URLhaus Database

You are currently viewing the URLhaus database entry for http://185.215.113.103/off/def.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3228687
URL:	http://185.215.113.103/off/def.exe
URL Status:	Offline
Host:	185.215.113.103
Date added:	2024-10-10 20:27:08 UTC
Last online:	2024-10-20 10:XX:XX UTC
Threat:	Malware download
Reporter:	Bitsight
Abuse complaint sent (?):	Yes (2024-10-10 20:28:09 UTC to automatic-abuse{at}eliteteam[dot]to)
Takedown time:	9 days, 14 hours, 1 minutes (down since 2024-10-20 10:29:48 UTC)
Tags:	healer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-10-20	n/a	exe	4fe4901970f33c51c768b2c78efa3a081414650089737346672d5bc450530981	56.16%	Healer
2024-10-20	n/a	exe	2bbecad407861c7e10bcc881080de51884addf0affd36858b44a320ff793cdaf	56.16%	Healer
2024-10-20	n/a	exe	579817d9822bf05bd0f22d92d924229e99bad4ddfe68a484b4db8cb62f91ea2b	57.53%	Healer
2024-10-20	n/a	exe	1d30ebdd046b0df64b80601fbdc75866f98f3827550c667dbb44c5c58c184301	54.79%	Healer
2024-10-20	n/a	exe	87fdb148ed86b3e6e30567e9f6141126a8ed6278b8bf2523267ca00f61592f2f	55.56%	Healer
2024-10-19	n/a	exe	490a63e6a275664ad39cbecc7a3850825a38b72bff24fc5d0f74e87db65c9fa8	58.90%	Healer
2024-10-19	n/a	exe	6d0bb719396d4b3c86d4e99bd81439cf861d1a91c01eb978a3e4d9616dd42622	56.52%	Healer
2024-10-19	n/a	exe	17c803e20ec1ce0630f02352a5a9cd0380b56054b77c4896526c2324830e6e04	54.79%	Healer
2024-10-19	n/a	exe	f31514d04fb9300cd7445675d815eb51f1995ab01b4af8348ab0186c124f04e9	54.79%	Healer
2024-10-19	n/a	exe	e40d2f930a7e02766f2e2cbcaa60ff5ba7688cba6cf5ed6b597a78fbb3a45471	n/a	Healer
2024-10-19	n/a	exe	0fe510358cdf35645d98473135c55487e4c1eee17813be062d6444b6aed9eb54	56.94%	Healer
2024-10-19	n/a	exe	df9e0174d9ae15bb21f31dc55cc2962e060381cf285b35a9fb3819d608b7f0e0	n/a	Healer
2024-10-19	n/a	exe	9eb025fc7a37b407fcc9ee7041d30bc2d490fa40af0bd81e602adf107488e0d7	n/a	Healer
2024-10-19	n/a	exe	0f8fb36ca05e826ef00446166170f6543b17598aaeb5ac4f8357826243ca517f	56.16%	Healer
2024-10-19	n/a	exe	307a4a1b08c02c49317e72116d53c14d5523267140c49a090437b72371d458a6	n/a	Healer
2024-10-18	n/a	exe	c902ef1362c76abcd2813890fadb2e5ab25055e023116167f3795a09e5f92ce1	56.16%	Healer
2024-10-18	n/a	exe	c7239445b78cf9af474ae3b2798a3f91e117b01cccd1181977b7c24746112138	56.16%	Healer
2024-10-18	n/a	exe	65ec349396a19714459e91883f3e8419f0fe9b6f807cfad171b3ba258ea17c66	n/a	Healer
2024-10-18	n/a	exe	9639854870cbd6ac6717699e45f9f5ced936377b93e5cb455abfbcf5d5dd0e17	n/a	Healer
2024-10-18	n/a	exe	a21ab19ff0f1979311b1bb91c8d27cc2d0d6988a6012e7fb8c4c86843a995888	52.05%	Healer
2024-10-18	n/a	exe	f83177bc03a13a7943c1ce341843fbae7dc0f790bce3af067e9d3fd546e5d1fb	55.56%	Healer
2024-10-18	n/a	exe	5fa332ecdc3cadcc48e0d1005c281548e41a867dbe298238587ef44dc5de3e8f	n/a	Healer
2024-10-18	n/a	exe	52e2fb4426059c66ad6f7168444c321f496ee2c02ce0076841203d44675dab4a	n/a	Healer
2024-10-18	n/a	exe	e835812bb9ec1a68e91cd260729dacf84ec327a7c535686c03e901dd755943ee	56.16%	Healer
2024-10-17	n/a	exe	ff07e2599ab50a137acf734ff352b376db9316a24248191f2d08de3b533b521b	n/a	Healer
2024-10-17	n/a	exe	38685182281681034c2878ff382b9c74fe328b8e2daccb089308aacf466203e7	55.71%	Healer
2024-10-17	n/a	exe	c39bf0a182b42832613ff4095361f990919b448c6665f23c3baedd5835f6d64a	n/a	Healer
2024-10-17	n/a	exe	f7a41890cb4753301ad5a94f0628a496ebe798b7b2ace654ef2c4c3fd02c2973	54.79%	Healer
2024-10-17	n/a	exe	d4939f65cec27567f6e9ec12f5810376ec1a091e3425eaa556094e6f31736617	54.79%	Healer
2024-10-17	n/a	exe	206cefdd3534ac012d7140a5f808d0396e6ff51415beb14b17afb4236492dc57	54.79%	Healer
2024-10-17	n/a	exe	7b5867c2ef958e0ec5143efc9c55690494841d14d7d5d86d40e58ca670fdfbf0	56.34%	Healer
2024-10-17	n/a	exe	1d5e64379c405f10bd5ffc480945b1b2c895d2520d7f6118ea8f1aa51abe6ac7	50.77%	Healer
2024-10-16	n/a	exe	9617ea9b776a3c294f2adffa1d3e2953cfbf301a03ad02c0568897e9e0e61968	55.56%	Healer
2024-10-16	n/a	exe	e473d50e389edd4ae6d0c0d00a2439a6c4ea51ae41f8f69890b4287a5c8394ff	n/a	Healer
2024-10-16	n/a	exe	0417c4e795a381d80bd42a979b891e1d6c1c4c4665ac77d74d280e9f3e962867	57.53%	Healer
2024-10-16	n/a	exe	460fe9df4799e35249b029284309752a03043dfde71de430bb59b805d7b33f68	55.56%	Healer
2024-10-16	n/a	exe	975988ba6b200040ae3d88989365ae4d1c21d0b25e121c3da9b27b2563c817e2	54.79%	Healer
2024-10-16	n/a	exe	df355c8a7471186d37aa7bf02f18f020ec02943ad8538e7f85cc6ce0f59c2c74	53.42%	Healer
2024-10-16	n/a	exe	ba4b70d2791b4384209847b6b1856bf9f91130c2c74d054b703b0df508e98888	54.79%	Healer
2024-10-16	n/a	exe	eab3cb8241ee489c052c50949091f670695417081d548e9e0c85bdcbcddc6235	n/a	Healer
2024-10-16	n/a	exe	5ad30194558fd2ef8a3a09151dc73da6cf144a841204921e7a2cba69dae4f8b6	n/a	Healer
2024-10-15	n/a	exe	bf96500609befc1eca073cc7691bdc4a08f5218d943fb5d8b184f73c36e4c4f9	n/a	Healer
2024-10-15	n/a	exe	76df9ff20ceaf3e6a6f3f93e68df781f182a4fbad73b0a229b63a9a5e1faaa0e	56.16%	Healer
2024-10-15	n/a	exe	81953b0656cbcfe0dbf2fc4578197b15b23d8d3432fefd238a63f51161b80909	n/a	Healer
2024-10-15	n/a	exe	6fffb874cd464248f308f97e5e12ae45a7160e8b4c042d2c6a06c703d5b3dc6c	54.79%	Healer
2024-10-15	n/a	exe	72a09fbc56a915240ecd34473464055e89007dfa81a3ad55b8b9ce6d278f3464	53.42%	Healer
2024-10-15	n/a	exe	e96eeb25add16326719951e54fbd154eae5cb72f0f0a96da7254d3b7e671b3ce	53.42%	Healer
2024-10-15	n/a	exe	6ccef7d811db64eff469736e417d5a5b87a68a83f57cb3fd4553f3d53513978e	53.52%
2024-10-15	n/a	exe	a13123639972add2d1cc7839b4df11bdbe4084d36d0ebbe07f965bae587b543a	n/a	Healer
2024-10-15	n/a	exe	495915ff1a77a07fb27fe64ecfecab0e8fd8c37f41c1205448c092e6d338d5fa	56.16%	Healer
2024-10-15	n/a	exe	bbe2d88b206ca526bad9cbd477238cd3c53b0ba44d3dccacd38f13f75b8b01c3	54.17%	Healer
2024-10-14	n/a	exe	d1b2a212e2887d9eacf99ca6604c0a6dd9e21c979e93dd635dccc0cbcf3ac97d	53.52%	Healer
2024-10-14	n/a	exe	308e9192a7236a51633664bb9fe3758b26a748dcece5debf65d0333cef262614	54.79%	Healer
2024-10-14	n/a	exe	161bb7fd740021afc3f34101fd11aca620eb50127626cdd7c82b98d945047806	52.05%	Healer
2024-10-14	n/a	exe	d712c9fc4159215ed910c895ca0de21df560d2ac2aa12d1b00ebeb78e8e422f3	n/a	Healer
2024-10-14	n/a	exe	7c5d8043dcfc24013014505b5b8b2205c8dde428628411f33eb31481a1bbfb00	n/a	Healer
2024-10-14	n/a	exe	2a223c2207a017da91da53683dade893aa77b3ce2298a4e3cbd80f5d92296e44	55.07%	Healer
2024-10-14	n/a	exe	e077a9e696c374df6d6b934c72c2b59810dd21897049e16836798b3c61074afc	52.05%	Healer
2024-10-14	n/a	exe	60ee08c2dccd4de8e17f07b201d6c13bfb07b579aef1d2c49d270ab50639cd26	56.94%	Healer
2024-10-14	n/a	exe	1b16d450185a72ab32f6b20370fcdf53d505f77940db387355938f25ce51813d	54.79%	Healer
2024-10-13	n/a	exe	2a57b637d1d4c080203cb0410b2cae1aecf7fd0b945f75c6237d4b3a1edc402e	53.42%	Healer
2024-10-13	n/a	exe	374ae1fea2d55840f2603e7cdcaf7515dc6643089f34323094427c53c3cb72a2	n/a	Healer
2024-10-13	n/a	exe	c1df7516de3589e7b784d1c92514eed70b346d5f3bb6097d2b02f21268bdfedb	55.56%	Healer
2024-10-13	n/a	exe	b6737bd5cb107768640e737f9837fed8455d603ae9f86834a968d71f140cea48	53.42%	Healer
2024-10-13	n/a	exe	a933896a25ec03d7b85e4a2115a7f344306ee24fdca0582ed26fe36f537be03a	56.16%	Healer
2024-10-13	n/a	exe	ef134b18f2ed32e2a9570eb1d9143c92258d1c33a66e5f715421c72ab0f646e4	58.73%	Healer
2024-10-13	n/a	exe	28f10ca2ee19f3e8387a6a447a56ebff7b37d4d928140784ccce488a4b279796	50.68%	Healer
2024-10-13	n/a	exe	735ab441faaadca1712934a649cdc853bf5002e197c665a223573eb00118a6bd	47.89%	Healer
2024-10-13	n/a	exe	5071ecbdc5376182c2e826cca9ba011a245669404330c0dfcc66d658b1b230d1	49.32%	Healer
2024-10-10	n/a	exe	a599f8e501bc4a1a7f1ed10b05b5b6fe4c6f13c40c1065af952740880123bfb9	38.89%	Healer
2024-10-10	n/a	exe	0311ba09a7cac0ed926c218d4bed8d145572eed3ad753d630495c63715e66700	n/a