URLhaus Database

You are currently viewing the URLhaus database entry for http://77.91.77.82/trash/simon.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2899340
URL:	http://77.91.77.82/trash/simon.exe
URL Status:	Offline
Host:	77.91.77.82
Date added:	2024-06-20 22:20:13 UTC
Last online:	2024-06-22 18:XX:XX UTC
Threat:	Malware download
Reporter:	Bitsight
Abuse complaint sent (?):	Yes (2024-06-20 22:21:08 UTC to abuse{at}sunhost[dot]ltd)
Takedown time:	1 day, 20 hours, 17 minutes (down since 2024-06-22 18:38:57 UTC)
Tags:	dropped-by-PrivateLoader RiseProStealer Stealc

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-06-22	n/a	exe	1100a9657c43357bf859b955e85357bf7d63a2a13e7b72d6b3350bd07366dba8	58.11%	RiseProStealer
2024-06-22	n/a	exe	57ebb357d0760839b7de05f1950bc02738328ef70ea770689b34dc161c2fe4a3	54.79%	RiseProStealer
2024-06-22	n/a	exe	cf29d20fa8ebfca0b6cf8b882579ad7a3081fe94225fb5bd41cd3bb20a73f4fe	56.76%	RiseProStealer
2024-06-22	n/a	exe	83114c09ae71d597a49e2e5a5a471645a039d66db9678e199945a04a2818b1a5	56.16%	RiseProStealer
2024-06-22	n/a	exe	1e321502219440b589acbf576d1ebfa4ae7254d94306ea8e12032d1d791803f2	56.76%	RiseProStealer
2024-06-22	n/a	exe	4efdae419cd6ff29897612e8120c30cc78d947ca0bfec23646d6208b3758c962	58.11%	RiseProStealer
2024-06-22	n/a	exe	c4c0310bc779bb4ba051be5fe124c783a101e9d0ba03e530292e69ab00cd9cea	n/a	Stealc
2024-06-21	n/a	exe	dac1fc6c726b15476e024cf454dfe1deedcc284c4ac7e0fb991a1b175d6901c5	55.41%	RiseProStealer
2024-06-21	n/a	exe	ed89d7882eb5642f484531e5213aad32735d46cb172ce3ec34d5deae2f840dd3	54.41%	RiseProStealer
2024-06-21	n/a	exe	eef9d254325690949fd1f90d726d8c2a8e26ac0ec94d041f59975fef421c9213	56.16%	RiseProStealer
2024-06-21	n/a	exe	0bed782633acafd96d1242d8a06017fa41ba578d75923289aa9cd199f6bed331	n/a	RiseProStealer
2024-06-21	n/a	exe	a13a91b89834f98065a26b7b6bb98f59c7d2ae476d7dc862a9d11ee1b897f11e	55.41%	RiseProStealer
2024-06-21	n/a	exe	fa403baf4550c389cfd5ae27c897284eec9d1e053a2955e0aebaa63ff4801a53	n/a	RiseProStealer
2024-06-21	n/a	exe	fa9080aa92c97c44b9ea751394659ef41b5939684bbd8324493e6a5879fcb5e8	54.93%	RiseProStealer
2024-06-20	n/a	exe	f44b54751b7158902476013aed1fbcfec96bc0ab19b3303d088dec97f418885e	n/a	RiseProStealer