URLhaus Database

You are currently viewing the URLhaus database entry for http://77.91.68.1/new/fotod900.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2708244
URL:	http://77.91.68.1/new/fotod900.exe
URL Status:	Offline
Host:	77.91.68.1
Date added:	2023-08-30 05:24:04 UTC
Last online:	2023-09-04 10:XX:XX UTC
Threat:	Malware download
Reporter:	Casperinous
Abuse complaint sent (?):	Yes (2023-08-30 05:25:10 UTC to abuse{at}yeezyhost[dot]net)
Takedown time:	5 days, 5 hours, 18 minutes (down since 2023-09-04 10:44:09 UTC)
Tags:	Amadey dropped-by-SmokeLoader RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-09-01	n/a	exe	c1b80e36fff0fbce669fc8adf4b0e472d5d3ed1e7b0178495131002044f0ce4f	64.29%	RedLineStealer
2023-09-01	n/a	exe	467345e55fbdd6fe693304427420db8d61b9fe44c06228da06427e816931b1bb	n/a	Amadey
2023-09-01	n/a	exe	b63eeb616bba2e7df261a1a09550280b8367a846aff3a397914dc5ce93f495c0	n/a	RedLineStealer
2023-09-01	n/a	exe	03027719880d2949f7e45cbcf61dceae26e304d2fabb4d785030ccc7e087d818	n/a	Amadey
2023-09-01	n/a	exe	d3aa4530838738e8b62c39dd5102875c05eb7bd9e46b850ef9acf3b58712e6b1	n/a	RedLineStealer
2023-09-01	n/a	exe	67a3926c00af0e197a03e92cc8aebd6a6ab4ef62ab5d98483b2f9f2060287081	n/a	Amadey
2023-09-01	n/a	exe	917a9a1d6f2901a757cdc92c5202c6940628825002ab5132ce1d5eb05f07ce47	63.64%	Amadey
2023-09-01	n/a	exe	f5e7e1e644a90e4caa16e41b356acacf0049cbfbd82d90fd9947ed9c550fd7d8	n/a	Amadey
2023-09-01	n/a	exe	7df04c85d76c9b0a2b155338dc4fe83e7dc829be31c7cf8dbb9a47e61ed1de93	n/a	Amadey
2023-09-01	n/a	exe	6576dbfd13419bb29f0e7d214a6a2451e97c4e23f2a0ac0a36c6f7f35fef952b	n/a	Amadey
2023-09-01	n/a	exe	936dea76e5cfa817cc2503012e0a17ce78d526e0d2908891a9413ce2bc6d22a2	n/a	RedLineStealer
2023-09-01	n/a	exe	2aa0fa90fb772b4d526663d8f56eb8b86ac7132a27b4644c0d331b0fe8f2404d	n/a	RedLineStealer
2023-09-01	n/a	exe	c42b81cf9214011f1162ec48419176c3b1001f0005b959d64f55c51c4424bce1	n/a	Amadey
2023-08-31	n/a	exe	e161e0acc9dd9cc39d7683ea07d038a66869637d980d5b178389c28c9761e175	n/a	Amadey
2023-08-31	n/a	exe	641166cd7d13ecf7b019cffa71ae9391accaa43fd42ba6f1cf9f1aecd91eb845	n/a	Amadey
2023-08-31	n/a	exe	c2f5e5145600322dae2c00a5d05e9025f36dc8f04a02c988461b70e91a65f946	n/a	Amadey
2023-08-31	n/a	exe	f1b4dbd163e818cbebd500f25f1f17ce56c65c86d010e54676eeea999dc95687	n/a	Amadey
2023-08-31	n/a	exe	e8f7a35d5a7bdc7b7fdd5e911bb7609a45678bc0a286d6015fabe258e6bde220	n/a	Amadey
2023-08-31	n/a	exe	b56afa0b66ca30fbadff867a9abc1bd56dc54eeeacce8068d403c9419a9e2cbc	n/a	RedLineStealer
2023-08-31	n/a	exe	7e6a9dca24e48ec7ceeddba66714cd2aa1fa8c5ec143a7854ad7c09068ba8c83	n/a	RedLineStealer
2023-08-31	n/a	exe	fe627b89d037fe66fda73274e1eadf6e1cc6a3e43303791b7abfbf18eabb53a4	n/a	RedLineStealer
2023-08-31	n/a	exe	bbf7e2cdca8ec7eb7524320925752f6230a150ca9763c6dac3201e85c09a1eff	61.54%	RedLineStealer
2023-08-31	n/a	exe	67f2a90ef0ab2b406ee7ce22a91f184650828f1944f05f541b7296f388d63713	n/a	Amadey
2023-08-31	n/a	exe	34e52bf50095ba26bf507692e5f2e65c93d51bb9c47a2fc2dcb5893dd2a8ae19	n/a	RedLineStealer
2023-08-31	n/a	exe	4a7aeed887e30c0859b2539d3d94997cf077caec6bbcabab077c1e8bd2316f5c	n/a	RedLineStealer
2023-08-31	n/a	exe	218135b00cdf562df24985c7f8837d4bea083caa07ee01411214621e8cc087ee	n/a	RedLineStealer
2023-08-31	n/a	exe	18431f64de2a26b34f9bd74c745855f37da7e60175a7c579e48efecb84827c1e	n/a	RedLineStealer
2023-08-31	n/a	exe	6aef955180e12341fc953f84fa14291f2ab4004eed60e32f892a895a0c2e787f	n/a	RedLineStealer
2023-08-31	n/a	exe	bab79b492d97010f552022e40d9db32e8cc8001ee328bc14df491d2300603910	n/a	RedLineStealer
2023-08-31	n/a	exe	545703504ea1ee6d11b94b1a151e93cad17d6087313de485276f25956a883674	n/a	Amadey
2023-08-31	n/a	exe	9492259b19029394753cf714721f8da060f67705b1e3f22e404f660b17a5eef0	n/a	Amadey
2023-08-31	n/a	exe	67d98733bafad01292b7a0c807396ed5588035741528ae26b9d5cbd173bbb4cd	n/a	Amadey
2023-08-31	n/a	exe	e027d23f9b5c2e05b3f71cbb3f031fc21bf8729fbb00b87b0af8107754dc573f	n/a	Amadey
2023-08-31	n/a	exe	aa1548b7252e7cc8725ea573fd71694224998ed768315c0b43579e1111ee0bd1	n/a	Amadey
2023-08-31	n/a	exe	dfdcca7cef385f6342520cab8fe0a49868767b153fd00e256a0b542da7ddbffa	n/a	RedLineStealer
2023-08-31	n/a	exe	e5f80b28ee44b0bfaa402ef7b4923295fa483cbe4d98a1279cb15b6da9d19463	n/a	RedLineStealer
2023-08-31	n/a	exe	1c97b2efc82535cd2f95ec33308cb33287879eedbb8c48d53aca8fdad0fafc73	n/a	Amadey
2023-08-31	n/a	exe	e954a8a41208a1eaca08f382ce5e2ad7b6ae254dc815513bfd0dfbcbd8f4bcba	n/a	Amadey
2023-08-31	n/a	exe	21f9f10d6e54eda0278c2221bd60bc032dc9755da9bf02a2c6be95c30a951ddc	n/a	Amadey
2023-08-31	n/a	exe	8fed5bc031d3776d8b5f70235153a9e5000826ff4ab98b3172f592b584385fcd	n/a	Amadey
2023-08-31	n/a	exe	4b59f9f03cc6356ef20aafec102ae2ee730604e38a5c22a7b19dd8ed6446ab16	n/a	RedLineStealer
2023-08-31	n/a	exe	d2ab888f1a4bc8da380430213989b91121612d6bb4c718fbf47a69d5f985a4fe	n/a	RedLineStealer
2023-08-31	n/a	exe	3964a37f45cabeb21c4d2fd46c62ad0bf5901d50051cbbd668f3a0654ae7478b	n/a	Amadey
2023-08-31	n/a	exe	07cc241dcc0e530c8cf1b5311342c16ecc06453ee12aa033e34aa256bb0aed55	n/a	RedLineStealer
2023-08-30	n/a	exe	5433210d5138a2e1444606191b14b7323080a2af2434f5a6b5783d832d3adf03	n/a	Amadey
2023-08-30	n/a	exe	7bfe41924f59c59ea5f5b7c531ce144257741caa57c4f1e746b54ae73f73f874	62.50%	Amadey
2023-08-30	n/a	exe	f59ebf502ec0696ed6b734483c395f7934bf968cd6e86e11d504da41d782f59a	n/a	RedLineStealer
2023-08-30	n/a	exe	71ebb324f711549202f2c3e5658b85777cee34021ffb646cbb016dcf5f922d48	n/a	RedLineStealer
2023-08-30	n/a	exe	2b1ef47778d4099c6d82ddd8ef73ea376bf55194151ad704f9a08b6226da2033	n/a	Amadey
2023-08-30	n/a	exe	3276e6469cae3a0b7e35eb56f7a0e5c70d2a0dd7580d21401a0ce8d2fd0a584a	n/a	Amadey
2023-08-30	n/a	exe	e3cbd6233f050e9f4e700456db2112b544d4262bfaa242dd0d2d6f598a7f3150	n/a	Amadey
2023-08-30	n/a	exe	5e46baa5f814822a92a464e10bf3d52e426cadca2b8705af7bb9de52334345c1	n/a	RedLineStealer
2023-08-30	n/a	exe	cdfdee98460810c61008253dc1ce739d6f8ac5e0559ead830fa3d82e8be7449b	n/a	Amadey
2023-08-30	n/a	exe	1cbae2053cb2985af53dd9f730bb40ac9a0c36800fc88f73cd5a95b30c50fe96	n/a	Amadey
2023-08-30	n/a	exe	0f626a5324b42e60630fc309104971c812530f8671d745dc246261032db604d0	n/a	RedLineStealer
2023-08-30	n/a	exe	5cc747079e218758e614ab41645f4c70d6e74fc0b132bdd231ee6422088e5254	n/a	RedLineStealer
2023-08-30	n/a	exe	d9dfacbc3c897438dfab93a849665242abd3d124e43846f0b105108a836b72cf	n/a	RedLineStealer
2023-08-30	n/a	exe	2e41c62edf36284c12cea91576a393d313d9cb633169ed8dbcbbb98bb0b27879	n/a	Amadey
2023-08-30	n/a	exe	dcfc177cfea5496fe8b5f929a861b3dcc69b3924f0c6c4de033229432f6c268d	n/a	RedLineStealer
2023-08-30	n/a	exe	d7b425fd73b652cc401384df349d3204cc88570b5bfd2f717fdbcde78ee2d47c	n/a	RedLineStealer
2023-08-30	n/a	exe	f6f90d984f767ca4d9a2d430d1383c5b180c4d0aca67e2572f16fa842e909432	n/a	RedLineStealer
2023-08-30	n/a	exe	ca3ddb2ee963f8ce3067b5d16691245cee88ffa9ee89b8d2480b49aaecc176a4	n/a	Amadey
2023-08-30	n/a	exe	45159003206fdfa70bc9f63631805ec05930a77add8b0fd14140b27fda70108c	n/a	RedLineStealer
2023-08-30	n/a	exe	44f69b5f6c134124c3d52902f5fa6194724d997b30bc4a7bbb9fb174c60931e8	n/a	RedLineStealer
2023-08-30	n/a	exe	80c963d7cea25d27ef4365c2be78d31a0fc50da481408c1135b820ed540f96a4	n/a	Amadey
2023-08-30	n/a	exe	001fe57fedfc00df6711098dd213efae8cd36711b3ad403e8ab31f0070a4ef6f	n/a	RedLineStealer
2023-08-30	n/a	exe	8e43563c4ed06ebe8d29e25bbbe0aa71eac95457c64997cd617566989b7f2bf8	60.00%	RedLineStealer
2023-08-30	n/a	exe	b542b1dfb4773dad3651604e2637e55ff5853c16374c9ce8affbd9f25067417d	n/a	RedLineStealer