URLhaus Database

You are currently viewing the URLhaus database entry for http://193.233.132.216:54672/dear/ushak.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2766080
URL: http://193.233.132.216:54672/dear/ushak.exe
URL Status:Offline
Host: 193.233.132.216
Date added:2024-02-21 01:39:05 UTC
Last online:2024-02-21 11:XX:XX UTC
Threat:Malware download Malware download
Reporter: Bitsight
Abuse complaint sent (?): Yes (2024-02-21 01:40:03 UTC to abuse{at}sunhost[dot]ltd)
Takedown time:9 hours, 35 minutes Good (down since 2024-02-21 11:15:14 UTC)
Tags:dropped-by-PrivateLoader RiseProStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-02-21n/aexe ce56c73d37f27a1e6ea24651a9d0ed69f915825b10565513d5607b3886949acfn/a 
2024-02-21n/aexe 78765fe74bca188a979a5c68843ae02a3ab987d59187b68542b39b823f2299ddn/a 
2024-02-21n/aexe 915b6d044cee2c399f8bdd822ba9aa87ab75e5879e946bc609518410f02249d6n/a 
2024-02-21n/aexe 8072989c05e9293aa251e0bd7259f6e9d16fdbf9953e3d38fc7d56afdfcb1703n/a 
2024-02-21n/aexe 4c16a05684349dc339b2572b68e0c5cd034b8e08bd0a50801c4d521ccbcceb02n/a 
2024-02-21n/aexe a87ed99f4d65de195bffa9f86a243bf5f4241249ccb96cb1aefab1bc9b48b158n/a 
2024-02-21n/aexe e96c5a5e16e76e8926c7378f503131e15b2abf2456f8b8aef7ea81f03006de73n/a 
2024-02-21n/aexe fccd7093d23b5aac7588a3b6b5d30240426a08fa75d93172d23460826ee15f10n/a 
2024-02-21n/aexe 4c4fcc20526218e94c31c7b1abeee60acb3ae6d71944c469e55d57aa6350e72cn/a 
2024-02-21n/aexe ca22627094943885870d976f475e01333f2414230513c2b366f4ce24333afd22n/a 
2024-02-21n/aexe eaf9f8b71c1490fc1218362b4de76b72da41b6b8e336a7a14baedca2cdb1c630n/a 
2024-02-21n/aexe ec291f72135b5826eae935f229e4c1bc2bc14d3671c9001452be407fc130ca3bn/aRiseProStealer
2024-02-21n/aexe 97245e34475774c48550320e965a794f85b2c9df2f1d0bb5e2d3ad3860be35ben/a 
2024-02-21n/aexe 88ee8e1003d78d5b44d7cfb05157ac7a32d6ca08af8429e1283aab23788520a6n/a 
2024-02-21n/aexe dd0c24a4f7ef561d1f469e0d29a58f8ee041e56a4d35d80173958379e96bcf9en/a 
2024-02-21n/aexe 9ed76d0cdb1f2b686adb7739764e2bdde84c7497b753cdd92ebefd5efea9b378n/aRiseProStealer
2024-02-21n/aexe 8af9bc4bca95c095bba76feed1d1c33fff370e4ae53a284fbff2458cada8e986n/a 
2024-02-21n/aexe 7eda96196aba8ede36cfb15ac508debe75927d0b2997ef9c494d0223fb478dd3n/aRiseProStealer
2024-02-21n/aexe 065e40eac93064f32ca892c0d03a1afd20af992c1c1e608eba8f0549245f4d75n/a 
2024-02-21n/aexe d607b4eddf572f2fec9793349518180df59d795f58fce6223e8183ebf45b7e6cn/aRiseProStealer
2024-02-21n/aexe 88a2bc6a71b781818a170e74b81b01e99a6d018d1b095652557fb1afcd1e0d9dVirustotal results 44.44%RiseProStealer
2024-02-21n/aexe 9911129661bce9c536c1232b12b2aa19501d9dfae099c146d25308c7bb6839acn/aRiseProStealer