URLhaus Database

You are currently viewing the URLhaus database entry for http://89.208.104.62/govno.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2690430
URL:	http://89.208.104.62/govno.exe
URL Status:	Offline
Host:	89.208.104.62
Date added:	2023-07-26 17:45:07 UTC
Last online:	2023-07-27 18:XX:XX UTC
Threat:	Malware download
Reporter:	dms1899
Abuse complaint sent (?):	Yes (2023-07-26 17:46:05 UTC to abuse{at}aeza[dot]net)
Takedown time:	1 day, 0 hours, 37 minutes (down since 2023-07-27 18:23:53 UTC)
Tags:	exe RedLineStealer Smoke Loader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-07-27	n/a	exe	4f2680a213e3345c83f3f0adc9bcf75af76e50eed035b2c54f54b071e115f694	n/a	RedLineStealer
2023-07-27	n/a	exe	db9427c78d7ce579976e4c3acc6ee9e6eb09f0005b951f58f66691842e7ae5a5	n/a	Smoke Loader
2023-07-27	n/a	exe	004b17c4c6370bbeaacb5e9422faec0273bbc498b63cc1be73dd68af53519779	n/a	Smoke Loader
2023-07-27	n/a	exe	07591dade0dd23bcc73f862525c00abc4da7143693533aa69cbb61c0d9c3de0d	n/a	Smoke Loader
2023-07-27	n/a	exe	a4b98aec4ba6773514273efb2d891dd27a2edfc2e81b1e22deb5646a4e270be3	n/a	Smoke Loader
2023-07-27	n/a	exe	7d6a715157684ef23b3c7853855a0960ab187a4bc6a445c0cc2781271e610adb	n/a	Smoke Loader
2023-07-27	n/a	exe	b7b978c6878794881aa5fab08878f33776f45478aa909446140fca1c311fb4c4	n/a	Smoke Loader
2023-07-27	n/a	exe	4a981497c4f85e0e8e6ed9d87f7cb39f1f99d09891a2d93e2a94f6b68f601f13	n/a	Smoke Loader
2023-07-26	n/a	exe	88d2eee0caa093173d7eac448ca5d7bd39ee5e8d3e173013934dd12b847269d3	n/a	Smoke Loader
2023-07-26	n/a	exe	2c43ca2ea57631cdd00d46b6d292ca82922c239c1ad400a4714134fed8f2a50e	44.29%	Smoke Loader
2023-07-26	n/a	exe	0fbbcc2670b965e58ca64967a98ddd25853457b1fe4aea9bc6c739d5885d47c5	n/a	Smoke Loader
2023-07-26	n/a	exe	c17336d7c543eef6427833e8a3f419dd02c7cd2fd7665725732c35e61a354f2c	n/a	Smoke Loader