URLhaus Database

You are currently viewing the URLhaus database entry for http://47.104.173.216:8082/GGWS.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3100102
URL: http://47.104.173.216:8082/GGWS.exe
URL Status:flame Online (spreading malware for 1 year, 9 month, 24 days, 21 hours, 21 minutes)
Host: 47.104.173.216
Date added:2024-08-10 16:55:13 UTC
Threat:Malware download Malware download
Reporter: abus3reports
Abuse complaint sent (?): Yes (2024-08-10 16:56:08 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Tags:RedLineStealer link SnakeKeylogger link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2026-05-27GGWS.exeexe 1ee25b05e4bb023a72014ca14e559f06dc50401dfa2be880eecb29cc1cc98b7fn/a 
2026-04-30GGWS.exeexe ecd76b42a306f73cfccc73421e7b0ad5571556589bde4b9feb311203193c97c6n/a 
2026-04-21GGWS.exeexe a45b4e536306f14e660ce699153c4edd33006cac6a0461b66a099e508e4e085an/a 
2026-04-11GGWS.exeexe 1c8df2cdbd3bed37ba873cc0235ca869479afd229be55f80b16a7f1ab0368a0dn/a 
2026-04-10GGWS.exeexe 8e3bc6793e5570383a98db5f7c32eff7e84b8fe7be29e7305a64b9197df7601cn/a 
2026-04-09GGWS.exeexe 33c188f95c24744ca5ada66d9820967fcee148a5c0771f91bb88f58d2cc556dcn/a 
2026-04-08GGWS.exeexe e9c3efd76af8a87cf38ff2e5fa490cade78c9c3d671b7abfd08a5fd5e7c46fddn/a 
2026-04-04GGWS.exeexe 1232ac9e5d648f7de060314b4d81ffe72a8a88a3558106ef73aff8873ca7ed61n/a 
2026-04-04GGWS.exeexe 66aa329f4477638f7214cbf8ece7a2c9bc99fd5e882bb4660b89f9e4ff6ae876n/a 
2026-04-03GGWS.exeexe 254ebe2e29035810eb1422737e72b130b5cda3f20f8ce077436690f0cd990822n/a 
2026-04-03GGWS.exeexe 15a2a20125aaac6e2796470eaf65454419799dd7f84e13b21544e20151130ba6n/a 
2026-04-01GGWS.exeexe 0c0363bf24b7deab4eaff31bfa86cf7310b12d5aa4cb46eb895265701899c401n/a 
2026-03-26GGWS.exeexe 1a79484611f4d54ddade6ad3535b98d4c461d5d2d0d585931255516d6e310b45n/a 
2026-03-24GGWS.exeexe 0e8e4cb0519385d12426f0b0eb2f692a4dd29a7ee4b91d0c47e0ae77983de2a1n/a 
2026-03-20GGWS.exeexe 2704b1e8099cb470b57a73c710a14721f64e5d20da794a6924168d6c24a5495bn/a 
2026-03-18GGWS.exeexe 2639fa5ebce2479983a1b934769806719dbb294db287fb34479acd95336869fcn/a 
2026-03-17GGWS.exeexe 97aa83cc32dd502d8b689f2d6e0c55e42ad096b3aa14e88eb96bc28beb7f70f5n/a 
2026-03-16GGWS.exeexe f11dbcf89e780c9f96843fe5310d2996ee167125cc6153fad37a9b4cc12cbfecn/a 
2026-03-15GGWS.exeexe c36f30be991ce71dfdb20f5348ee130f311e7ea9bd1562c0fb4f5d4179aa8fa9n/a 
2026-03-11GGWS.exeexe 8db1247e9b7455ede0d8109f260601706e2ca05ea2cca529f31588d41c22b9f4n/a 
2026-03-10GGWS.exeexe 7209041bf34d725bbf172a10c38c150ca4401f44cabeb25d26a2057c0390ed17n/a 
2026-03-09GGWS.exeexe b0ab864487436501a079f9c4ee44e73436250145ae195357946f8d65717f9241n/a 
2026-03-09GGWS.exeexe e93832fd151fb1c57bfc8e45223d681b590a521b9292b35164f89d16e8f2f543n/a 
2026-03-05GGWS.exeexe ee709cedab33e41de67cf183cfe252b01ea52f4216abbd3e85029446ea2d0821n/a 
2026-03-05GGWS.exeexe c1aeeb9f9da24b99cda746bd29821670c58dd6cf3c300079677f897f4f9fec35n/a 
2026-03-02GGWS.exeexe dec73e022ab8758b7251f9af4cc7af2c1987aa9ff1ce3491ce8ad21bf20c4277n/a 
2026-02-08GGWS.exeexe fec8567478269d70fc3dd038dddcc263bd594fadffeb4043fa7ef9e3d0d5b59an/a 
2026-01-31GGWS.exeexe a992724894543a5fddb4f810d5582897c7cff9d6d3ed17a567e1d29f16afbb4fn/a 
2026-01-29GGWS.exeexe a70514009e86709dfd18f2de5f171a3aedca8c260003a95ab954f60a27c11420n/a 
2026-01-27GGWS.exeexe 57efd1cfac6b5f995efce90065ddd272049d232f8c33749f0ed7b4d2220456c6n/a 
2026-01-27GGWS.exeexe 32cd7ec660ec29502d52011c96f89928c80a81394cedc7da99b58292e1d8553bn/a 
2026-01-26GGWS.exeexe 7fef52cfbde93db593841abe028ef5029edd11da5a5dca8fa8f0a9709ce9278cn/a SnakeKeylogger
2026-01-18GGWS.exeexe 05505b2a4a2eb43bc41fb095f1db16bab4dc58f92c74b707b5543fd6c98cc96cn/a 
2025-12-11GGWS.exeexe 612d4c01530c88a500a76fb410cf5301143d14ce1a8e190eb9c4dc063c63629fn/a 
2025-12-09GGWS.exeexe 6f5e584b239bae8b15252702aa784442bd3814d9ba9cf29b91fccc0491d1f5e5n/a 
2025-11-25GGWS.exeexe a7f03ed9951505481d8999bd8437d54dcef6cd6cf7f35edc12ed88c553a31eb8n/a RedLineStealer
2025-11-22GGWS.exeexe cbb5f3cda6ded0e58ee7062e0dfca5c613c42574be54a822afc1deda4bcda900n/a RedLineStealer
2025-11-18GGWS.exeexe b0501d33749106cd6d8947ab37f71937e1ef878bf7f199dbdda46ac4e407d393n/a RedLineStealer
2025-11-17GGWS.exeexe fb5c5a9988975215d82d86dc67dd26697db81ad3088a6c25fc46db1b098e9fc8n/a RedLineStealer
2025-11-14GGWS.exeexe 94349785eff29651d95beb7017b67c183d4196f3f0bbe3a7ff3e4e82f935feabn/a RedLineStealer
2025-10-29GGWS.exeexe 984c6fb10a66ffb4deddd73f64591d9714a7c4fd3af76caa1b629376ce5f51bfn/a RedLineStealer
2025-10-28GGWS.exeexe bc6dec6a782560d7fa1518ec28ec33b155f8856d1898bf6ddd0b0f385e18e103n/a RedLineStealer
2025-10-23GGWS.exeexe efb3e09bdcfb2ad99c7ad5688a18673cdde18eefd1bc7bd1619e5c3d69ef79b2n/a RedLineStealer
2025-10-10GGWS.exeexe e141b4150753e0f68e3fe6bda205f6ac261f532785cdc8a6c4838b17c2f7366bVirustotal results 34.38% RedLineStealer
2025-09-29GGWS.exeexe 8a6c28ee68aa59a48d619a5c2396561a015638bb9a1bd023e06dad645da8dcb8n/a RedLineStealer
2025-09-28GGWS.exeexe b35873f2a28d42f9d0b72a112369d42773b8faf407f6c800859f60d4a2b6d277Virustotal results 34.72% RedLineStealer
2025-09-24GGWS.exeexe 7a239f6b41dadbef1ad5f91f7e9ead16b9c4e8e5cbae31d484bf80af288a42a9Virustotal results 35.21% RedLineStealer
2025-09-19GGWS.exeexe 0839529c4dbd5541b5ff1889ede103322f7eb0e692fa5a2bb934864a04c14a44n/a RedLineStealer
2025-09-16GGWS.exeexe 2a73b211596d3e66b42e1dbd2bfb52948a37a642b4727a4df6f8df1a39d52b24n/a RedLineStealer
2025-09-16GGWS.exeexe 6b04e081b61d19856828dec62d3f680571645872f56f2a033dd1dd841998e5b8n/a RedLineStealer
2025-09-16GGWS.exeexe 02f26e5f0eec3223d3e57cd6d54748b491ff1035aceb0125de7e98bed6a949d4n/a RedLineStealer
2025-09-07GGWS.exeexe 76c882d28e6dc430882217fda6048b6b7daa0fd143b023ac789ee065eb25604cVirustotal results 33.33% RedLineStealer
2025-09-06GGWS.exeexe b28115f500df606ea74b1ee23ca0deaa36f9078d1afa7d438ea491a8829698edn/a RedLineStealer
2025-09-05GGWS.exeexe 83e48382985ed3f4a76046e7cf8aba15cde8c8560a0046cd7b3fd76493c25756Virustotal results 30.99% RedLineStealer
2025-09-04GGWS.exeexe cdbd2d2c53cd3dcb029aed16eb553a9710fa98a743e4c6a5856583489275df8aVirustotal results 31.43% RedLineStealer
2025-09-03GGWS.exeexe 390a3b63aa310acb688636e07f397a912f7882f0e36fbb443fac652cc6dae967Virustotal results 36.11% RedLineStealer
2025-09-03GGWS.exeexe 8c9a48911729a19ef651ac77a947b9113adae9d5a5b1f4eb2e4b0ad79cd00f31n/a RedLineStealer
2025-09-02GGWS.exeexe 05ca341d0c04001db5d9e647995ebcc1295c50a407393bbab367009e991f2f49Virustotal results 36.11% RedLineStealer
2025-09-01GGWS.exeexe 742c80711a743088793795e56ea425a878a7a0f798a77c407a2b483faca52f57n/a RedLineStealer
2025-08-29GGWS.exeexe 6405065267d07d96651ffa63ae4f6f51481116ab6626c6f8b9baf0167575d071n/a RedLineStealer
2025-08-29GGWS.exeexe 5aa7f18912a774c76f7d72d72ca818db2ca81423308aeccc611204ac4d2ad003n/a RedLineStealer
2025-08-28GGWS.exeexe af5114721e1859600e13a1f68806ed0fa7709cd03d1230ec7089215aa9a6a213n/a RedLineStealer
2025-08-28GGWS.exeexe 7c4464d9ddfa6cca3fdbb8d0954833187e12db156768cb8a8d2ffe2e600157b9n/a RedLineStealer
2025-08-27GGWS.exeexe 6bfe80ace3742e5b2756405a5ff5f9e9786c48002b76bc7a1f82edb55ff15eb6n/a RedLineStealer
2025-08-27GGWS.exeexe bbe1c93faa5c131f4050eb5d83cecb909ef830cde2dc10a6cbc95cf43fe6b39dn/a RedLineStealer
2025-08-26GGWS.exeexe 492e0aa136f6fc04aa85e2815137580b5a95f0fcc20cbfe45c032e68e371a9e7n/a RedLineStealer
2025-08-24GGWS.exeexe b736ce29f0ab0c725c52e7b6c34dba1d7c00dae039bd7e86215fd08c581d3ba0n/a RedLineStealer
2025-08-14GGWS.exeexe b860d10e59dfc86aad98971473c7e7535e3d5f74fe24b1f16321c8b9cbf60c0an/a RedLineStealer
2025-08-01GGWS.exeexe da98fa21e4e09c04d8011f0b494d0bbc028e53408886431f0e7c88053a8f9937n/a RedLineStealer
2025-07-17GGWS.exeexe b02ffcc4641eac4e0ec403e72df10269b25d668f616e3c2c854d95869c65e5c6n/a RedLineStealer
2025-07-16GGWS.exeexe 199f9f0b2f72fbd10bc2bd68e613f74d21fd73bde5a1ccf795054ee60189d7cbn/a RedLineStealer
2025-06-14GGWS.exeexe 8e65f53262a8f3d75a00942214d612df3bd983dce8868f0b1c59c08a9e158728n/a RedLineStealer
2025-06-12GGWS.exeexe f98bf24ca34e331955d914c91fae87877b09c3e399212721559045ef978a0305n/a RedLineStealer
2025-05-31GGWS.exeexe 07759ffdce343b7e793e44a10d2712eb1edddb866b8f81cf6312cbbb57f3627fn/a RedLineStealer
2025-05-20GGWS.exeexe 4fb3a33a064c4c31832c3e0039ddc159d43c90c090c7be955fededa806198ff2n/a RedLineStealer
2025-05-19GGWS.exeexe ca3fe98c29b4081c818746690d0fa43598140a445ca1a2161c0d57537bcfe95fn/a RedLineStealer
2025-05-15GGWS.exeexe 723e6e2e92625ae1b6c7ed583b78b33d592cfb2be9d5a7e66266c99e66b396e6n/a RedLineStealer
2025-05-13GGWS.exeexe 973452ab740a9d51f460a9f9b7df499e09eac3b066fcdf9a82016fc8d9b209d6n/a RedLineStealer
2025-05-09GGWS.exeexe 79bdf0b3a9cfa1b2dbd0f7aaeee0e39d931ac963d628378f40d768ab7780b7e9n/a RedLineStealer
2025-05-08GGWS.exeexe 47f5ccb26eef4af0bf2fa949189222965d5191c5b50d144064d82522c99fe72cn/a RedLineStealer
2025-05-07GGWS.exeexe d5768e038d800b112d215e27c2c349b656c884b20216048e1f5fe6ee642774adn/a RedLineStealer
2025-05-05GGWS.exeexe 1e9af91f6e7bd941556df565299a09cac0c3ab54b45a3786b8e33706d96c3da3n/a RedLineStealer
2025-05-05GGWS.exeexe a6ca1dbbaa20c1de555513e2dffe668e96c4d32f043763c33bf4fe21dd9d36c7n/a RedLineStealer
2025-04-26GGWS.exeexe 31e7ce62fbcc7671a9713ea6800fe70234a2c3dd13ed660c3cb266cbb493c886n/a RedLineStealer
2025-04-25GGWS.exeexe 9621dff5698fb9be7a634ba7c16dc10b5c04e098c1af3bf1192d5b47347cd76bn/a RedLineStealer
2025-04-23GGWS.exeexe 1c2e5f4f33c03ba6740f82fda17b2b5cda4c7d20e13fd464e98310e675fa9961n/a RedLineStealer
2025-04-23GGWS.exeexe afe5978e437277164847088ee751ca2876249dad5801d12b38754fada03560can/a RedLineStealer
2025-04-22GGWS.exeexe 331f39fb5e2edb271d5c73cacb679c8f08a2f18ca284c664e1abbb5b8a25a307n/a RedLineStealer
2025-04-12GGWS.exeexe 3abbe78e6122882e851f642cf5893e8f1751782060a8b9504aa16c75c44d5858n/a RedLineStealer
2025-04-12GGWS.exeexe 307b020ab58eec37011db2031627e06121b07d2528bd7368e08c7d2f57da8a88n/a RedLineStealer
2025-04-11GGWS.exeexe 203c2bcede9959a19e700dc52041984cb17865dc43cdcac99c8d9b9a0779c1e3n/a RedLineStealer
2025-04-10GGWS.exeexe f813aae7d0c92a7aad7497cc5debc1472ee5ed99d3a7c20e095dd8e708b8ae61n/a RedLineStealer
2025-04-07GGWS.exeexe fbe6e5a39e02bf1b69aca8059b4a5693be4db4039b07628c0424540f785ef25an/a RedLineStealer
2025-04-07GGWS.exeexe 24a22e5de96fdb7dfab687eca7dcad1298bf14e80782d02e4e79edc4454335e0n/a RedLineStealer
2025-04-03GGWS.exeexe 1e09d28c2ef64eca710ced18ee37accd13c75c55705838eae2ac93fd1da2d5a0n/a RedLineStealer
2025-03-31n/aexe fcee6fc713a8e9b6244a0fdeb1c1410e83e1437e137873d89328e4ea5d5b941bn/a RedLineStealer
2025-03-26n/aexe 982c095b38c611d6f7d1b7daa6725f49f64da600a33125a8a1db8ba435c3bc85n/a RedLineStealer
2025-03-22n/aexe 720f0da2722e42b0e9c5f2b7ac4738791726706c5a2dfa1ce773271f06eb83e6n/a RedLineStealer
2025-03-19n/aexe 5ccdbe27dc1d18d136d395f4232022492ef0373c540f2ecb53eb2f2999f7f563n/a RedLineStealer
2025-03-18n/aexe 1fb46e510e4395ff21bb61fcf6e17052c06b0e33f1aa68783abfb5dcf5bd19d2n/a RedLineStealer
2025-03-17n/aexe 6241a49f62d8b7ef90d538993bc1d32cf0fcf3e976059a8d296f3ab05c9cd4a6n/a RedLineStealer
2025-03-15n/aexe 5f3149a669a47ecc80b61b4b9469b06b3f9df2232906c72cd4750fd281f3bff4n/a RedLineStealer
2025-03-14n/aexe 19ea70e1f919a61e5be782a0bc5afc461c60b7251fa5534008341eaa995404b7n/a RedLineStealer
2025-02-20n/aexe bb16c3f8e0fe04140eefeb603127228e100a47ccae5762d117609f90e8ce2680n/a RedLineStealer
2024-12-23n/aexe 6b4d646bdb249d952e182923e535772d7073271b2aa8ed9434b0bc624312e1fan/a RedLineStealer
2024-11-06n/aexe 8f903b7b0b49f7abd0e5c834cc50b298686f2b52f7663ae47b2ab2d3974e0ef9n/a RedLineStealer
2024-11-04n/aexe c3625a598ca1f93e9810833302559b858e55919e4b7e5648a3d925dba206ed19n/a RedLineStealer
2024-11-04n/aexe 35d4e04073135b232eb2b86728c3f241d9de7d08e4d1604808f39d982758d252n/a RedLineStealer
2024-10-29n/aexe 73c37804c8f4bafb5e7ca01f35f0593066f6b9bb71546740229d9b563ee8549bn/a RedLineStealer
2024-10-25n/aexe cf389346985f2ea820675f7b50836702338e8ceb64ab326d8b6d20f27937a225n/a RedLineStealer
2024-10-24n/aexe 36b2fb7f3a8a2869e278492e80b98a3b74a998b50f2b1bd21dbae438cdd6f740n/a RedLineStealer
2024-09-30n/aexe daf8aea149b6920a037985ce39ed82cf780074255a3d72cd6f22262ffe14f389n/a RedLineStealer
2024-09-26n/aexe 6e4030c0c65c90c8e020030b6214a9bc2905be19e9d644d658f027064f067460n/aRedLineStealer
2024-09-19n/aexe a0eff2e6999b2d03fa6b626ca7becfab1f22a573cb6b99225dc7706b1660152bn/a RedLineStealer
2024-09-19n/aexe e93c472082a2f99e634ca6c199ca183c885eb6dc8d990c89f17c282dc7b5967an/a 
2024-09-08n/aexe b0b60f4eaf17d775ccec3426a7f5387102ee8cb1eff4363b566549854f9f06e4Virustotal results 27.78% RedLineStealer
2024-08-20n/aexe 8651504a3032908d1c96b287ae7c9763ab024cb8ea664c484ddd79deec22c286n/a
2024-08-10n/aexe d9d996d7ff1501de587ba3bb7f15e9d3ea3f81b58a8a20348f1e229158c5b01eVirustotal results 56.25%