URLhaus Database

You are currently viewing the URLhaus database entry for http://5.42.65.80/newrock.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2720849
URL: http://5.42.65.80/newrock.exe
URL Status:Offline
Host: 5.42.65.80
Date added:2023-10-15 23:29:07 UTC
Last online:2023-12-03 18:XX:XX UTC
Threat:Malware download Malware download
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2023-10-15 23:30:08 UTC to abuse{at}lethost[dot]co)
Takedown time:1 month, 18 days, 19 hours, 9 minutes Bad (down since 2023-12-03 18:39:19 UTC)
Tags:32 Amadey exe glupteba link LummaStealer Smoke Loader link Stealc

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-11-18n/aexe a4da06d0ab56fd0790449662e712fde91902849b4e50fd30f389fcb4bf76a6e3n/a 
2023-11-17n/aexe eeb8488e53c847357e34e2869e3a265f7b55aca14fa9270da85a022bb5912d7dn/a 
2023-11-16n/aexe 6f735da34e90dce7418f49a7d25fa183650fd9fe681804a9ab5f80d3005b1c5dn/a Smoke Loader
2023-11-16n/aexe 7eeec8c77dae7ae63692da71d01d9299d0c3a3453abc0ee85b72e52a338d560dn/a Glupteba
2023-11-13n/aexe cf7afbb776ecb9d56aadbe8b35a2491d92c2eb30cf3b4b121fec74d8d285d88dVirustotal results 58.46% Smoke Loader
2023-11-12n/aexe 5b42f5ea4b59984f6fc9c2cbcb4608e3f1b891d5653d53050ef415e029bcd128n/a 
2023-11-12n/aexe 5184c87f70fd14293e599b26fc4361ec3e5708095678c8a84143a059be319cf5Virustotal results 62.50% Smoke Loader
2023-11-12n/aexe b3f31d727fb8e0b68a98b70cdb8756d003bbaa9f74aed96d456cb28a4e1d4cf1n/a
2023-11-12n/aexe 9d8ca0ed84c5b3a858c2230000f28d9326ceeefc8a8a603e9af3c6c1bc65ba67n/aStealc
2023-11-11n/aexe 19ed8a06e27e50c441bb3b3e0c743ea9f0263b43154e323a93e5b78953162e32Virustotal results 61.11%Stealc
2023-11-10n/aexe 2f831895016ec2f255ca65fb3fb7b7aac1c5f8bd07569fd170bba8dabca86f7cVirustotal results 61.97% Smoke Loader
2023-11-09n/aexe 72abf8c3fb6a8203fb09cc25458d00eaf0c09b243530cddeb1cebdd110a5f607n/a Smoke Loader
2023-11-03n/aexe 985ace3f4d50e1df595a3ff06455a42300d16c50989cf132d88e16e150cd0998n/a 
2023-11-02n/aexe e5e0558d007f65ee85a22fe837df740ce55f8f40455206f3df502bf4ac564f75n/a 
2023-11-02n/aexe 79d08c963936f636caf08c7b738a7cd09aea0e4e762e2600adc6e62745a3087en/a Glupteba
2023-11-01n/aexe 8e0cf22b0de87b986ce6653e5d892633688574d1b51662fdeb620697b79a122an/a Glupteba
2023-10-31n/aexe 56ae58cbc108cb9d2237a4aff5509a0fd5862d4cf4bab8adfde9a4c49c5e9392n/a Glupteba
2023-10-29n/aexe 8a964d8fb52489ba9086bf0ab5cf8ca7822fe698d03e5e6d5174640f52b8c5een/aSmoke Loader
2023-10-27n/aexe c3847002a8cd53999920d0024658212061b4173877e1afb61126543e1a17172cVirustotal results 55.56% Glupteba
2023-10-27n/aexe 5618ce8cda91260aaa569b6848108ecef4ffa8a9836ee25d92f8e85523def7cdn/a 
2023-10-26n/aexe 3d69fe50e9052d908c98e00921a10512ebf2ba3ef109459a6b979795fd5178adn/a 
2023-10-26n/aexe ba45603aa8d33513bee6297f87f2bdc61ddde8dfeaa6cf086a1b28e33c2b5af8n/a 
2023-10-26n/aexe 8dcc81b1d6ecd83c0f4c57f559b480dd00a3f4640b11517db9b28d66321735c9n/a 
2023-10-26n/aexe a406a3c1474a57c62f3dbd56aa15d5d732e6a0fe8bbfd7bce9425b132204da8bn/a Glupteba
2023-10-25n/aexe 15ac76fbfa706eba90fa943d3417ef3de45bf8d21c1f77bd4dd6ebfbfb87d621Virustotal results 55.56% Smoke Loader
2023-10-25n/aexe 41ca40d43bca0d7179b4a13253098df506015778bf60ade4f118cef1fcc68bf8Virustotal results 56.52% Backdoor.TeamViewer
2023-10-25n/aexe 07e0f1bd9b75e2a91827480684278771b2309945f108f6f966a31eaede673105n/a 
2023-10-24n/aexe 1c821461df42754405a1661ced3406fd519ae8b211fef952fcb6e03d718039ccn/a Backdoor.TeamViewer
2023-10-24n/aexe 752db01b5ddb754369ff5182155bf87b3c6f6d263e9485034b6d20369552df9an/a 
2023-10-24n/aexe aa4bf2143b0890be96617075d93065ae39ae9a41c090fe05c97b2449c2443740Virustotal results 56.94% Backdoor.TeamViewer
2023-10-24n/aexe 4e233c5e8da5286a9255855fecaed4173da8a700c5c746f227d83799b63a7c32Virustotal results 55.56%LummaStealer
2023-10-24n/aexe a94c46db65430f4dfd0f41a6c054733038c26b11b584f8bb622d9553df129d2bVirustotal results 55.56%LummaStealer
2023-10-22n/aexe 51d09b19d28bdb3ba4887b2bca74f1a8828dcae4764416cd77358aefa58d23fbn/a 
2023-10-21n/aexe fb05bb51cff2c073869c81d78a084650c62f061f0aad33138c862b36271a4054n/a 
2023-10-20n/aexe 8fa813e6be834da063c8e38cc29134e40a571e1ab0d4d0ad481c80b19d0762adVirustotal results 59.72% Backdoor.TeamViewer
2023-10-20n/aexe dc3465fb3227b34a1cda75509864d20db9fa846013883ae4010590352253da1bn/a 
2023-10-20n/aexe 4dff6960c0433813d15e76e95c9f5885564dcaf3f0f2cb26efb84cb4721be8ddn/a 
2023-10-19n/aexe 3bf78815615306ad4be27fad0bad2a6415b55ae781d104028772c3975586b53aVirustotal results 58.33% Smoke Loader
2023-10-15n/aexe 2d620c7feb27b4866579c6156df1ec547bfc22ad0aef00752ea8c6b083b8b73dVirustotal results 59.72%Amadey