc
2023-03-18	n/a	exe	fd82f497d37d39f0bdc6db9a32f6474d1820327a5de1d8dc1dd0fd7274caace4	n/a	Stealc
2023-03-17	n/a	exe	2c5d05c4b6001bbdaede43124cb0aceab4ea859f1a736fe4c9cea937dc358a55	n/a	Stealc
2023-03-17	n/a	exe	507da6dd60f7fdeecbd1286dac0458ce493ecb89eae4b398695e98f0aaaf7082	n/a	Stealc
2023-03-17	n/a	exe	78b6dc966c04ef3a8e01b9e4af1cecb5d66c869a50c86cb7197555b1eeddab4b	n/a	Stealc
2023-03-17	n/a	exe	61574da5a4ce85b7e4ab4456a7cc4410c281a1fa6e4144b8be7f6d0b7679fbcd	42.03%	Stealc
2023-03-17	n/a	exe	8384eb97c0fd7d916cdb454b2212794a8eafa37fe6c7165644d02e8d9bfe5237	42.03%	Stealc
2023-03-17	n/a	exe	a46844ca8aac1630877f85b10245c97334de38a93f4a9aa722d287d5316c16c5	n/a	Stealc