URLhaus Database

You are currently viewing the URLhaus database entry for http://45.9.74.80/loa.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2694492
URL: http://45.9.74.80/loa.exe
URL Status:Offline
Host: 45.9.74.80
Date added:2023-08-01 05:15:07 UTC
Last online:2023-08-24 15:XX:XX UTC
Threat:Malware download Malware download
Reporter: andretavare5
Abuse complaint sent (?): Yes (2023-08-01 05:16:08 UTC to abuse{at}lethost[dot]co)
Takedown time:23 days, 10 hours, 2 minutes Bad (down since 2023-08-24 15:18:28 UTC)
Tags:Amadey dropped-by-PrivateLoader gcleaner link glupteba link RedLineStealer link Smoke Loader link smokeloader link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-08-22n/aexe eef2be5347236331ecd365bdf33ef868b6518beb7ae94074be56f955d2a951d7n/aAmadey
2023-08-22n/aexe 7d5e396155eb7b8e52d9db1b488d6d4905e06d845fe6647689a59aa6fde5b7f8n/a 
2023-08-20n/aexe 08e61151199e31c2cf54f12f95c8ad95ee8467bb630166800114c0b912682a74n/aAmadey
2023-08-19n/aexe e1c417cdc500c29e12ee68d5bc4e52314d045031b5380b7854b4b34ec9ea0aben/aRedLineStealer
2023-08-19n/aexe c427f44a434891971b3dfd4bf1fd85bef518c125773081bde161d06f72547521n/a
2023-08-17n/aexe aa234447899c8ce342f8b90ddd3bc2ba20cb51ed6856835ba9c18e842f057215n/aGlupteba
2023-08-16n/aexe 12c756b76157abdca43cf688012470eba0c11401a50b1273aad24ef49afbba49n/a
2023-08-16n/aexe 7d07d17c2783ceeee097dc94082d7991a7e27755065dc5f73be10321803fe80fn/aGlupteba
2023-08-13n/aexe 59399a482c68953a6d2f500eefbe4e538b72bdc974a8cadcdaba3ee9c00b04f7n/a Smoke Loader
2023-08-13n/aexe 70a35b12dfd7fbb5a80a06b40dc9d87bab2566f4505d279b51976a550457475bn/a Smoke Loader
2023-08-12n/aexe e3ccebb0b2549f6edb92996633653cfad151dc4e688a01eb16cf0b66abc49171n/a Glupteba
2023-08-11n/aexe 2ec995b3c395c5db6abb330fe51880a24cfb5085d803877def81606e5757bbb0n/a Amadey
2023-08-08n/aexe 222301a390730394fdfba560a8a0070c3571aaf9541d4c96cb5ee931b26ede59n/aGlupteba
2023-08-04n/aexe 10c5faf1316a4caf9edafd41c9c5a87a346c3cceb81de7ca106eee22be3069b8n/aAmadey
2023-08-01n/aexe f991e808ed44c731fea1758fd6a275ec4e3ee66a5a691dbf1f9414a5faa144a1n/a Amadey
2023-08-01n/aexe 23d2138b76775d5169145dedfaff7db5bca58b481994ced84cade8490e720fc1Virustotal results 68.57%Amadey