URLhaus Database

You are currently viewing the URLhaus database entry for http://185.215.113.37/vera/nate.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3184620
URL:	http://185.215.113.37/vera/nate.exe
URL Status:	Offline
Host:	185.215.113.37
Date added:	2024-09-21 14:57:06 UTC
Last online:	2024-09-28 01:XX:XX UTC
Threat:	Malware download
Reporter:	abus3reports
Abuse complaint sent (?):	Yes (2024-09-21 14:58:07 UTC to automatic-abuse{at}eliteteam[dot]to)
Takedown time:	6 days, 10 hours, 22 minutes (down since 2024-09-28 01:20:51 UTC)
Tags:	Amadey exe MarsStealer Stealc

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-09-27	n/a	exe	edc9cb8db3fafd7737aeda3122a8a4b967cf4e79887ef38910dcfd6b2e99b635	51.39%	Stealc
2024-09-27	n/a	exe	f302fb495483ed24ae836bf696ce0337ba39464b0c80a99f7eb1c0dcfe96bc3f	53.42%	MarsStealer
2024-09-27	n/a	exe	2aa7c7b048a8f6309e245775046bd05d66a823b3a1a911d9bf93817cb91b3fb2	n/a	Stealc
2024-09-27	n/a	exe	b01a2006b9ca98754e6c54ea5940b99dba53720fd9f0b83a4024a7061723f90d	51.39%	MarsStealer
2024-09-27	n/a	exe	e9de85feb66ce1df0a5000fcd7e7b802ec0dc68c09ceba8f78f2ee42d2d9fe86	55.56%	Stealc
2024-09-27	n/a	exe	ce8350a94bca9e1e552275527845443db7c0d0159e34e53220bfe38fed03e041	n/a	Stealc
2024-09-27	n/a	exe	162e527a19799d2d3ace95ca315eba1ffa0fd4fd3eac247a26b41212033b2863	50.00%	MarsStealer
2024-09-27	n/a	exe	0626e0571e2a1443904611a1ac92ca18664b9a1c48595046385f4e48bd7666e9	n/a	MarsStealer
2024-09-27	n/a	exe	b85ffa97a0c1832947aa5a081a6da9eed0555dc82cf4b82f96b24004bd298f9c	n/a	Stealc
2024-09-27	n/a	exe	a6dfb7062b33bde8dd76c28218232909b4e6f59e644ff07966adca7d2b36c139	n/a	MarsStealer
2024-09-26	n/a	exe	74f284fa73cadda54e2b0d90d4f612f725cfff6c20ee5e9560c02d8de8936d3c	n/a	MarsStealer
2024-09-26	n/a	exe	8021c509dc659f1f43bde016187f69aeccfa4e566822c65e455358cb68b3964f	52.78%	MarsStealer
2024-09-26	n/a	exe	66157b51bb3cf15e86bb9726ef16e8453bda847c90c53039933773401c8f4359	n/a	Stealc
2024-09-26	n/a	exe	c1d364fff61cba5386dbf991428172dae8f529d70e3700ff7c53892ce70beac2	54.17%	MarsStealer
2024-09-26	n/a	exe	1095f0cd3259c8740c345a37417d7928a9ac7d70db31ccb9b8bfe36b0e231f08	n/a	Stealc
2024-09-26	n/a	exe	228f28eb68e0553acc1b53edf6a4d79527e6a7d5ccec85cf3ad09fa5c3242c13	n/a	Stealc
2024-09-26	n/a	exe	c95ae246f56260762aaa2107359701d082c15d31d3721f48d37f560b150a8284	47.95%	MarsStealer
2024-09-26	n/a	exe	9f21d5e92ad225d6f81ec996a48b89d80320cc01d1d135cc6041d38d42aa51c2	47.95%	MarsStealer
2024-09-26	n/a	exe	747c903a9c783a32613d454bc73e8911525fe3b3f0c72b138458ab7f9fbe1cb1	n/a	Stealc
2024-09-26	n/a	exe	7d5a67cf4047faff0c3fd6eb410c23c6afacbc44c2f32d0ebd7b035fa6714eb4	n/a	MarsStealer
2024-09-26	n/a	exe	e6dc69dd2c58c510a8a10593b4fbd5e9a4573fa2dcdf178c292e8b1fb7a13795	46.58%	Stealc
2024-09-26	n/a	exe	fb2fdeded1386ef31205d4e56c05942f49b0292688d14bdc0616c22cae4567b3	38.71%	MarsStealer
2024-09-25	n/a	exe	71dc3327500da80337a73deb8b4161ae844864aeb0985c4c8e058fb2ebac9b93	42.47%	MarsStealer
2024-09-25	n/a	exe	28935c58ba9ff7db26ce5ef94c602b44cf699ef60c8baa457aa8ead7285305a2	38.36%	Stealc
2024-09-25	n/a	exe	c0bf32c831d7fadff2f43eca5c168429c2a6c242593fb34112f0c8a4d3fdaa4b	41.10%	MarsStealer
2024-09-25	n/a	exe	8028e4730fde9674b5f2c4613c9ece728bcc61de8b486cfe38a78bd8d8e76b08	41.10%	Stealc
2024-09-25	n/a	exe	f8524265e41a11f0a6af1774a622f7138823db605063db91dcd16a762f89b455	n/a	MarsStealer
2024-09-25	n/a	exe	76198db64bf16862b47203d12c9b9e3db2474b148cc79030a693a8dc281c1ccb	39.73%	Stealc
2024-09-25	n/a	exe	2cef6d9917bbccdc5ffffbf7b687da70e673f3a5dc6923c715e4fc50e0115e17	37.50%	Stealc
2024-09-25	n/a	exe	040a58a233ddf5f6bf49e3b5bd4a4fe5d8ae1d764e698b446ca08776863aafc4	39.73%	Stealc
2024-09-24	n/a	exe	cf715cf6f552c33d9d03bb3c7f17fb946abb0106b76fa1696e897b9fb79258b8	n/a	Amadey
2024-09-24	n/a	exe	63888d07d219d3fe6b89855563ded00621f1673a6b3917a2d0d8aff912787bc3	n/a	Stealc
2024-09-24	n/a	exe	203e62c9d7c15a21bd9052d413987cf66cf387f1a6ee4f25db116700c9677fc4	n/a	MarsStealer
2024-09-24	n/a	exe	4a96cce33828b7795e1d16e28b8ee86dd1b8356d9fc6e12620cf082abd70dc4f	57.53%	Amadey
2024-09-24	n/a	exe	e189877f42645740b2a8d67c9c9acb32f9a92eb68beaf796fcd28d5bf525e784	n/a	Amadey
2024-09-24	n/a	exe	d1dc3eca3c7794fee2ef250e63d99101aaae555751ab83eefa9f8952a7f2c7d9	n/a	MarsStealer
2024-09-24	n/a	exe	5f9d6215bab14f7e3b97a6318df43d5963674b32e06bad6e5602f92119668614	53.52%	Amadey
2024-09-24	n/a	exe	d2f8bd4baf67c8a557e21303ca035fd9a712202ca6d1a2f78edeb5af27918079	n/a	MarsStealer
2024-09-24	n/a	exe	a5108a9ae4c53b008d5b17a64ec7e5eb4564bdd3ed2041e01569994cc6b0dcff	n/a	Amadey
2024-09-23	n/a	exe	22098d3203d419d2be93101b8f6b9a4f1032f79579d97a0395a9ab905b2d5354	n/a	MarsStealer
2024-09-23	n/a	exe	86903ebb9f7b7b801cb7f4e95a722b0c5d2f01abf0ee502757f14517f0daa566	n/a	Amadey
2024-09-22	n/a	exe	b8068b7ed8178038b7ca45255c1b6aaa28a5de77c2568568623c5356a4be98e6	n/a	Stealc
2024-09-22	n/a	exe	fb4ab8a5161fa9b39d6c132f289ac340d0adbaae27f1d1719d28a505e7cd165c	47.95%	Amadey
2024-09-22	n/a	exe	b0b3fbb7e6d578da227df469ee4104d4beeeef07cf0aa969da85ddf73b59f045	n/a	Amadey
2024-09-22	n/a	exe	66c909e16084b2f9defe829bc4c8e9f880bd069bd64be53507fe5b8e58c3a5cd	43.06%	Amadey
2024-09-22	n/a	exe	840fd914b65892b52ffb349d5cdd33ebbd1ffd0a8644611f0d2f33720edac0fa	n/a	Amadey
2024-09-22	n/a	exe	9f38bf3e3e08f8eb68f752246bb01853ff26f1127e07eb7b4561f09db7184167	n/a	Amadey
2024-09-22	n/a	exe	83a230c3297cef0bba8647992409cba4c228e0221def6c651c9bea434a96ef26	n/a	Amadey
2024-09-22	n/a	exe	7554fab3381263ee14feeff91baff6c8fe981f8dd367800e7f4b930c908385e1	n/a	Amadey
2024-09-21	n/a	exe	7fad1d5bf3c2d3837f16a6fdf5f5be2af4bcdb2033d4b5124746f642affa00ae	44.44%	Stealc
2024-09-21	n/a	exe	1996a7a79e6ce7906689e931fcd89febd9be1f6d4abe18a9116a5c3425fd5891	45.21%	MarsStealer
2024-09-21	n/a	exe	40df2b2bfe36a9954e3b4ee4a5aa089e166ea61da0d933f973a69b6f8245d16d	n/a	Stealc
2024-09-21	n/a	exe	c3b324d0b36b98ea3cd50498ed0c5b5b850b80a1521d8898626d736375977ec1	43.84%	Stealc
2024-09-21	n/a	exe	9d31c2bafa4ceb5151e4eb8f6b8ed45c7f131d2a74f382a8f577aab7444a4cbd	41.67%	Stealc
2024-09-21	n/a	exe	777a54bfc70de07fee25e9f2d527a242fb7681f6e86231811f69f030ab00c961	44.44%	Stealc
2024-09-21	n/a	exe	d6117024b0cf88c1075e2765d2c7d200f6a9b964d3ee1d8c50d16390c3081ec7	n/a	MarsStealer