URLhaus Database

You are currently viewing the URLhaus database entry for http://62.204.41.159/DataSyncTest.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3176883
URL: http://62.204.41.159/DataSyncTest.exe
URL Status:Offline
Host: 62.204.41.159
Date added:2024-09-16 14:08:06 UTC
Last online:2024-09-26 10:XX:XX UTC
Threat:Malware download Malware download
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2024-09-16 14:09:10 UTC to abuse{at}changway[dot]hk)
Takedown time:9 days, 20 hours, 0 minutes Bad (down since 2024-09-26 10:09:11 UTC)
Tags:exe MarsStealer Stealc

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-09-20n/aexe d53c4a995faa78109768c67d7d71d933254dac22578f141850056568d3728b1cn/aStealc
2024-09-20n/aexe fbab9ef78d89dc1d967bdebc010eb0aa4732dd0e855293f79c43a2323c40fc9dn/a Stealc
2024-09-20n/aexe 5c9146eaa22a7cd722866192939dc3daad50d79085d3d23c4e7e7bcfb82cc8a1n/a Stealc
2024-09-19n/aexe 3e8910e6cdd3ad9397920a9526eef384c4d1632374ad1acef707bae4b3a3a08cn/a Stealc
2024-09-19n/aexe 6ba0b731575bf81d33a2f13ca2c54cd9440e7afebdea15b186ced9d8f21b91efn/a Stealc
2024-09-19n/aexe ab64da81b0184bb10f77cd99fc2533c0bf8c64b9d283f064719d193cf7b0b5c6n/a Stealc
2024-09-19n/aexe 62bc05bead2f2bc4d3e003c7460ec118a701ffcdfba314ee86377684f5482df0n/a MarsStealer
2024-09-19n/aexe f64413a87b073bd1bd69bc73ce18200784d2a256d523acf9b688556cbf69c566n/a Stealc
2024-09-19n/aexe c33708a10997b6a065d4074c975ae987be9b1ea5976fdae5da64316dfa2dad86n/a MarsStealer
2024-09-19n/aexe 140df10c3086415bbb0f69634d4d0754880e332c785397a8f61f9e8e7279ae0cn/a Stealc
2024-09-19n/aexe 19dc584aa1103d9400bb56138dfc9b80d9f2eb52cf2956909c29b0a8528d895en/a Stealc
2024-09-18n/aexe 6b0160d53e1adce070b7a7adececb664b5052ab782b18f5b238b6820691b58b9n/a Stealc
2024-09-18n/aexe ec96f54b2b54198e9bd6ff68a9ec10ee63ab5e66cf40c88987af84911e49a909n/a 
2024-09-18n/aexe 54f19856dd54508a8a3eb03dee855905a228da48be2a1f92e4af273600bfed9fn/a 
2024-09-18n/aexe 42a17971039d818d85404db2b7d8de0b432c857e4cf312fda7a3d2eea4a91250n/a 
2024-09-18n/aexe b8188f4bc65843cd1bbbd9c14cdfaa8b4e17f8c1c12820e2516831ac82fa047fn/a 
2024-09-18n/aexe bc778c281e383358572e978bcc4185a83d717d4d4e65e9a1f88a4b862dae12afn/a Stealc
2024-09-18n/aexe f064b33fd9e51bc301a8b9809574a63b942bd3e13f5a0200b303b5a7fd3884f9n/a Stealc
2024-09-17n/aexe a6f10e3041d09915e7bfad003cc4c22d32e772f45978a0881cb918f00cecdebfn/a Stealc
2024-09-17n/aexe adea7e2bf1badb3214044fd924c2547ca29a869b60e8b20884fd32e039f60e8cn/a Stealc
2024-09-17n/aexe bf4d771d414ff56e6f049df73ac0e008ebbd0ce36adc6fb921bd58e34329ee25n/a MarsStealer
2024-09-17n/aexe ee1964ce303ececff03de617b11c07deaa8a1d05498e6d6927f600a62fc1bea9n/a Stealc
2024-09-17n/aexe 5e7bdf15f0f849463d2b9a8074a98da1d3e1a17233bcc272ecd83003631c632cn/a Stealc
2024-09-17n/aexe f7970bba4b75fb58c27a0ba7a046f8fd260f30961032600a8aeb7b149b06d469n/a Stealc
2024-09-17n/aexe c23fde308f65b4ccc298eadd37469d1a02d861722072ec7d410d86d1245beba7n/a Stealc
2024-09-17n/aexe 0c350e8104e9aa9a538e8b8af53fd36d167a875b6c50e38b5101b05d2548f6d3n/a MarsStealer
2024-09-17n/aexe 34d01bf659f232440fa04c5991a4e360b8b2d145c36781f5c8d76921598712d5Virustotal results 41.10% Stealc
2024-09-17n/aexe db657078aad4198fb7fe484bd198ee8eb74422be6c8d456b0cd8a7a0a3e7bf74n/a Stealc
2024-09-16n/aexe d921b7e65c436ad674816c6486d9ebcca58a32d6e3296a6480e80dcc68b6c8b4n/a Stealc
2024-09-16n/aexe b5858838add411f77ea240aa078458b744e3d95597ab2e436ccfb43ed4604cben/aStealc