URLhaus Database

You are currently viewing the URLhaus database entry for http://147.45.47.93:30487/zigma/kefir.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2779180
URL: http://147.45.47.93:30487/zigma/kefir.exe
URL Status:Offline
Host: 147.45.47.93
Date added:2024-03-10 15:45:09 UTC
Last online:2024-03-14 00:XX:XX UTC
Threat:Malware download Malware download
Reporter: Bitsight
Abuse complaint sent (?): Yes (2024-03-10 15:46:06 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:3 days, 9 hours, 2 minutes Bad (down since 2024-03-14 00:48:21 UTC)
Tags:dropped-by-PrivateLoader RiseProStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-03-14n/aexe 100280d707aa062cf347c7b975cfbeb94e2b238ff61dfa1412e11ac75045ac4an/aRiseProStealer
2024-03-13n/aexe 5c15dae2bb06ef7a9137936a74f92f3811f2912202c5d51d1b7d3c89ed8109b5n/a RiseProStealer
2024-03-13n/aexe c4e6135d3f733dfd13b5c575bf9360da0a6dce73f671b7aa0297ab10cf8cb7b6n/a 
2024-03-13n/aexe 1b4c1e38b36d27e6652ccc239e05ee58e99684832f92e7417aa251eb008729ffn/a 
2024-03-13n/aexe dbb5162f3bb75a062ad36342d2a93d26caa9d2c3aabfb4bafd8d8016f652f04an/a RiseProStealer
2024-03-13n/aexe 2a84974260c4593afdaf4c7dd62222dd3fed691721a9e50c6e90767ac5530d8fVirustotal results 38.89% RiseProStealer
2024-03-13n/aexe 37a0d518e8d289812fe7c3e398e1ea9bca19eb593bcf405195dac9bfe3260257n/a 
2024-03-13n/aexe 9fcee39313e9a3adaa58ff7cbc1231a683a8281324c70ba7711648ed59a2d9b2n/a RiseProStealer
2024-03-13n/aexe 81a79b3dc68b96d9f303f59fa0fe3c79ef37f01f428c75f1f75328c99cea611fn/a RiseProStealer
2024-03-13n/aexe 58acecb3bbb145bc038f77965a2df2e73f250922b7b4111a831028d0d4fefac8n/a RiseProStealer
2024-03-13n/aexe 25f24ce8c5290504e7361bea08f461194968344d5fcc1a2fe206c6430eb44525n/a 
2024-03-13n/aexe 25f24ce8c5290504e7361bea08f461194968344d5fcc1a2fe206c6430eb44525n/a 
2024-03-13n/aexe 15aded5f7da2a2b5d06bcd0b39492b9a531371069eb2dd00e29e37facb8fd561n/a RiseProStealer
2024-03-13n/aexe 5220a1d650246bcd663fd9f293ed1d869d87faddbeca290ee3aabc4cdc29ca99n/a RiseProStealer
2024-03-13n/aexe c7bd508425d42fda1d817bcf18c231d7a0685ac951d69d29a8a79511091909c2n/a RiseProStealer
2024-03-13n/aexe 5890ab19d1a8dc1cb51abc7e02fb0f724833fd7dc2a27d8e950149a956ce6a65n/a RiseProStealer
2024-03-13n/aexe b4cebb1e170a8e8c5a83c2adf9fa168177430936c5e42dc21a5f623547bbf750n/aRiseProStealer
2024-03-13n/aexe def1255d6717ba3de9a31794189ee50ac21057c6c4a72e85390f011becb1dac3n/aRiseProStealer
2024-03-13n/aexe cd5b9da6bf08cb29489a73812a57da311a576da87a61663418b43680854b3352n/aRiseProStealer
2024-03-13n/aexe 7a9b110b8bad6f6da34ee61f14a91878e510269c49385a2812866bbb94bbe988n/aRiseProStealer
2024-03-13n/aexe 05da92735dcbd13eb4bb133a7987e1b30d54e77fbad07f0dd1321698ebbb588dn/aRiseProStealer
2024-03-13n/aexe d3c4150f1ec4bf5df0fb130924be8e9ac7c6cb1ed510173f9d09eb3ada3e5a11n/aRiseProStealer
2024-03-13n/aexe 5dd96b038d585d99ba783f9143ebd090a96f4f26e47eab20bfc16a7c02ff3d2eVirustotal results 55.56%RiseProStealer
2024-03-13n/aexe ea12be0bcd6e21751259225f36cf7de35a8e14daedfeeec751320989d7c1502en/a RiseProStealer
2024-03-12n/aexe 80843ae7c4678ee88976e678d357cfdb95fc5d7542e85d7f8f273ef06333a2e5Virustotal results 49.32%RiseProStealer
2024-03-12n/aexe f477bfac03858a0b533faa941cd95fc762b699b59ce7496ac87a0fefe1ea8e4fVirustotal results 49.32%RiseProStealer
2024-03-12n/aexe 88fd58ae6ed5dadcecc546869701e10c9965f2317f282b4dc9fb54121ec59e3en/a RiseProStealer
2024-03-12n/aexe 8f0d06291b2a3ba5c3f15ef1074cc5f707a07e1b03f6e78f42dab66f7ce84605n/a RiseProStealer
2024-03-12n/aexe 18f98a994fc84ceea6cbd21ea502ce130b1994707a349fb8161cf72735d280fdn/a RiseProStealer
2024-03-12n/aexe 3f22b830b49e57c519880318d126fa7121bc8cca0d31fab55bb8e16b77bd8e57n/a RiseProStealer
2024-03-12n/aexe 7fde4495956a27288bf13082dd2cf8f5ed70f56fa7b9f46ed412c01b30c1a066n/a RiseProStealer
2024-03-12n/aexe 8731953741bffa963880b62680d05fb7ddf9b93bcacc454f3a2b7511768f7016n/a RiseProStealer
2024-03-12n/aexe 4c4d8a36a85a8fcec9d9084069cbb3892f32dbd886e85eabb916d4f0653eed09n/a RiseProStealer
2024-03-12n/aexe d67d1471ce351f4cf77b2ac9bb8491e0b9454c121e4158b6ede294bc610009c5n/a RiseProStealer
2024-03-12n/aexe 0c1f00f61c6cd0818f78411ba750cab60da35da7a0cdff42cbd1e19ac770fa41n/a RiseProStealer
2024-03-12n/aexe 7424676cf52e3c1921d92ddc2014dba4bdc34f514018a3ebe48f5eee57cba3b7n/a RiseProStealer
2024-03-12n/aexe df646a73f93fe3e5290285797017445c5dfc04d9bc9668b88278366b0ba4c29dVirustotal results 51.39% RiseProStealer
2024-03-11n/aexe 634c1d57df34afb4f4d643ab661644984f79a5c3faf2feb5821be93a99c5b345n/aRiseProStealer
2024-03-11n/aexe ac9b51e36c3d451bc7bfac6c1103ebe9f113b7fcc17918213a2c83ce7e7e3cacn/a RiseProStealer
2024-03-11n/aexe 66d77937fc2d05d74171ef7b7ba7da4b4c2ed96495b61f345a31c79cfe4497d4n/a RiseProStealer
2024-03-11n/aexe efeb2acf0025d8b88823a07865013678d80afa96441c9d2d87df903e8f181257n/a RiseProStealer
2024-03-10n/aexe 682801ba03f285dc2e97378ca30161e1c91e7ca1b939ec837c75d0e9606c9133n/aRiseProStealer
2024-03-10n/aexe 0e1e44ffcc352de6e9f24fdbf9a8a818b574a9413a7f4c044742f46718fb5658Virustotal results 50.70%RiseProStealer