URLhaus Database

You are currently viewing the URLhaus database entry for http://185.215.113.100/doun/game.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3179811
URL:	http://185.215.113.100/doun/game.exe
URL Status:	Offline
Host:	185.215.113.100
Date added:	2024-09-18 16:15:07 UTC
Last online:	2024-09-21 10:XX:XX UTC
Threat:	Malware download
Reporter:	Bitsight
Abuse complaint sent (?):	Yes (2024-09-18 16:16:09 UTC to automatic-abuse{at}eliteteam[dot]to)
Takedown time:	2 days, 18 hours, 28 minutes (down since 2024-09-21 10:44:45 UTC)
Tags:	dropped-by-PrivateLoader MarsStealer RedLineStealer Stealc

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-09-21	n/a	exe	d3155985f0c2ba38347e66b3b68b84e695493cd5bb0b8420a557056184fa684f	52.05%	MarsStealer
2024-09-21	n/a	exe	65ea0de5671dc49d48d06574d99a42bf0d4887e32e4673e25c66169ae28583b2	n/a	MarsStealer
2024-09-21	n/a	exe	deb1bd627ce6aa3176c16ca5270eca5dda7a7e9ba7f56d510a1dceaba620e05d	50.68%	MarsStealer
2024-09-21	n/a	exe	f310f508de6011bb8066c1dd58e22e2d3b9e15b9d2f830d53095b8c97e0d56e4	50.00%	MarsStealer
2024-09-20	n/a	exe	2da1e8bf03c5a80048834e56af5cf384e87986b5b2e59d6acb436d9df20d0203	n/a	MarsStealer
2024-09-20	n/a	exe	0694dc94512d5b3f7499ad78ae042bdd48352f7d2c9abaf04834644ab6859d5a	n/a	MarsStealer
2024-09-20	n/a	exe	c7977c23604f429a11ab6e37c3c47acb970393e57634d093db35af81ade01e71	n/a	MarsStealer
2024-09-20	n/a	exe	8faee235d6864a4e9be7e16d435f62034739e1b516b580dcceacbdaa00442fc1	n/a	Stealc
2024-09-20	n/a	exe	ce5de217add5e18310fd3811b8b264f9ca1b121ba6b1b48a847d871c2e57a4f9	n/a	MarsStealer
2024-09-20	n/a	exe	c14566505a35e2c6e30044eac4bb095486c20bdba9c58bb152b6d91d6c7bc318	n/a	MarsStealer
2024-09-20	n/a	exe	eeccf783e6b03df31ec954897ea3228799b65a9976c1ceb0b96b0384ba43ea97	n/a	MarsStealer
2024-09-20	n/a	exe	7f01af6efd40efba992d4b727d8a1724c2103df2d84263b10e6e75b62fb0515b	n/a	MarsStealer
2024-09-20	n/a	exe	9033ea8e7a284dd91866a4113df0c2927fdeb89152b59c930669af6e43685ea5	n/a	Stealc
2024-09-20	n/a	exe	867f6bcb7ab1f7819722b85f51e6b6f1f9794ab202720563d94c6eb3ad21fc29	n/a	MarsStealer
2024-09-20	n/a	exe	fe153253efca9bcb916e63ea6e19e4ac6c91bb7c177435b1a1f864ce4a08944f	n/a	Stealc
2024-09-20	n/a	exe	d03b2234be659c5f05ebc8b0fd9b7e8f7f0d6d0a27c55978a13e08e68be318ef	n/a	Stealc
2024-09-20	n/a	exe	39b26b3f927bfe5f9dc95e0b90e008cbb5471194c66174462b3890b9fa1c3a52	n/a	MarsStealer
2024-09-20	n/a	exe	ecb41183a9451f2534dc5dc98a040536761a5579a579470cf3b9a943d26de925	n/a	MarsStealer
2024-09-20	n/a	exe	29935e159497e3da700aa9b40974eb1afd76af94d9a115d5a4ad9554515b317f	n/a	Stealc
2024-09-20	n/a	exe	74d7cf86626721a9a70359b6002d9f738faaea4059a0465f3712f4aa12a7eb07	n/a	Stealc
2024-09-19	n/a	exe	0aa69aa9eedcc943ff5e9ccbbbbc816a5967419da6dc6876ba3696b1913ebfcd	n/a	Stealc
2024-09-19	n/a	exe	3e7f42cf14643d4ec5ce0624ef9ec43fe959cb93fd05e831520a0f5759e76281	n/a	Stealc
2024-09-19	n/a	exe	59cdae2af7edd9002d5a4f13e0a7e3f790fb277036e42a82f3c25f28b3057534	n/a	MarsStealer
2024-09-19	n/a	exe	0b92f55b752c9ec668904aac3531252439c770fb75d5a5418749a8192a75761d	n/a	Stealc
2024-09-19	n/a	exe	c25422a622b189ada3a0018ab7669f6f215c15dbeaad67a7cc1cc88be3091762	n/a	MarsStealer
2024-09-19	n/a	exe	479ab017e1026bbdd6da6e158c7ac8ce70857a31632722caa5d90c163b2a9009	n/a	MarsStealer
2024-09-19	n/a	exe	576ad4abb7ecb111360268acbf724b10aae567534781848ed594d33f2bdd66ea	n/a	MarsStealer
2024-09-19	n/a	exe	e0401acd2d402346c917dfa89a7788e12a4c859dcc2a43552b51427b3fecd0ad	n/a
2024-09-19	n/a	exe	5def8bc3bfc9c15a57d74a6abb3f22ff2373e807041fc5c19813292607b22fce	n/a
2024-09-19	n/a	exe	8d24a7d6a86201fcf94eba1fbc317b6adbcb51d271fe8af5af42801e752223a6	n/a
2024-09-19	n/a	exe	383277b955e4ffed4829c0378b17f042049213967b60b8081792e3712ba09b65	n/a
2024-09-19	n/a	exe	b84fb61f8d977a5b540124d358e80e1befbaf94fa71dc6b7f807198a3efd550f	n/a	Stealc
2024-09-19	n/a	exe	32c92a929bbc3e65c90a87fa36cbb803526e5baf2ae49a7fb3d0e56e32ccdf3d	n/a	MarsStealer
2024-09-19	n/a	exe	6092d85d3ed1b860c09f8614d0991349cda56a652a6ef825e5001f3861ed4210	n/a	MarsStealer
2024-09-19	n/a	exe	bddfd38efd21ae7361472a630976586c386487b009fe947e4ccc3734d800e6bb	n/a	Stealc
2024-09-19	n/a	exe	75237b0ae7de749c6a46c30e3eddc44bac364a1fa3c8853681f808665f381647	n/a	Stealc
2024-09-19	n/a	exe	0dd909b270865768a75a87bede1abbb968793e5d82b91cdb61254bb5427704fe	n/a
2024-09-19	n/a	exe	55dae00b91675ae4aeede8d34151a18a10b6b3d37c94d31782800f30eceab373	n/a
2024-09-19	n/a	exe	aeffe8ca6cbb16a920debba4cc3eefa9f663498e61a52a961a217e0b01e3005b	n/a
2024-09-19	n/a	exe	ff32c68d002c1cce461d21589fcd192318fb7be2d592433e3de752dfe44fdc46	n/a
2024-09-19	n/a	exe	8b4187616c8ba95a9522afe2875d43152da73ff6f0c8c4cf0e6cd3a08e8853fb	50.68%	MarsStealer
2024-09-18	n/a	exe	7be3d849c9fe343bb9ad395afbb922fb517929c3835d0238e736834b0bc5bcab	54.79%	MarsStealer
2024-09-18	n/a	exe	944754f7e7a1a78adcd634b032ef64f6feb99c3716e7c7c55f4bd203c2defc3b	50.68%	MarsStealer
2024-09-18	n/a	exe	1a62f3dc53175583622041368a31f1851123a15a898f7883171bf8354113d105	n/a	MarsStealer
2024-09-18	n/a	exe	46d3cc2128bc8c14eacd08f28c5915f8d8093a0b0cacdaf040ddd6fc20ea7f3a	n/a	RedLineStealer