URLhaus Database

You are currently viewing the URLhaus database entry for http://31.41.244.11/duma/nome.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3276759
URL: http://31.41.244.11/duma/nome.exe
URL Status:Offline
Host: 31.41.244.11
Date added:2024-11-05 07:28:11 UTC
Last online:2024-11-11 00:XX:XX UTC
Threat:Malware download Malware download
Reporter: abus3reports
Abuse complaint sent (?): Yes (2024-11-05 07:29:08 UTC to dl{at}redbytes[dot]ru)
Takedown time:5 days, 16 hours, 44 minutes Bad (down since 2024-11-11 00:13:22 UTC)
Tags:CredentialFlusher exe MarsStealer RedLineStealer link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-11-10n/aexe 7dc134cbf475f604d7dfb75e4dd2c5685c4b91a0f66760ff7cf7ea74393d9d57n/a CredentialFlusher
2024-11-10n/aexe 3d9bdab96130952bd3c187be7e22ca2d4e9f5001357a200927ac6f586ca4b305n/a CredentialFlusher
2024-11-10n/aexe 39ba58c75a75c348e8279e0b92e42bd62c6a8069249ea9c8600b398232b9bc09n/a CredentialFlusher
2024-11-10n/aexe 501c55e2c25baf9c2fee842e0412960d09589926e98da19c985bee9044aad7a4n/a CredentialFlusher
2024-11-10n/aexe f85ea1f3e1c8f9016a601defa37b9155ebd2e686d12b00116f64e1acc15b8234n/a CredentialFlusher
2024-11-10n/aexe 2db1ad0b66fa7b7625464567503bef99b83d37ccbdbbdb8981e07cd0840952a7n/a CredentialFlusher
2024-11-10n/aexe fe6f934aa7e17d73dc202d5d4c91b36308fafcdc829e936bca91e09df70393ecn/a CredentialFlusher
2024-11-10n/aexe 881898e0fca8dbe7e4711d445dbac0e6f96bb7675bd441af8ef9b9e2c52dc6a4n/a CredentialFlusher
2024-11-10n/aexe 9a32dd6ad2e9b92d5e2c5296bd411af5f26b5774c32f8499dd0ac85345e6e521n/a CredentialFlusher
2024-11-10n/aexe f5f2db2f5165743711eccb344ad5f9f213ec79b9f45b10618fcbffa29ff64116n/a CredentialFlusher
2024-11-10n/aexe 5282edb4601d289e218eebd68d038ba3f1458de36a11ed7975241bdb2b0a0334n/a CredentialFlusher
2024-11-09n/aexe daff8620c87cbb955155fca938112c36b59ee50cc8fc671b5344f3dff4682f18n/a CredentialFlusher
2024-11-09n/aexe 9a0f105b66d88e78fffed665fc5bd1cdb7c114fd9ba7d63a2a3bdb9503c6e3b1n/a CredentialFlusher
2024-11-09n/aexe 4015af5cc5497f4c30c3451c526b22747c21ea2e6770b74bc50f3fbbf7fb2868Virustotal results 64.79% CredentialFlusher
2024-11-09n/aexe a5165db6d972ac88680506724bce40fc44df3cd07818e8548ab2dd2f203479ccn/a CredentialFlusher
2024-11-09n/aexe 4c1fd2f0e0882c4122a6d31e349d7ec2658daf121e04cad6692094e1aa1878d5Virustotal results 61.11% CredentialFlusher
2024-11-09n/aexe a63c632dc0f5202e8d73b29c1d67e635f592192bb39caa8465730706e747ae8fn/a CredentialFlusher
2024-11-09n/aexe 956e79c3207958791123768bfa0832490fd4f62cf2bf1ee933bf9e000c9134a6n/a CredentialFlusher
2024-11-09n/aexe 244dca7414a340179e3d18143324571707111211ba2e2684e54f8c486406254cn/a CredentialFlusher
2024-11-09n/aexe dccb456a395e89c93040076e020b1ee22ce5c0cdc9e9c7fc55e828466e7ed40dn/a CredentialFlusher
2024-11-09n/aexe d45e69779258093428a8f260e338fab770f8d245aaade37bd77f32824b014288n/a CredentialFlusher
2024-11-09n/aexe 03b941153454bbc452f41d0bb7d8c05105872ac1899b31db5b99b6588ddbc0a0n/a CredentialFlusher
2024-11-08n/aexe 6c78755ea3a63fa4af8937ad111d09d89bee90a8e6f65a7c227c7a814e12eff1n/a CredentialFlusher
2024-11-08n/aexe c5eda83d0eb59332c4beca1c28935247a2f9d4ea7b3e1e2f6c3977438c447d56n/a CredentialFlusher
2024-11-08n/aexe a76c16f2991d84ccf8495de7c1c085227c079ebcc126b51d7856d0f0ad449217n/a CredentialFlusher
2024-11-08n/aexe 72681d0df0a2d560c1869e4935571b26f658d533e1c431cc5bd93b29b2a76bc2n/a CredentialFlusher
2024-11-08n/aexe 49d1abafb895893207ececde1020a75398e166c4218410d27a09d50d0af932c5n/a RedLineStealer
2024-11-08n/aexe aafc4aab87dc557e55b78d0f15c7eb79df667d65dae05b4ff154a72642046ee5n/a CredentialFlusher
2024-11-08n/aexe 1dcf0dd19de0956e8a9ef69c825ca1d093c387e0aa88e4790cc57b60ff660344n/a CredentialFlusher
2024-11-08n/aexe 788f5c37a852803ce2f3fbeb27bde0e619ef414dfbdc0c8263b16c584c495447n/a CredentialFlusher
2024-11-08n/aexe 9a5f8db72b43ff2800f28916b976c338ebe7cae1fd3588428ef190e19abadeafVirustotal results 61.11% CredentialFlusher
2024-11-08n/aexe 2163b4382dde07bf2a67b1c3dfd643fa17c75372eb1d0c2c03574430b4feb09eVirustotal results 58.33% CredentialFlusher
2024-11-08n/aexe 0fd7123dd662ece27c377db556892bc30d0835064ffe66a91c84261aed2e4523n/a CredentialFlusher
2024-11-08n/aexe ea3b02266e6bff890ff47e59da0e88cd31d0783dac9d8c0a7c5ce9bf66b89a3fn/a CredentialFlusher
2024-11-07n/aexe 823cb8fae9dd1fab5327569ce1851dd935001def022ae0330891ae94f86e17aen/a CredentialFlusher
2024-11-07n/aexe 2323be2fd15aa79b9342d61bae72e3ca6e29ab916cb3ecdf9dd95dc639a3a8c0Virustotal results 54.93% CredentialFlusher
2024-11-07n/aexe 5aa47e342483cbf1379164875c5131f896ce3ca562d37135e8baed56fc6486a0n/a CredentialFlusher
2024-11-07n/aexe 715bf00bad4f0e28ccc7280669ec6070684c3b43d8333001fa3107825ddb6305n/a RedLineStealer
2024-11-07n/aexe e94444b9858e8444f45a707b3b3d028674a2a3f7727414d38371cf5f3224dd40n/a CredentialFlusher
2024-11-07n/aexe 066048b484a01f17fabdd9c33427db935012341f42987ffeeb2fdef7e29306d5n/a CredentialFlusher
2024-11-07n/aexe 9c3748b52a29c68ce473bc92557f57d67c9a67d7f140bb959e91619b7626d26fVirustotal results 55.56% CredentialFlusher
2024-11-07n/aexe fe83605607ef4e62b70a9bcfc6abcc7bdd6905a11b362f9ec647d15c333fc67fn/a CredentialFlusher
2024-11-07n/aexe fce3e333499d76aab0a1f02f5359b356478fbf155d4cf300c300e2708db01316n/a CredentialFlusher
2024-11-07n/aexe e27d707af8cdfe1be3ec99ebc126ceb2a83f346de4033888296d841f3d8af70fn/a CredentialFlusher
2024-11-07n/aexe 61f4563f36ac673b169cec6695298cd8a051b6b23af32b087290cb738d11ffc7n/a CredentialFlusher
2024-11-06n/aexe d1014cce7920e8462b97a239b219bafe1d58ffbfb5ec3c33179066c5c88ee3b2n/a CredentialFlusher
2024-11-06n/aexe 582a1ab61d49ff669efe0b209083c640c216041aa8d05b02b19c97fba3f8fd50n/a CredentialFlusher
2024-11-06n/aexe 0c14104ee0f0153dbcdad60a88871161a5aebd1c01cf552a10b48bbb0696ea62Virustotal results 61.11% CredentialFlusher
2024-11-06n/aexe 504f86acec82be7ee36410b7f2c9aec444b2bb183ca3ac41ee02390defef66can/a CredentialFlusher
2024-11-06n/aexe f627c5c8edf647d5f01d443fa16f44a0cf2e59e094679532c54244ce5f5be1c4n/a CredentialFlusher
2024-11-06n/aexe 525aeed252d130d4771057a08e33c58bf81bee98098c7c2f4d3713c6e321df07Virustotal results 65.28% CredentialFlusher
2024-11-06n/aexe 634b6ee927bc835d1c7c251bb57c8dc64ab532b9a20545e173e57ccd0170214bn/a CredentialFlusher
2024-11-06n/aexe 911333a6ffffa3058b3573648ea35201a1598fab324b44dcd4b8c38f9bf79f6dn/a CredentialFlusher
2024-11-06n/aexe d3bac412e6866b1d1a2df8f3d765a08648eabe856e741b65a5b6bcc3c7cf777dn/a CredentialFlusher
2024-11-06n/aexe efe32131f9db8a1023a605ab77936939d9f1b1280f8e4a0f6028d3b40d8b1cfcn/a CredentialFlusher
2024-11-06n/aexe 5b09c694ec61e5f335700ec8dd6e10ef24af1d206f2daceed70bc6b2d4b57d00n/a CredentialFlusher
2024-11-05n/aexe 1def794784440aed915ef195eb67b51bb079d7df7fa45b87dec5b9c6c5c9f4e4n/a CredentialFlusher
2024-11-05n/aexe c4b6be26e0e849ac420e5ce5a82f7aea4324aa45271be6a315b7dc25b75300aen/a CredentialFlusher
2024-11-05n/aexe 04c18f3e5a5fb35a1f7af50293f2abf787658ed10f30deaf3198b1c2d5546035n/a MarsStealer
2024-11-05n/aexe 0953f43404fcca30dc21934063ab700df362d1ab858b667cd62a8e3bc356a5caVirustotal results 55.56% MarsStealer
2024-11-05n/aexe 401c279b75ab842417d215e5f7201e0f872f408e9f7a3c3f3df0a560b1770bddn/a RedLineStealer
2024-11-05n/aexe 7e97296f809f0f0404c85666da8d485274074108792a22507d34e546286f7912Virustotal results 51.39% RedLineStealer
2024-11-05n/aexe 26309ceffdfb8ef91a3d435a569841ed8532f855557aeee54620a54e2c2dcecaVirustotal results 51.39%MarsStealer
2024-11-05n/aexe 9dbe6deb8353066e2b268719fa8ebea44009b31eec6d80775e56c630fa45528en/aRedLineStealer