URLhaus Database

You are currently viewing the URLhaus database entry for http://47.104.173.216:9876/sthealthclient.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3100103
URL: http://47.104.173.216:9876/sthealthclient.exe
URL Status:flame Online (spreading malware for 1 year, 9 month, 25 days, 2 hours, 24 minutes)
Host: 47.104.173.216
Date added:2024-08-10 16:58:43 UTC
Threat:Malware download Malware download
Reporter: abus3reports
Abuse complaint sent (?): Yes (2024-08-10 16:59:08 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Tags:RedLineStealer link RedNet SnakeKeylogger link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2026-04-30sthealthclient.exeexe 700133e065ae108fadaa1147fc504c031039972cc5ca9dc494799c1f6a0a49e1n/a 
2026-04-11sthealthclient.exeexe 7dfb0fe51ace9222b5476f340a023e847badde5a2aca4765f00f10c8a7ab8de0n/a 
2026-04-10sthealthclient.exeexe 989e3e1e4e06e9efebcde8e5f353979da7dbb9e524f93257c07c19f4b46455e5n/a 
2026-04-09sthealthclient.exeexe 798d9242d4f3a76196bf3fc1a2c2011e377ffc875bcfd218ea536193fc43c9bbn/a 
2026-04-08sthealthclient.exeexe e723dd7a655f93845893140fba3c08f896158204982d6f4ea10e60ceb6204c69n/a 
2026-04-04sthealthclient.exeexe 8d5b91bf1727fb9ab994b43a718e625de830cefeaa14a1809e05b96b021bbd43n/a 
2026-04-04sthealthclient.exeexe 5382462f104f42f5e4b3ae40640b84709129d112996a8b98b0067121499e5d0en/a 
2026-04-03sthealthclient.exeexe c835d1d2e03b9845de604abaec613c59e6966147bdfc3dc18459ebcca44c9a27n/a 
2026-04-01sthealthclient.exeexe d87f2bfb9fd22f7b4f2876412ac0aeeb1570f9b37cb9c5ad2dd5434bca825198n/a 
2026-03-21sthealthclient.exeexe f9c15fadbd32fd4bc4162871e21c72460060196f975cc98c539654c76cdac47fn/a 
2026-03-18sthealthclient.exeexe aebb2af76f51297bb1f3adedc467db214355d5956150cd852c45559a50d6a994n/a 
2026-03-17sthealthclient.exeexe 8f872bfa62ae61dd6b9893dfac1fad1b8c8f14540069ad8f4c0179dc3d6a4829n/a 
2026-03-16sthealthclient.exeexe ccc8e42db74dbd0dfb0d8a115f5f3a131523adab8c76fbebeef393e63d6746c1n/a 
2026-03-10sthealthclient.exeexe aff2d7a372b8fc5e9b40ed6ad0e3b698ee7d57451dc215a8b8db919d4860c22en/aRedNet
2026-03-04sthealthclient.exeexe 69a82e9886c4940b175ffe6fb87262d78ba56716d3298b38ac732cf9d2d84eb2n/a 
2026-02-02sthealthclient.exeexe 90ad63dc80fb1288d996c14d94abed65c5578478b7184333d790d841fafd38a3n/a 
2026-01-31sthealthclient.exeexe b254114a025cd00cfdc9895f5e4efc7a52e793797e076a4d598564322a138728n/a 
2026-01-29sthealthclient.exeexe 8b25ad72ad7ca85b32fb71e4ba29b8000a26e6c595b304e6783e201808bff63an/a 
2026-01-26sthealthclient.exeexe d6ab276cc9545d9f4e0eed1ea11c1e4d91dd0c840590afe1179199d98493653en/a SnakeKeylogger
2026-01-26sthealthclient.exeexe 030ee553b8043c8e98614328edd63c69a6cc05940901e25856b9745faa760c69n/a 
2026-01-23sthealthclient.exeexe 1323bb548e5b6d0f664e66cd222dcdddc811c1f3676139b31a69364a1c044a78n/a SnakeKeylogger
2026-01-22sthealthclient.exeexe ede15e5ac8e2b46b1328996c633a06b150d179b856597abfcc62c0504cee1212n/a 
2026-01-19sthealthclient.exeexe e98e696e4105aeaf6a3ba05ea20b3b1bb03e0b6ddef10b36171712c5aee491d1n/a 
2025-12-11sthealthclient.exeexe c7af907f85140bab90d131a2a0152eed646dd73304f5d0b0bd8dffd9008aef59n/a 
2025-10-28sthealthclient.exeexe 204163e5274529bb9ee4c05d54687d7ac86c2c9c5c44d10a2dd542cb78e0b3f3n/a RedLineStealer
2025-09-19sthealthclient.exeexe cbd4b5a385ba3528e0a303d9f8d8af4df72736af059b59f4793a50d024524c7aVirustotal results 30.56% RedLineStealer
2025-08-27sthealthclient.exeexe 3f357d1c15b4a43294c913083c63b83f1a9e0a5bbd7e7e0e6a08365d861a9e43n/a RedLineStealer
2025-07-23sthealthclient.exeexe ac91e18742771cc353f2f6ddd5a5643733c5f9ce4cbc5d6877732ab50fef9a72n/a RedLineStealer
2025-07-17sthealthclient.exeexe 4c01d9ce80945867acbe6138e3cbc2e4acc3a7b32ea407ec59e40fb132821694n/a RedLineStealer
2025-07-16sthealthclient.exeexe bb1cec08026e8fda8fe8379b32201e4e71d9761f8215b9993f6f02211d3381cen/a RedLineStealer
2025-07-14sthealthclient.exeexe 21c0fa95bd6f950b438dd979dde8e69a4233213dca8a1d0d059e86ee6efe0532n/a RedLineStealer
2025-06-16sthealthclient.exeexe f8135a5c3c09788d673fd6a1254b0e49e2062116ff14e9c35d6beabff2af5500n/a RedLineStealer
2025-02-26n/aexe 7cfd27117aa023ebcf673f84619e2569afae0990056fd5901ad45236f8e6dd89n/a RedLineStealer
2024-12-21n/aexe f3695d39b7062d21abdfed9217801e61dcb143d33a356b273dcae40edc85dc1cn/a 
2024-11-12n/aexe ec76bc014cc572b6aad74904a7897b14f68af4ae89d82ff863d54c669057a8a4n/a RedLineStealer
2024-11-06n/aexe 774036940231360460ea872dd973db85077390a4775010454ff5e21c11b4dfdfn/a RedLineStealer
2024-11-04n/aexe 0cecc3e36f8a130b5f81363379ee6fbc3eb2235bc38a75dd730802dbb0dee21cn/a RedLineStealer
2024-11-04n/aexe 0c0c73a6d6a6af2f5ac03d45859dcb3c1afe2b1d702b35c0ebe611a86c7f1ec7n/a RedLineStealer
2024-08-10n/aexe 61ea68229965be4facdaaacada953ad6139b6f4107a4e2d1631ca4cd9ece528aVirustotal results 61.11% RedLineStealer