URLhaus Database

You are currently viewing the URLhaus database entry for http://185.215.113.100/vera/nate.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3184622
URL:	http://185.215.113.100/vera/nate.exe
URL Status:	Offline
Host:	185.215.113.100
Date added:	2024-09-21 14:58:05 UTC
Last online:	2024-09-28 03:XX:XX UTC
Threat:	Malware download
Reporter:	abus3reports
Abuse complaint sent (?):	Yes (2024-09-21 14:59:07 UTC to automatic-abuse{at}eliteteam[dot]to)
Takedown time:	6 days, 12 hours, 20 minutes (down since 2024-09-28 03:19:57 UTC)
Tags:	Amadey exe MarsStealer Stealc

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-09-27	n/a	exe	a693827d725fbe45e3b42813c281f9e2390af7cb21e06a6d8058923917104efd	n/a	MarsStealer
2024-09-27	n/a	exe	edc9cb8db3fafd7737aeda3122a8a4b967cf4e79887ef38910dcfd6b2e99b635	51.39%	Stealc
2024-09-27	n/a	exe	f302fb495483ed24ae836bf696ce0337ba39464b0c80a99f7eb1c0dcfe96bc3f	53.42%	MarsStealer
2024-09-27	n/a	exe	aeb0218c5ae46c5d264100339920bca9c56a8f83b0a37383dbea2e33683d35d8	n/a	MarsStealer
2024-09-27	n/a	exe	5947b0b670dbb94778390c83aeb091874f10cb952b2dc3c459ac0e23f380a523	53.52%	MarsStealer
2024-09-27	n/a	exe	f317d011efe739b606b000bb981466f81e14fe2b600f3dd72bbd2b16c881bbbc	52.78%	MarsStealer
2024-09-27	n/a	exe	e9de85feb66ce1df0a5000fcd7e7b802ec0dc68c09ceba8f78f2ee42d2d9fe86	n/a	Stealc
2024-09-27	n/a	exe	162e527a19799d2d3ace95ca315eba1ffa0fd4fd3eac247a26b41212033b2863	n/a	MarsStealer
2024-09-27	n/a	exe	0626e0571e2a1443904611a1ac92ca18664b9a1c48595046385f4e48bd7666e9	n/a	MarsStealer
2024-09-27	n/a	exe	c1cd69890f1f81efd491b94bfff2d9e1263f4a843fc42b649aac082cf378f3a8	n/a	MarsStealer
2024-09-27	n/a	exe	b85ffa97a0c1832947aa5a081a6da9eed0555dc82cf4b82f96b24004bd298f9c	n/a	Stealc
2024-09-27	n/a	exe	a6dfb7062b33bde8dd76c28218232909b4e6f59e644ff07966adca7d2b36c139	n/a	MarsStealer
2024-09-27	n/a	exe	9b1d39c43d21c59dd88111e091a555e1de83b08d91b2fe5c17d9af7323022026	52.86%	Stealc
2024-09-26	n/a	exe	74f284fa73cadda54e2b0d90d4f612f725cfff6c20ee5e9560c02d8de8936d3c	49.30%	MarsStealer
2024-09-26	n/a	exe	8021c509dc659f1f43bde016187f69aeccfa4e566822c65e455358cb68b3964f	52.78%	MarsStealer
2024-09-26	n/a	exe	f6fd7c1f4ef9d4656320ec6ac9fa28ce1b14c66dc9594eef604d4ba82f74b2ad	n/a	MarsStealer
2024-09-26	n/a	exe	0a4ec4fbd55120181c561f1d2fd8f83245241e2d82d9aeb365eb5630ecddab33	n/a	Stealc
2024-09-26	n/a	exe	db8efd737c60da1233a238e9491161dda941173efafd68b6edf3d0ff1887b4df	50.00%	MarsStealer
2024-09-26	n/a	exe	22738d7a6835f38859a207c6f9d971a2935503ee8f5bdc83f9e9baaa63ac54ef	n/a	MarsStealer
2024-09-26	n/a	exe	9f21d5e92ad225d6f81ec996a48b89d80320cc01d1d135cc6041d38d42aa51c2	46.58%	MarsStealer
2024-09-26	n/a	exe	747c903a9c783a32613d454bc73e8911525fe3b3f0c72b138458ab7f9fbe1cb1	n/a	Stealc
2024-09-26	n/a	exe	7d5a67cf4047faff0c3fd6eb410c23c6afacbc44c2f32d0ebd7b035fa6714eb4	n/a	MarsStealer
2024-09-26	n/a	exe	e6dc69dd2c58c510a8a10593b4fbd5e9a4573fa2dcdf178c292e8b1fb7a13795	46.58%	Stealc
2024-09-26	n/a	exe	0fb0fd8a19c760dd8b53b9f4516189e75be78d214041d92ee91410261cee13a7	n/a	MarsStealer
2024-09-26	n/a	exe	426d73fc31493d322dc896deb7c74422e71fec5a86d5d0c56ab8c566611d4f45	n/a	MarsStealer
2024-09-26	n/a	exe	fb2fdeded1386ef31205d4e56c05942f49b0292688d14bdc0616c22cae4567b3	n/a	MarsStealer
2024-09-25	n/a	exe	28935c58ba9ff7db26ce5ef94c602b44cf699ef60c8baa457aa8ead7285305a2	38.36%	Stealc
2024-09-25	n/a	exe	c0bf32c831d7fadff2f43eca5c168429c2a6c242593fb34112f0c8a4d3fdaa4b	40.28%	MarsStealer
2024-09-25	n/a	exe	8028e4730fde9674b5f2c4613c9ece728bcc61de8b486cfe38a78bd8d8e76b08	41.10%	Stealc
2024-09-25	n/a	exe	f6a3509d62ecfb46306ab67cd75d4addb466cdd9a76782889110ce50acd5f369	38.89%	Stealc
2024-09-25	n/a	exe	76198db64bf16862b47203d12c9b9e3db2474b148cc79030a693a8dc281c1ccb	n/a	Stealc
2024-09-25	n/a	exe	2cef6d9917bbccdc5ffffbf7b687da70e673f3a5dc6923c715e4fc50e0115e17	37.50%	Stealc
2024-09-25	n/a	exe	4f363d41d1e54162264275eb262685aa6508af2edfb2af7a1b1b95034ffa63ee	n/a	Stealc
2024-09-25	n/a	exe	040a58a233ddf5f6bf49e3b5bd4a4fe5d8ae1d764e698b446ca08776863aafc4	n/a	Stealc
2024-09-24	n/a	exe	63888d07d219d3fe6b89855563ded00621f1673a6b3917a2d0d8aff912787bc3	n/a	Stealc
2024-09-24	n/a	exe	203e62c9d7c15a21bd9052d413987cf66cf387f1a6ee4f25db116700c9677fc4	n/a	MarsStealer
2024-09-24	n/a	exe	971e381a2eb76ca54f51133df093c018266b187f2fb36f5787e0033dba37970d	n/a	MarsStealer
2024-09-24	n/a	exe	bec500c67d3108d2e3b302f69c618a296ff09d355a0efd2a3a5681b9e0870616	n/a	Stealc
2024-09-24	n/a	exe	ad1e3f88d7d1c29836570f13b8b540dfdaca9434b9f47170b00cf54519c5edcc	n/a	Amadey
2024-09-24	n/a	exe	effe809e569c9cc58ae383e2022c7624b318d9c74aa9e732b9649e6da497b120	39.73%	Stealc
2024-09-22	n/a	exe	b8068b7ed8178038b7ca45255c1b6aaa28a5de77c2568568623c5356a4be98e6	n/a	Stealc
2024-09-22	n/a	exe	4d155cbb949bb003af499e7044780760088466a4f1b222579529b938f4bf3617	n/a	Amadey
2024-09-22	n/a	exe	fb4ab8a5161fa9b39d6c132f289ac340d0adbaae27f1d1719d28a505e7cd165c	47.95%	Amadey
2024-09-22	n/a	exe	b0b3fbb7e6d578da227df469ee4104d4beeeef07cf0aa969da85ddf73b59f045	n/a	Amadey
2024-09-22	n/a	exe	66c909e16084b2f9defe829bc4c8e9f880bd069bd64be53507fe5b8e58c3a5cd	43.06%	Amadey
2024-09-22	n/a	exe	54792cffb279a9bd7822595556848d6f2b9d832dd295b2485f4ef72aaf5c3bd8	47.95%	Amadey
2024-09-22	n/a	exe	e58c549481e605cbed39fc4b9bb7250aad77da566d5a84733875e3c6cbcd6896	n/a	Amadey
2024-09-22	n/a	exe	2d9c38e20b25eb8201dd670c34cb4c92830d7ad7a607bb7b88a98763323b3b01	n/a	Amadey
2024-09-22	n/a	exe	9f38bf3e3e08f8eb68f752246bb01853ff26f1127e07eb7b4561f09db7184167	n/a	Amadey
2024-09-22	n/a	exe	83a230c3297cef0bba8647992409cba4c228e0221def6c651c9bea434a96ef26	n/a	Amadey
2024-09-22	n/a	exe	7554fab3381263ee14feeff91baff6c8fe981f8dd367800e7f4b930c908385e1	n/a	Amadey
2024-09-22	n/a	exe	4b8388f9eb1348823bd0a6c77a29bce694c7fe2579f16ab83fd07ed6bc4c37b1	n/a	Amadey
2024-09-21	n/a	exe	7fad1d5bf3c2d3837f16a6fdf5f5be2af4bcdb2033d4b5124746f642affa00ae	n/a	Stealc
2024-09-21	n/a	exe	1996a7a79e6ce7906689e931fcd89febd9be1f6d4abe18a9116a5c3425fd5891	n/a	MarsStealer
2024-09-21	n/a	exe	c3b324d0b36b98ea3cd50498ed0c5b5b850b80a1521d8898626d736375977ec1	43.84%	Stealc
2024-09-21	n/a	exe	9d31c2bafa4ceb5151e4eb8f6b8ed45c7f131d2a74f382a8f577aab7444a4cbd	41.67%	Stealc
2024-09-21	n/a	exe	777a54bfc70de07fee25e9f2d527a242fb7681f6e86231811f69f030ab00c961	44.44%	Stealc
2024-09-21	n/a	exe	d6117024b0cf88c1075e2765d2c7d200f6a9b964d3ee1d8c50d16390c3081ec7	n/a	MarsStealer