URLhaus Database

You are currently viewing the URLhaus database entry for http://194.116.215.195/File.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3186589
URL:	http://194.116.215.195/File.exe
URL Status:	Offline
Host:	194.116.215.195
Date added:	2024-09-22 19:55:07 UTC
Last online:	2024-10-03 20:XX:XX UTC
Threat:	Malware download
Reporter:	Bitsight
Abuse complaint sent (?):	Yes (2024-09-22 19:56:07 UTC to abuse{at}cloudbackbone[dot]net)
Takedown time:	11 days, 0 hours, 5 minutes (down since 2024-10-03 20:01:07 UTC)
Tags:	dropped-by-PrivateLoader LummaStealer MetaStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-10-03	n/a	exe	78ea866c53950ed8faae2aa94a8e6032b2d4ffd6599e04a4b1bbac4f9e9fff47	n/a
2024-10-02	n/a	exe	c7888d9a1ae63c2aad03e1cfb67b2c0c18a755da346c1de0bff0677af1eb0b9c	n/a
2024-10-02	n/a	exe	fd1da56c56e1143d0b08fe9e139075d8c2d9d5ba70117c9ef6a2f9e715198e37	n/a	MetaStealer
2024-10-01	n/a	exe	f2efe100cffdb7dd07d9870be8c3d7631d3474ce23f81b564bc6e40fa852af33	n/a
2024-10-01	n/a	exe	88626cd243ed11d51de7c8bcca68841f98aeec737c294201e91626052f3e6dea	n/a
2024-09-30	n/a	exe	c8c2c99716d93047b070a03c5202d93ed2d597396738b6dc2c3b1870262b93d7	n/a
2024-09-30	n/a	exe	60e14dc49f7b02dac5f78aedc0173f8424c6b22887436092c006da5d9f72946b	n/a
2024-09-30	n/a	exe	ac70f21f67880aa40ec7432d3b8eb1b3e8916b3d21a6cd88e785800b3539760b	n/a
2024-09-29	n/a	exe	de93d94a9976f80f40675ab0276909ace704abfaedf48a0b594f0122082528d1	n/a
2024-09-29	n/a	exe	1b8407084a835b38164117d7c132230dacb523add71d22d19830f2306e280054	n/a
2024-09-28	n/a	exe	3bd386d0577ef2744c5d447c198a376b55a554b19ddeae45f1e3a985df59ba59	n/a	LummaStealer
2024-09-28	n/a	exe	569f4e10b81e57f4397c69ab696ed54c9fd9642ea31f041f9d3f5307f3daa8e5	n/a
2024-09-27	n/a	exe	1fa6bfba290cd75c09efa73e28942a0ae876ff8e745e7ff764c102534b1f8aeb	34.72%	LummaStealer
2024-09-27	n/a	exe	96d2eb4d7d7d26903f202bf13b8bf35418844cb22ad513cecb8e5f4a0b007c26	n/a
2024-09-27	n/a	exe	1622822b3f7f66537240b4760560550654eb2c23c1f57c7e4bb52d3cbc5edd5e	n/a	LummaStealer
2024-09-27	n/a	exe	b6628335dabb15d711f53e325ab84fbf2488e37928b2535731f956d9cc175bac	n/a	LummaStealer
2024-09-26	n/a	exe	7af5384d5927029f94ff0639272716c837b7ae7fb6f855f67c6d7a74004c67e7	36.11%	LummaStealer
2024-09-26	n/a	exe	aaefdf4d8df6b740054e00d65e9c56d081eaec7fe16e525b3895a6d882fb4cc0	n/a	LummaStealer
2024-09-25	n/a	exe	6b176bab868dc372496ab3c6ce97518d276c17143f77ae15c992970c1efdf21f	n/a	LummaStealer
2024-09-25	n/a	exe	2da667c881a6b5f4b773c932bcbb6825fda5a85a38bfb51e06921cb88c353f3b	n/a	LummaStealer
2024-09-25	n/a	exe	0ce01a445ebfe36d54ccd28ea5aa03c9699dbb2e212a5106356bee1fb8e4177f	n/a	LummaStealer
2024-09-24	n/a	exe	abf88cbe8a21804ccdf319ddf9249e07f87e61f1f9adf64bb8c246e4b6203a2f	n/a	LummaStealer
2024-09-24	n/a	exe	5a4984aee6e9ffc00e96382d870c77651b5dad31c3d05045ed2388db26142062	n/a	LummaStealer
2024-09-23	n/a	exe	9b9ea892b7ad9135e42cc1cbb190fd56004d2c08fb0c3c983148210f6c41e38a	39.73%	LummaStealer
2024-09-23	n/a	exe	351e95c5428552bb9c7734783a64c089ff966eeb96d3f2daee601041f9c091cb	n/a	LummaStealer
2024-09-22	n/a	exe	a72d4d0ece553b8140a169f5aca11693f3e411f733f1440ec12b1a30b323f164	n/a	LummaStealer