URLhaus Database

You are currently viewing the URLhaus database entry for http://193.233.132.139/talka/linda.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2819722
URL:	http://193.233.132.139/talka/linda.exe
URL Status:	Offline
Host:	193.233.132.139
Date added:	2024-04-20 18:04:06 UTC
Last online:	2024-04-21 23:XX:XX UTC
Threat:	Malware download
Reporter:	Bitsight
Abuse complaint sent (?):	Yes (2024-04-20 18:05:12 UTC to abuse{at}sunhost[dot]ltd)
Takedown time:	1 day, 5 hours, 45 minutes (down since 2024-04-21 23:50:26 UTC)
Tags:	dropped-by-PrivateLoader RiseProStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-04-21	n/a	exe	d34b6244a6c4d573b626fa237f126b31b769afd3bbaf77caeb1db9ca6a17595b	40.85%
2024-04-21	n/a	exe	8f82f1de5cd507dd90c604c127dfe50e366530fbc0bbe2841ce68767d911cc65	39.44%	RiseProStealer
2024-04-21	n/a	exe	17fc711fc1d75860642d929c42cd92e381dd025df4c9fc3843da73ac11098056	34.29%
2024-04-21	n/a	exe	fc75ad3d01ec85788ffeb103edc269d6ce73be701063b23d67c682e1b594f497	n/a
2024-04-21	n/a	exe	a14041622d7d427f0b7ea24efaa7e80a3b025c211273ce0914ee34b5e71bc8c4	40.85%	RiseProStealer
2024-04-21	n/a	exe	b38addc40522b44c954fb52445a63004e58a3a5ea161a60a3e8856fabe1db32d	40.58%
2024-04-21	n/a	exe	94e89533d1b66a315da566b230abed43cc764bf2c59e8aa574cf18e0574b0ec6	39.44%
2024-04-21	n/a	exe	4cb4937e363a6e15f7d19987d6e1a29dba5658ec60e4c36487848b273d9f82ca	n/a	RiseProStealer
2024-04-21	n/a	exe	49046fa939219bb37385a65422d1727faf34cfc2d852f235ea5c8ccc87080a2a	42.86%	RiseProStealer
2024-04-21	n/a	exe	808664281424bdac3e854a673ae81a897b17668d4d4e61f9899d7bf6d51a2acd	40.00%	RiseProStealer
2024-04-21	n/a	exe	50f3eb8c17b7c3d00da11ac2768109b969df1d6fc8d46d4655c3cd12e6da154a	43.66%	RiseProStealer
2024-04-21	n/a	exe	0fc3370623c008fcbf6fb0b19443b4fceee5f3ac44185586b3549d938e567eac	43.66%	RiseProStealer
2024-04-20	n/a	exe	161c295167d664d6312995391fd18fe3c5d6a0e53093c049ba4ab59ac410d53b	n/a	RiseProStealer
2024-04-20	n/a	exe	9ba89a594158dcad47219d1fffc94d54ceab08aa934dfaf80a9880fefd3e3070	n/a	RiseProStealer