URLhaus Database

You are currently viewing the URLhaus database entry for http://77.91.77.80/rome/kenzo.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2883530
URL:	http://77.91.77.80/rome/kenzo.exe
URL Status:	Offline
Host:	77.91.77.80
Date added:	2024-06-11 14:30:18 UTC
Last online:	2024-06-14 11:XX:XX UTC
Threat:	Malware download
Reporter:	Bitsight
Abuse complaint sent (?):	Yes (2024-06-11 14:31:25 UTC to abuse{at}sunhost[dot]ltd)
Takedown time:	2 days, 20 hours, 33 minutes (down since 2024-06-14 11:05:19 UTC)
Tags:	dropped-by-PrivateLoader RiseProStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-06-14	n/a	exe	3c4bdab25c0192cb2e4a2781d7e3c1f61912a94f1b9edc4b7585e77a784daab4	n/a	RiseProStealer
2024-06-14	n/a	exe	78299a7a08c8ad383e80f7e3bfd0a044e4c87effe7083265746feff58966809c	n/a	RiseProStealer
2024-06-13	n/a	exe	6dd74e18bd79a08296bb9f0858ea1f83cad8592e176d789eef6a5275526a4453	n/a	RiseProStealer
2024-06-13	n/a	exe	aee092dd01683b6357b1601cb1028c798f11f63df1771b92b4adc62fc495fdd5	n/a	RiseProStealer
2024-06-13	n/a	exe	4ad1a3280b8ecc5324a9cbe4e4fac7ac6559943e267a6a82f014e7d153ede8f0	n/a	RiseProStealer
2024-06-13	n/a	exe	96449c387d2b7e7a33a9684e16834d0948013c8d8c4c940274eccb54a64e2407	n/a	RiseProStealer
2024-06-13	n/a	exe	75e7058e91674346af7d58758b9a7dcd118baa4db7c6668397ee17381ef4898d	n/a
2024-06-13	n/a	exe	2c9b134b73fef4919688c02067b98c96eacd382109dc733bc3c25cffee8db414	n/a
2024-06-13	n/a	exe	d9ca71c399f46c32406f649778170373470e52af34bfa9a9f6596718a314b333	n/a	RiseProStealer
2024-06-12	n/a	exe	5b4da68c17fcab69e252926046f41f91ee38c696dcadb849b74cffae5f7ce586	55.41%	RiseProStealer
2024-06-12	n/a	exe	d6eebb28b8de0ebdd8d6ea6cbb1ec41bff4f4e7210e80fb667fa622728d3fab6	55.41%
2024-06-12	n/a	exe	86a75872b77216bdc18510dc65f2230b483d06060b18c9ce3c7db74fe1434047	n/a	RiseProStealer
2024-06-12	n/a	exe	8bdacb1d09c1218af2fa47fde39c510b949acd7dc6b5df7f6f4112a4f66b69f2	n/a	RiseProStealer
2024-06-12	n/a	exe	7f77dd807235f38d388d3974085b3bbbea73740ea1ac78481bc2e1d300a89485	n/a	RiseProStealer
2024-06-12	n/a	exe	0ee5fcd693f5faba0257fc873aac4f2357136acdf459d958024fd85b00aa6565	n/a	RiseProStealer
2024-06-12	n/a	exe	a90057c12623de1c5d0345ddd823a3c9a49286cf4c3282c61cdbdc99bb420ce3	n/a	RiseProStealer
2024-06-12	n/a	exe	02e56102d43f87a43d2e4f9266b890674a0b4eee58fcc9d2e89c7d5371d68e8b	n/a	RiseProStealer
2024-06-11	n/a	exe	978652a9009414cf38edd7a8cb6387a654dc75b70f5522d4d0d375e01a5cb41a	n/a
2024-06-11	n/a	exe	cd8dffbd049beabe7330c4515eb8e96b3ff48c78fd138dca1e60e62918ff2905	51.35%	RiseProStealer
2024-06-11	n/a	exe	02eb68f258232aafe8a2764d21a9edb8a99feb19a49f35502304ffcedbbb7280	52.70%	RiseProStealer
2024-06-11	n/a	exe	7c1202b15e84c2d8909b925d69b7c5829425c3b64598508266d07e8c4185eede	n/a	RiseProStealer