URLhaus Database

You are currently viewing the URLhaus database entry for http://77.91.124.20/DSC01491/fotocr05.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2640672
URL:	http://77.91.124.20/DSC01491/fotocr05.exe
URL Status:	Offline
Host:	77.91.124.20
Date added:	2023-05-25 11:31:06 UTC
Last online:	2023-05-29 21:XX:XX UTC
Threat:	Malware download
Reporter:	viql
Abuse complaint sent (?):	Yes (2023-05-25 11:32:07 UTC to abuse{at}altawk[dot]net)
Takedown time:	4 days, 10 hours, 8 minutes (down since 2023-05-29 21:40:40 UTC)
Tags:	Amadey dropped-by-amadey RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-29	n/a	exe	d75bfc85da320bd1e6af59a072c14c5e5259c3cb0c8068d796c24625471b5d02	n/a	RedLineStealer
2023-05-29	n/a	exe	964f6864e8a7e8e3bd9910e1eb88da5eeb3c2a05101a8658910956f2182cffb2	n/a	RedLineStealer
2023-05-29	n/a	exe	7a22fe256da7218854f9957a4241ad52a1e58312277757bd0bb0ffdd552e76bb	n/a	RedLineStealer
2023-05-29	n/a	exe	f2028e0b392d8346947898eee738851b765b566dbf20b50c8ef97ed4fd6e0522	n/a	RedLineStealer
2023-05-29	n/a	exe	cc5c456aa87b90e51d74b0c1d0ff98e028685a7e36f7e36fb27c4c4e03b7d224	n/a	RedLineStealer
2023-05-29	n/a	exe	20432e06eb43f14714c487e79da42a07cfb452f238374252fcf8905f771979d4	n/a	RedLineStealer
2023-05-29	n/a	exe	1151b65060623b8038fdf218dcf82288ac3381ed43600315f5529538c067058d	n/a	RedLineStealer
2023-05-29	n/a	exe	be19b6028effc99a23c346b33909b63f9efe4880ad55a5f752831db99a143aee	n/a	Amadey
2023-05-29	n/a	exe	51f1cdc2eb8cc1984315c1089b4999e0d82e66d935f0b53e00779d0a70198dd8	n/a	Amadey
2023-05-29	n/a	exe	af729e6d8bc9ce5456a89485aaced3356938f11be9e31b65caacb1fc1e79be76	n/a	Amadey
2023-05-29	n/a	exe	ba4520cd547ed12862cfbc53b27ba746de75b708554df831106284310db98c09	n/a	RedLineStealer
2023-05-29	n/a	exe	5b08be09c8886c8e8e4e8a0a969c810b2f05f47f7c657e5b86eeacf6eb12ae01	n/a	RedLineStealer
2023-05-28	n/a	exe	646648a3568c4af7e3f5f4d2b87d33bdd9be49ce9f9a228dafdcad0c7c3d2546	n/a	RedLineStealer
2023-05-28	n/a	exe	2183f21a3859733974b0901a0cdd25a76e828308a1287f52bca448351c14c8b7	n/a	RedLineStealer
2023-05-28	n/a	exe	72fbdc747e736815f49ce60e32dca154e165127cbd052b08f3360f4759076861	n/a	Amadey
2023-05-28	n/a	exe	3aee073a4daf0f2236ce3d3b82fa634b6aa6a0a2796fce9f9c73f6109a83e367	n/a	Amadey
2023-05-28	n/a	exe	25481a08ea2741edf933c91b5db78a04442d666d7d2b92069d2d3b88287245c9	n/a	Amadey
2023-05-28	n/a	exe	430179456dab467022eb705c119e2a6251c5e4eecbf68764122b7831da42c1cb	n/a	Amadey
2023-05-28	n/a	exe	f9bcaa54756e4a2b6de14eed46b292d3da0e15a69c5dcf5ff36ccbfdabdfbf21	n/a	RedLineStealer
2023-05-28	n/a	exe	dd0d0a75967020813cee64af445c0d025654f5606985475ad21437750a5a9e33	n/a	Amadey
2023-05-28	n/a	exe	e7d53c4d45e36af7d14f92a2a97e04b10eab6c77a359b4afe2c5378f8541eb73	n/a	RedLineStealer
2023-05-28	n/a	exe	3573ec0b0efeb40cb4a377f89ef28fcbb1b3f4f948660e00b26ffd8cfe326cb5	n/a	Amadey
2023-05-28	n/a	exe	10ecf8c614e28f85c419f4266a11ad3dcf8e6c6ea16ca7814e310103ec2a9a38	n/a	Amadey
2023-05-28	n/a	exe	78c5e0f0c6dce98d226dd6cd8f933968b4f923b699d8f09e2a8490d8f5f7420d	n/a	RedLineStealer
2023-05-28	n/a	exe	9a51a997cfede9fc42fb6e874f92e4a70c9c28a828e5638e8bb72719a8a5dd99	n/a	RedLineStealer
2023-05-28	n/a	exe	7b7cea61e0d9147ae2b1b772fd237a448464aa22c9bf1d004bdca294452da312	n/a	RedLineStealer
2023-05-28	n/a	exe	f4fbaaaeeda0113542d6c4f35e32ba7c4522c0a711db7edec59a361a89205cdb	n/a	RedLineStealer
2023-05-27	n/a	exe	e8d6049742a72c21def7acf7c38fc0eb6351126536f5dad2c23c3af7722ca5b1	n/a	Amadey
2023-05-27	n/a	exe	3c7c842eeaf0fc00c5684502e6210910fa4f6c2330d4995db24d7d8cb2e382fc	n/a	RedLineStealer
2023-05-27	n/a	exe	7485afa90dd070adeca1f8adcb7b54f2447ff9d9652a599854a036dad28efc5a	n/a	RedLineStealer
2023-05-27	n/a	exe	50685399f6252b3ea2ba2871cc00f3fc5516beac6b5eb130bdb12edc01b36153	n/a	Amadey
2023-05-27	n/a	exe	a4ef8452671e67065db2373e5954dd3a0ac5cd6a85ad9be032eb1538d888fc07	n/a	RedLineStealer
2023-05-27	n/a	exe	32dcdf0dd4a7aaaf2a590782cd8b2f0852954a7bb3a810f4b1fe1cc8ed3aaddb	n/a	Amadey
2023-05-27	n/a	exe	a5993a7804ee3b2b2bacac43c8594c034aa4c6762606c09dd3a3f913bfaf78d9	n/a	RedLineStealer
2023-05-27	n/a	exe	28326c8616d70ff7ac513102edbbf41dc541dab318717504eecfc0e3f93d9805	52.11%	Amadey
2023-05-27	n/a	exe	f9e67be91562cc8df79ac7c27c9f6effe6f28a04fa91a430cec898a758976bd8	54.93%	RedLineStealer
2023-05-27	n/a	exe	8e84f8b321d330ba0b012dc3deee1f3cbfcb17e452824c43826a3de5e0b2e51b	n/a	RedLineStealer
2023-05-27	n/a	exe	24757d8a949a1fb3f447ffccafd73a10baca77809c6ffc10c78d1b4e991bbbd4	n/a	RedLineStealer
2023-05-27	n/a	exe	1f5e56dfd2f721e8b0c492c7e186fd5030f35ba1f603e71c13c8d22c818135cf	53.52%	RedLineStealer
2023-05-27	n/a	exe	e0a19c76b235689a5b583e757f7cfcc4a9b2d962934f4b10d75e8a8e0db41a97	53.52%	Amadey
2023-05-26	n/a	exe	375fe8d379a86dc7544081a8193644e4c8cad4a54229dd4f69f2839cc7e8a2c9	n/a	RedLineStealer
2023-05-26	n/a	exe	9a52bcbbe8ebc297dddb5a4c57f7de9868d70619fa524fb3e70e63ab16470b23	n/a	RedLineStealer
2023-05-26	n/a	exe	35cd0d4982a709144a60d4933cc2219fbb9c22a168c2da3876ae5dff65350dd2	n/a	RedLineStealer
2023-05-26	n/a	exe	38ee9e28695d70ab92a1a6b41615c68276f892d18f289fcff7574d071eebcf2c	n/a	RedLineStealer
2023-05-26	n/a	exe	81b9624efc345b68a523592b0ac7b03e578017466dfc331b53ec6eb48ab468b6	n/a	RedLineStealer
2023-05-26	n/a	exe	b52becff7252a59f61a17c839dd22875bdf0e9225177057d118d1978450e73cc	n/a	Amadey
2023-05-26	n/a	exe	56e1e28aff9df53911d1b107ad0975ed4869f52f97eea4be3ce72a4c577b01c8	53.52%	Amadey
2023-05-26	n/a	exe	1381a3022292d2e671ff4bdb1439fd206eb451b0da5067c87772068af0c1fd7f	n/a	Amadey
2023-05-26	n/a	exe	e407d3e53ffead24a7a89a9e8d95d9ad80bbcc48cbeed5f0d6365eee40e75dd1	52.11%	RedLineStealer
2023-05-26	n/a	exe	697e78325cfc1544f8582c25ac754c83f75926cea5195652269edf35e7ef2164	54.93%	RedLineStealer
2023-05-26	n/a	exe	27d4da4208984156b5c4969c8c2f75718478c0c0d1cde2a630548509b2c40f7b	n/a	RedLineStealer
2023-05-26	n/a	exe	800307668df7bf73831585873591dafac14c1f10cd843143f0d3448a175cb04e	n/a	RedLineStealer
2023-05-26	n/a	exe	62fca9e6b12e693c65ab32519e7b9e554015af1dc9ddb653b59fb628039aaba8	50.70%	Amadey
2023-05-25	n/a	exe	e853554504a492c2cc2fe31384e45ef0679163dbe7abccf604a166385f8d3a14	50.00%	RedLineStealer
2023-05-25	n/a	exe	690b61d318b4be258927483082edfdb96bfd93e0045959463e4a79a4d081857c	n/a	Amadey
2023-05-25	n/a	exe	c54d613e267f7454e559c6147712b810e60e13c38e75e34ce2d85064999b4037	n/a	Amadey
2023-05-25	n/a	exe	bc9ad6db3925e9363b7e661fb9621a22c255b62dbe725d0607b5d37d342ada68	50.00%	Amadey
2023-05-25	n/a	exe	8af32f3ea4635d8b35ae555aeb954d087acbf0225580d8bf929adc7426fe8932	52.11%	RedLineStealer
2023-05-25	n/a	exe	bcc2976b84c1ca63f98f6eb708230cfdd8feceeb4db7bd527ef3c2f6c861af67	49.30%	RedLineStealer
2023-05-25	n/a	exe	77183960d727699c3ab74aaa13abe2e78506f77971297d634faed4c5b5705445	50.70%	RedLineStealer
2023-05-25	n/a	exe	070b773b7b3c95adead84c5dcce68c8fe7d519549ed28a00a913e67a07e513f4	49.30%	RedLineStealer
2023-05-25	n/a	exe	8ec4a9591dbe7b3aeaf7dde088b762cf6c264e42febc2ada8d08ccb0e4b7bd69	n/a	RedLineStealer