URLhaus Database

You are currently viewing the URLhaus database entry for http://5.42.92.52/66844/done.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2730626
URL:	http://5.42.92.52/66844/done.exe
URL Status:	Offline
Host:	5.42.92.52
Date added:	2023-11-14 08:56:06 UTC
Last online:	2023-11-14 23:XX:XX UTC
Threat:	Malware download
Reporter:	andretavare5
Abuse complaint sent (?):	Yes (2023-11-14 08:57:05 UTC to abuse{at}altawk[dot]net)
Takedown time:	14 hours, 24 minutes (down since 2023-11-14 23:21:53 UTC)
Tags:	dropped-by-PrivateLoader RedLine RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-11-14	n/a	exe	e6e74f208e1afede346a8bad61a8a4f7cd662e7e5cda08e542cc2071fcd00aeb	n/a	RedLineStealer
2023-11-14	n/a	exe	0f4ee56cf37623a5ce199dd2b82394b97bb37de7fa4e0a5ab04eb3bb6f187d16	n/a	RedLineStealer
2023-11-14	n/a	exe	a5bcb60a43d07cd3a0729905a995349cccbd2133903d4ae87d354f10c2f9005d	n/a	RedLineStealer
2023-11-14	n/a	exe	6c1e860431a8049f10d166811d8a07b73d1efa3cdc6ad99645aecdc53f02762e	n/a	RedLineStealer
2023-11-14	n/a	exe	16a1c64a64c741f354cfa13e4640e2c10917a6968dc0ac075d0c3c13270a87cf	n/a	RedLineStealer
2023-11-14	n/a	exe	f2a2d7838b3afcca440dff215450ea03c7372dcbc89cc0ee76e31cbd6ede98cc	40.28%	RedLineStealer
2023-11-14	n/a	exe	69d13211c27470378270513c813b26b08bf3fec7a0c9b014dae9eab19a7b79bd	n/a	RedLineStealer
2023-11-14	n/a	exe	a8214be6431a029a423403db367166fb218a51c68b08027d204074e4d8aa7b51	n/a	RedLineStealer
2023-11-14	n/a	exe	019f08ce6c2558bdc249b79c4ea6f5e3a4362414c852edb85d31b4bbb7cc11b9	n/a	RedLineStealer
2023-11-14	n/a	exe	1fed95915fcdc6e8c537e30d7ae0dc52f04e8a011b728894ac9cb4e1d97b066d	n/a	RedLineStealer
2023-11-14	n/a	exe	fe91b5b56c9722031ed3b1157a71bd6958280d3c669468a41b13b824edb0d5ff	n/a	RedLineStealer
2023-11-14	n/a	exe	01458c663da14d2de5febbb6cf04e1d7e1ca9e0c0f494983153a8cf486b006a1	n/a	RedLineStealer
2023-11-14	n/a	exe	66bcd38d05f95dc83d99927795f4590bf8d3aab0518c03be336cf2bad959890f	n/a	RedLineStealer
2023-11-14	n/a	exe	743754530bf3cdcf57d1f00030b109ffce1431d59d3bb0db3af2c45a57523928	n/a	RedLineStealer
2023-11-14	n/a	exe	a9239808137987fc94dc64435bfaced4b2aff0622f84317d0c1a7c1d5d736514	n/a	RedLineStealer
2023-11-14	n/a	exe	e06ded0d2558327a17b5c251e1f527b9ef7f6fa93923822b307edc92a0c6ba90	n/a	RedLineStealer
2023-11-14	n/a	exe	c41ce82a30fe4f65791e0491bf176f36bbe76cf2e75a9e80bd35e913648484ea	n/a	RedLineStealer
2023-11-14	n/a	exe	bfc6bf4b6f316c12e9a8663b73181cc092d56cfc6e658b67df0f3a9a5d64e907	n/a	RedLineStealer
2023-11-14	n/a	exe	404a68305441ec69466703036d7085d7620d2b44110965a9b10fa8b30b60d356	n/a	RedLineStealer
2023-11-14	n/a	exe	23943b3d6938425abb71b4e82e9b8d3e93979091c175128c9f167dfc67118968	n/a	RedLineStealer
2023-11-14	n/a	exe	8362d692b53ba8abe56c3fbd7cf80ec961f0ee969e9e84635aca2f0942867ddf	n/a	RedLineStealer
2023-11-14	n/a	exe	6830f4f6a42ba988db5bb0d5f8a9ecba2db934df408b0b646d7dc2bada807cd6	n/a	RedLineStealer
2023-11-14	n/a	exe	c7da2650a4187d432fd15afc242860bb50a832b16a1f9e172be998e82faa0767	31.94%	RedLineStealer
2023-11-14	n/a	exe	a17b0d2692edc0b88cbb89b9c57e5197b95418f7fcc1d86b6ea556e14943f0e3	n/a	RedLineStealer
2023-11-14	n/a	exe	1c776a85522ab521ef878f3d157b54ebc35983add920803977c5dd7d591a025c	n/a	RedLineStealer
2023-11-14	n/a	exe	741af32b6e1a64ec03e27775dec1d568e834b9234ac8b6795ca2fd9e16c997a2	33.33%	RedLineStealer
2023-11-14	n/a	exe	f3671aeb0683a6c4865422e28208984d5036018d00aee6dd914a06e4e97d7983	n/a	RedLineStealer
2023-11-14	n/a	exe	86202dce9a23b5e232aaebc7e16f61bd18956eafb8e90c85330acec012c5d24c	n/a	RedLineStealer
2023-11-14	n/a	exe	7db04ddb55518c98493c17e533c6607d28a10d5385aa236d9a84a10670c49574	n/a	RedLineStealer
2023-11-14	n/a	exe	683bddebfee0964969656a1aee116b371106a14b7b1fcf14d3514c0b0490ee06	n/a	RedLineStealer
2023-11-14	n/a	exe	bc78663e97337eaaf8fc14ac83c904fe0dd5cb962ff47e45866b8f03f6ca1366	n/a	RedLineStealer
2023-11-14	n/a	exe	29f7b7528271f0a643e071942fd66c8618403bb8f2ab12b56d7a43294478901a	n/a	RedLineStealer
2023-11-14	n/a	exe	f00561666d8f2e34f5ef9826cac2dfae31533304357885f7bdcc1c87bf4bb3b6	n/a	RedLineStealer
2023-11-14	n/a	exe	36b8dc3abdbeead36282f08c5d1a4653091c4f2a29513a653b54e57aa8c3ffc9	n/a	RedLineStealer
2023-11-14	n/a	exe	aefa8ef262c1fecf55feaa45fd09375231bcd5ae3a00c73fe054108373a00e91	n/a	RedLineStealer
2023-11-14	n/a	exe	2807be7575c6c00827c91eb44c7ce633f12fb94271e287d5ed3ec771ec4377c9	n/a	RedLineStealer
2023-11-14	n/a	exe	650367e04f89478b785018e1575b636c77dd33a5437dcb0e79d01052770a1758	n/a	RedLineStealer
2023-11-14	n/a	exe	9e052c64bfa4493f20a554bd3ff34cdb7327a9428ad75833f6e11e942ffac461	n/a	RedLineStealer
2023-11-14	n/a	exe	e69fa17979f4dc03a37fbe37f92d686092271a6d610ae3d31d59d52441dd812a	n/a	RedLineStealer
2023-11-14	n/a	exe	a3cc4fff4aac80dd379ae09712229eff389c1172d888180dbce61715965f4885	n/a	RedLineStealer
2023-11-14	n/a	exe	114956310bd5e94d797b1932f2f0a131e40cff297cce7ffeb01b38e826cc80fc	n/a	RedLineStealer
2023-11-14	n/a	exe	6e627ca700a4794c9e46a849daed709312bacf1587109607e2f6c5eebb8a2598	n/a	RedLineStealer
2023-11-14	n/a	exe	194161ff16d06ab4d2d1dc0b951878e49eabe25c94d1aa2682ee8baba9754376	n/a	RedLineStealer