URLhaus Database

You are currently viewing the URLhaus database entry for http://185.215.113.100/rada/lake.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3173969
URL:	http://185.215.113.100/rada/lake.exe
URL Status:	Offline
Host:	185.215.113.100
Date added:	2024-09-15 11:54:07 UTC
Last online:	2024-09-18 12:XX:XX UTC
Threat:	Malware download
Reporter:	Bitsight
Abuse complaint sent (?):	Yes (2024-09-15 11:55:13 UTC to automatic-abuse{at}eliteteam[dot]to)
Takedown time:	3 days, 0 hours, 55 minutes (down since 2024-09-18 12:50:58 UTC)
Tags:	dropped-by-PrivateLoader MarsStealer Stealc

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2024-09-18	n/a	exe	2d2b69dcd3807b57751588becdbfd64983d518c13a116e41fe34f07ea4b1ba87	52.05%		MarsStealer
2024-09-18	n/a	exe	4ae707f447635ea5b4baf2db00265ae1fee0ad0b99fcd535424d6f1a2e0a1894	53.42%		Stealc
2024-09-18	n/a	exe	61342ff14d09c247f204c8885ad48baa950352bddd2e0b9697cd8ff8868016c0	n/a		MarsStealer
2024-09-18	n/a	exe	b2b41e189857edfb1006c1ccfce2aba1ee97b841f6aa954cb4f44a538d48d133	48.61%		MarsStealer
2024-09-17	n/a	exe	2bbc61d8f5cf8a730b269c96be1067a5b0055137283b5841a0ad1dc68fd13209	50.68%		Stealc
2024-09-17	n/a	exe	be7f24935fd8d815798b138fe873d29fd4502687bf4606c5b750696034dc6beb	52.05%		MarsStealer
2024-09-17	n/a	exe	3e200d30ce372a50a2aa197aa163966478cd0bbfb6d20ab3c45bc0ee75db9055	52.78%		MarsStealer
2024-09-17	n/a	exe	08c4dee261a00bcf8f3bf3449359fc316a8fcd9af6e929bfa66d8fde6fc0ce53	56.34%		MarsStealer
2024-09-17	n/a	exe	95c482159ea30bde566e4aac0347ebc2d7bf363e2000b67bc0dad63588060212	51.39%		MarsStealer
2024-09-17	n/a	exe	860f96389c17f0b0a0fb5440b51042f65143c0fe6c76bd452a2896cb540e70c7	52.78%		Stealc
2024-09-17	n/a	exe	aabed3ec33700bf2802385c2965457ea12c5c1df9a5102fb39b110642f7c0cdf	n/a		Stealc
2024-09-17	n/a	exe	09752a62f2614627396a5d4ed88c60436343da99f1acb251d33a6db87363b9c9	52.05%		Stealc
2024-09-16	n/a	exe	d1bffea6813f6990c9e6cc708d443ae5928ab6b21a1665c7301c12e07ad66a74	54.79%		MarsStealer
2024-09-16	n/a	exe	c7c2fda0027361d7d5544a311da9e36058b845bb4e78c988d533be42edf02138	n/a		MarsStealer
2024-09-16	n/a	exe	56653d71f83b1263af7291639aa6e6ca4d2052320e4e401116d6115199100463	52.05%		Stealc
2024-09-16	n/a	exe	b9673575887a25b4a4c64327361e4054c188b15f2fb07518ab9cfc987c6aa9fc	53.42%		Stealc
2024-09-16	n/a	exe	8075620c17e17a2b207561a491e1cb873b5fa86fe2df1b4130a3f0afb05a67ab	54.79%		Stealc
2024-09-16	n/a	exe	4783cb282470fbec51f7e33ca884f78f0caba36fef08590c469b290e6854bcbe	53.42%		MarsStealer
2024-09-16	n/a	exe	1af91a8030f69c6fdf0846e87278b955e9930c8792ae6297055ed7e5fdddff9f	53.42%		Stealc
2024-09-16	n/a	exe	a57c14957780dfd60e1bee3490742b760ece46b3d4b0788eaa04778bd41b11a6	52.05%		MarsStealer
2024-09-16	n/a	exe	e4f21df67f53b015398579b25cf7b5ce873d94522f7c6c8fced82673d135fac6	51.39%		MarsStealer
2024-09-16	n/a	exe	ba123cb5154dace2f804628862c60068aa0db5e6643dd9021e38e9144401e76b	50.68%		MarsStealer
2024-09-15	n/a	exe	08d9eaf252fa4748877ece4835cdc473ae13918d04331a0b7001e75babc03b97	50.68%		MarsStealer
2024-09-15	n/a	exe	55dcbef55eb0527ad4f7d549c454e541a9d60e721caf03bac0d99512af32b6f8	52.05%		Stealc
2024-09-15	n/a	exe	49402d487c23a595cb43c08a77366f7214c0f171265e12a3444b44c072d229b7	52.05%		MarsStealer
2024-09-15	n/a	exe	1bc93eb445de86321e093f4066a220d196f0d3fa9d2b8a3a2dcc0fbc1be305cd	52.05%		Stealc
2024-09-15	n/a	exe	fe6a412c9ab3f2f9c40ff6f2f178c997047740aa4350bc908ca81506989d7db2	53.42%		MarsStealer