URLhaus Database

You are currently viewing the URLhaus database entry for http://124.220.35.63/110.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2592805
URL: http://124.220.35.63/110.exe
URL Status:Offline
Host: 124.220.35.63
Date added:2023-03-31 16:04:00 UTC
Last online:2023-04-14 18:XX:XX UTC
Threat:Malware download Malware download
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2023-03-31 16:04:07 UTC to abuse{at}tencent[dot]com,abuse{at}qq[dot]com,jsquare{at}tencent[dot]com,dreamsruan{at}tencent[dot]com)
Takedown time:14 days, 2 hours, 3 minutes Bad (down since 2023-04-14 18:07:33 UTC)
Tags:exe Gh0stRAT sality

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-04-12110.exeexe 197b9147b1d40aefd4f75d394a04520d2873e9df42a5782df7df31a88c2ae150n/a Sality
2023-04-11110.exeexe 4d11a73e4036a2ed5e797908a3fb3bd59e523b18c6afc41d2b56e2dc213de186Virustotal results 41.43% 
2023-04-03110.exeexe 012e401eb5eb74c9aa7d2a3d6bd6a3d367786385280c2f705a85263b8f261c67n/a Gh0stRAT
2023-04-03110.exeexe 9b75ee52e914ccdaf0afa4890860bd298da7888a521808bdcacf4e73044a3c43n/a 
2023-04-03110.exeexe d4b3679a4242f7aaaebeb673fdbd9f5f4bce891d93fc64b22c55bd9861ba55f4n/a Gh0stRAT
2023-04-03110.exeexe 1c2ac0a191ff07118f25672a65b705cdeecb78538b2be9b412043d499176f2b6n/a 
2023-04-03110.exeexe 458990c9dfdd1d3c1876b71542fccb804cb238e1835a072f29f655543019ad7fn/a 
2023-04-03110.exeexe dc4f203ee5df59eb9a271b10623df67daeadec8e43dcc12daa8a6fa0b4f1606bn/a 
2023-04-03110.exeexe 3d13ba2eeb19538cf0631877390631a0d02a7add98c9d37782ca89e9bf7305d1n/a 
2023-04-02110.exeexe e376d08055ae263ba060949eba2718d2023a80c16de49471ad3d2d87a124ed50n/a 
2023-04-02110.exeexe 35a0b8e272e38ffe26e3b8d75a231dcee86e1ea1b53848a5584783ee4db30236n/a 
2023-04-01110.exeexe a72ed711b79d16693eb00366d850efd707d1ca01abdc1c2fae072b7b67440f0bn/a 
2023-04-01110.exeexe 9454a53dcc4fc62ef06c8ea76043057fa4e688f8d2208d837bad89f2374069cen/a 
2023-03-31110.exeexe 6a267008dc7b95a1bcade4a19072e2df29af9f6bbd372d9e5444540260a10d7an/a 
2023-03-31110.exeexe 20f4b006007defc2e71a4a3bc6ffe0cdbb5ed6f34c4e15e95d85a7cb60a76286Virustotal results 53.73%Gh0stRAT