URLhaus Database

You are currently viewing the URLhaus database entry for http://31.41.244.9/duma/nome.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3276761
URL: http://31.41.244.9/duma/nome.exe
URL Status:Offline
Host: 31.41.244.9
Date added:2024-11-05 07:28:11 UTC
Last online:2024-11-11 01:XX:XX UTC
Threat:Malware download Malware download
Reporter: abus3reports
Abuse complaint sent (?): Yes (2024-11-05 07:29:11 UTC to dl{at}redbytes[dot]ru)
Takedown time:5 days, 18 hours, 7 minutes Bad (down since 2024-11-11 01:36:58 UTC)
Tags:exe MarsStealer RedLineStealer link Stealc

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-11-10n/aexe 7dc134cbf475f604d7dfb75e4dd2c5685c4b91a0f66760ff7cf7ea74393d9d57n/a CredentialFlusher
2024-11-10n/aexe 3d9bdab96130952bd3c187be7e22ca2d4e9f5001357a200927ac6f586ca4b305n/a CredentialFlusher
2024-11-10n/aexe 39ba58c75a75c348e8279e0b92e42bd62c6a8069249ea9c8600b398232b9bc09n/a CredentialFlusher
2024-11-10n/aexe 501c55e2c25baf9c2fee842e0412960d09589926e98da19c985bee9044aad7a4n/a CredentialFlusher
2024-11-10n/aexe c0e60df9dd1df506595e9ce8570cd278c70351c41cf4a477b172b2e9458122bcn/a CredentialFlusher
2024-11-10n/aexe 1952ede4f84770350091a94e49806bda427dbdf0c37e9c4f8579907e842d781an/a CredentialFlusher
2024-11-10n/aexe f85ea1f3e1c8f9016a601defa37b9155ebd2e686d12b00116f64e1acc15b8234n/a CredentialFlusher
2024-11-10n/aexe c2ec79c5944633e25a11947e4369e8788603964f663d4191c2e348c73aa08595Virustotal results 62.50% CredentialFlusher
2024-11-10n/aexe fe6f934aa7e17d73dc202d5d4c91b36308fafcdc829e936bca91e09df70393ecVirustotal results 63.89% CredentialFlusher
2024-11-10n/aexe 881898e0fca8dbe7e4711d445dbac0e6f96bb7675bd441af8ef9b9e2c52dc6a4n/a CredentialFlusher
2024-11-10n/aexe 80e2a8b8cfa7d61f14a8610345ae55f17cf8269cc0643da99b0d1d53515629e2n/a CredentialFlusher
2024-11-10n/aexe f5f2db2f5165743711eccb344ad5f9f213ec79b9f45b10618fcbffa29ff64116n/a CredentialFlusher
2024-11-09n/aexe daff8620c87cbb955155fca938112c36b59ee50cc8fc671b5344f3dff4682f18n/a CredentialFlusher
2024-11-09n/aexe 9a0f105b66d88e78fffed665fc5bd1cdb7c114fd9ba7d63a2a3bdb9503c6e3b1n/a CredentialFlusher
2024-11-09n/aexe 85bbc7e83bbde64c749f2ed43669e4776ae62ea4a646839d7e2de183a93e2514Virustotal results 54.17% CredentialFlusher
2024-11-09n/aexe a5165db6d972ac88680506724bce40fc44df3cd07818e8548ab2dd2f203479ccn/a CredentialFlusher
2024-11-09n/aexe e670e822e0b96c42e8ba483febbc413d2c9c036013e3196bc2aecf5580016a0fn/a RedLineStealer
2024-11-09n/aexe a63c632dc0f5202e8d73b29c1d67e635f592192bb39caa8465730706e747ae8fn/a CredentialFlusher
2024-11-09n/aexe 21460b27b4340eca62518dfe0bbc41d1f030d0d7e1587149c185dac2fae471ddn/a CredentialFlusher
2024-11-09n/aexe 7de78ed1b6f2640b1b81a3890d4064f1c255a5e40569f24783f927bd2e3f4be6n/a CredentialFlusher
2024-11-09n/aexe 244dca7414a340179e3d18143324571707111211ba2e2684e54f8c486406254cn/a CredentialFlusher
2024-11-09n/aexe dccb456a395e89c93040076e020b1ee22ce5c0cdc9e9c7fc55e828466e7ed40dn/a CredentialFlusher
2024-11-09n/aexe e295bcca9e22701f4553c16b20913a00759a1f27fb7f00e09e3a4164ed9eb218n/a CredentialFlusher
2024-11-09n/aexe d45e69779258093428a8f260e338fab770f8d245aaade37bd77f32824b014288n/a CredentialFlusher
2024-11-09n/aexe 049324f40cff08068d96f7d149b7b14227a59ec10d0f8d924174f91a3c6f3c95n/a CredentialFlusher
2024-11-08n/aexe c5eda83d0eb59332c4beca1c28935247a2f9d4ea7b3e1e2f6c3977438c447d56n/a CredentialFlusher
2024-11-08n/aexe ddded603df90dcfc5b14681a867cea72fe416bbcfe9dbb00e3cd209ed18e5588n/a CredentialFlusher
2024-11-08n/aexe 694964aca28527321b2c75304ed5e80fe80c6a75a16ed45568d3264cce80614dn/a CredentialFlusher
2024-11-08n/aexe ae3eb216bcb918a3358ad13470bdaddffdda7e2d35cc4332722f9b0696e22e78n/a CredentialFlusher
2024-11-08n/aexe 6b713c7cf18b0e749625d17e31f2c655c234dd2dd8c1536f3b6a695a6a98e8bdn/a CredentialFlusher
2024-11-08n/aexe 788f5c37a852803ce2f3fbeb27bde0e619ef414dfbdc0c8263b16c584c495447n/a CredentialFlusher
2024-11-08n/aexe 8c9d34a72092fa532c23777a898ae575eb7680c0de4d470b4321c340a04eb56cn/a CredentialFlusher
2024-11-08n/aexe 9a5f8db72b43ff2800f28916b976c338ebe7cae1fd3588428ef190e19abadeafn/a CredentialFlusher
2024-11-08n/aexe 2163b4382dde07bf2a67b1c3dfd643fa17c75372eb1d0c2c03574430b4feb09en/a CredentialFlusher
2024-11-08n/aexe ea3b02266e6bff890ff47e59da0e88cd31d0783dac9d8c0a7c5ce9bf66b89a3fn/a CredentialFlusher
2024-11-08n/aexe 76abb5472c5d1fb844b8e608091fcead6f24956ecf9d1d7441954ff2039c48d1n/a CredentialFlusher
2024-11-07n/aexe 7741ae777097a8cec6869cd6b7584c78696b70b9f52bd4471f10a42fe24e1e1fn/a CredentialFlusher
2024-11-07n/aexe 2323be2fd15aa79b9342d61bae72e3ca6e29ab916cb3ecdf9dd95dc639a3a8c0Virustotal results 54.93% CredentialFlusher
2024-11-07n/aexe 81b52dab91dcd3627c3fe72c79319edd22c7f3795b1c8941583b8973c1b73717n/a CredentialFlusher
2024-11-07n/aexe 715bf00bad4f0e28ccc7280669ec6070684c3b43d8333001fa3107825ddb6305n/a RedLineStealer
2024-11-07n/aexe e94444b9858e8444f45a707b3b3d028674a2a3f7727414d38371cf5f3224dd40n/a CredentialFlusher
2024-11-07n/aexe 7b355ec73489aeac5f98a766c972183513c5a1c955f0c12fab3b27d3c926b3can/a CredentialFlusher
2024-11-07n/aexe 066048b484a01f17fabdd9c33427db935012341f42987ffeeb2fdef7e29306d5n/a CredentialFlusher
2024-11-07n/aexe 9c3748b52a29c68ce473bc92557f57d67c9a67d7f140bb959e91619b7626d26fVirustotal results 55.56% CredentialFlusher
2024-11-07n/aexe 3d7f7ab09d0bc79f998d382d07f9e835d76c038464a3637332ba167e87435ae7n/a CredentialFlusher
2024-11-07n/aexe e27d707af8cdfe1be3ec99ebc126ceb2a83f346de4033888296d841f3d8af70fn/a CredentialFlusher
2024-11-07n/aexe c61eb5fc428cae5abbe88dadf0be6d8225ced8654906e92d629799f08b70abcfn/a CredentialFlusher
2024-11-06n/aexe 6f94d6476598cd87ce7da5c42a81bda51127144165175a11b65622eb26d3bb05n/a CredentialFlusher
2024-11-06n/aexe d4d6aaa232271d8e81d2a03d503a73f46a5c5c710fa6128c08284874a6c8ff0cn/a CredentialFlusher
2024-11-06n/aexe 10619938f0de2f85572d65566e80a34af1db73e3c582fcd5239d3d57d8b04655n/a CredentialFlusher
2024-11-06n/aexe daf0cab1036360182c1a342e2c7dc25150c1c96b6d89c37074103cb210fc9addn/a CredentialFlusher
2024-11-06n/aexe e2d0b78b54799f00142f26dfa7bcd3b5ef2bdfb685c87ea93544716182e7c424n/a CredentialFlusher
2024-11-06n/aexe 504f86acec82be7ee36410b7f2c9aec444b2bb183ca3ac41ee02390defef66can/a CredentialFlusher
2024-11-06n/aexe a3663e65cd69790b444fcd14c690d9addf99c4aa41dd3bb47a1bc31a25f2ec31n/a CredentialFlusher
2024-11-06n/aexe 525aeed252d130d4771057a08e33c58bf81bee98098c7c2f4d3713c6e321df07n/a CredentialFlusher
2024-11-06n/aexe 634b6ee927bc835d1c7c251bb57c8dc64ab532b9a20545e173e57ccd0170214bn/a CredentialFlusher
2024-11-06n/aexe 275f1e2e2919fe43d093bd690c1357ce19e3c06b15e8dbec6c678a2bd549e5d9Virustotal results 60.56% CredentialFlusher
2024-11-06n/aexe fd1fd5578c1d6f55d8b5da615b40ec390ebc97c10d841af1e69a5bea978c6d7bn/aCredentialFlusher
2024-11-06n/aexe efe32131f9db8a1023a605ab77936939d9f1b1280f8e4a0f6028d3b40d8b1cfcn/a CredentialFlusher
2024-11-06n/aexe acb41ef41ec792b206c66892b611fa157cb38bfa91fc5b39ba35ad7f0d82b460n/a CredentialFlusher
2024-11-05n/aexe 043bffa8a917d004026079dda2ad1ea6667d5b6edf7917604045be576110ac13n/a CredentialFlusher
2024-11-05n/aexe c4b6be26e0e849ac420e5ce5a82f7aea4324aa45271be6a315b7dc25b75300aeVirustotal results 55.71% CredentialFlusher
2024-11-05n/aexe 2290dc072554872b01ca61d077123b6cdbd54d5d4abc7eef5fbead92bc719ec9n/a CredentialFlusher
2024-11-05n/aexe 04c18f3e5a5fb35a1f7af50293f2abf787658ed10f30deaf3198b1c2d5546035n/a MarsStealer
2024-11-05n/aexe 0e7d6baa61e7cdd146d7cc4f537110cf0fe88381d5e4526fc58270652227c90en/a RedLineStealer
2024-11-05n/aexe 792ca88d4dc2d4b6070e0cb738f6b9d466308bec6345a8fff23e45d1e229e4f8Virustotal results 55.56% MarsStealer
2024-11-05n/aexe c3f37cb276e623406fb11c658414bc59ac73717a1c37a532e4f871f3b65ccca4n/a Stealc
2024-11-05n/aexe 401c279b75ab842417d215e5f7201e0f872f408e9f7a3c3f3df0a560b1770bddn/a RedLineStealer
2024-11-05n/aexe 7e97296f809f0f0404c85666da8d485274074108792a22507d34e546286f7912Virustotal results 51.39% RedLineStealer
2024-11-05n/aexe 9dbe6deb8353066e2b268719fa8ebea44009b31eec6d80775e56c630fa45528en/aRedLineStealer