URLhaus Database

You are currently viewing the URLhaus database entry for http://31.41.244.12/duma/nome.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3276762
URL: http://31.41.244.12/duma/nome.exe
URL Status:Offline
Host: 31.41.244.12
Date added:2024-11-05 07:28:12 UTC
Last online:2024-11-10 23:XX:XX UTC
Threat:Malware download Malware download
Reporter: abus3reports
Abuse complaint sent (?): Yes (2024-11-05 07:29:12 UTC to dl{at}redbytes[dot]ru)
Takedown time:5 days, 16 hours, 16 minutes Bad (down since 2024-11-10 23:46:04 UTC)
Tags:exe MarsStealer RedLineStealer link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-11-10n/aexe 7dc134cbf475f604d7dfb75e4dd2c5685c4b91a0f66760ff7cf7ea74393d9d57n/a CredentialFlusher
2024-11-10n/aexe 3d9bdab96130952bd3c187be7e22ca2d4e9f5001357a200927ac6f586ca4b305n/a CredentialFlusher
2024-11-10n/aexe 1f647270d978bbd2c3b1db4864cabc2c6cdd0b569ca87374aafb55770701dfdcn/a CredentialFlusher
2024-11-10n/aexe 501c55e2c25baf9c2fee842e0412960d09589926e98da19c985bee9044aad7a4n/a CredentialFlusher
2024-11-10n/aexe 6f77c1159c6011bc82f931880d814610ba5373883f3659c0dd2a56577e609d05n/a CredentialFlusher
2024-11-10n/aexe c2ec79c5944633e25a11947e4369e8788603964f663d4191c2e348c73aa08595Virustotal results 62.50% CredentialFlusher
2024-11-10n/aexe d0dc543cc94212345e6c91424449c89c3996e2b501ad57492ae533d0b04d0e16n/a CredentialFlusher
2024-11-10n/aexe fe6f934aa7e17d73dc202d5d4c91b36308fafcdc829e936bca91e09df70393ecVirustotal results 63.89% CredentialFlusher
2024-11-10n/aexe a72bd9a77e3ecf40503862d5c3b0db565999e1c934ad7fe233adc4565df560a1Virustotal results 59.72% CredentialFlusher
2024-11-10n/aexe 9a32dd6ad2e9b92d5e2c5296bd411af5f26b5774c32f8499dd0ac85345e6e521n/a CredentialFlusher
2024-11-10n/aexe f5f2db2f5165743711eccb344ad5f9f213ec79b9f45b10618fcbffa29ff64116n/a CredentialFlusher
2024-11-10n/aexe 5282edb4601d289e218eebd68d038ba3f1458de36a11ed7975241bdb2b0a0334n/a CredentialFlusher
2024-11-09n/aexe daff8620c87cbb955155fca938112c36b59ee50cc8fc671b5344f3dff4682f18n/a CredentialFlusher
2024-11-09n/aexe 9a0f105b66d88e78fffed665fc5bd1cdb7c114fd9ba7d63a2a3bdb9503c6e3b1n/a CredentialFlusher
2024-11-09n/aexe 4015af5cc5497f4c30c3451c526b22747c21ea2e6770b74bc50f3fbbf7fb2868Virustotal results 64.79% CredentialFlusher
2024-11-09n/aexe a5165db6d972ac88680506724bce40fc44df3cd07818e8548ab2dd2f203479ccn/a CredentialFlusher
2024-11-09n/aexe e670e822e0b96c42e8ba483febbc413d2c9c036013e3196bc2aecf5580016a0fn/a RedLineStealer
2024-11-09n/aexe 856e684747db667904a5df8b85c9bc922e5a04927df13759885d3d4b93d6006cVirustotal results 60.56% CredentialFlusher
2024-11-09n/aexe 8282b87bd06aaa07301f48caf3f1689549ec171787e8732c89219141f08f67c2n/a CredentialFlusher
2024-11-09n/aexe 244dca7414a340179e3d18143324571707111211ba2e2684e54f8c486406254cn/a CredentialFlusher
2024-11-09n/aexe 00f6423614c7a6ede7bba408cbbdeee29e7c0feaec56c3b325a85f762f4f75a9n/a CredentialFlusher
2024-11-09n/aexe 049324f40cff08068d96f7d149b7b14227a59ec10d0f8d924174f91a3c6f3c95n/a CredentialFlusher
2024-11-09n/aexe 25ea1445ec3a70af4fc5750685db377827cb6dd929a1dfd1d080cd435ba65864n/a CredentialFlusher
2024-11-08n/aexe 6c78755ea3a63fa4af8937ad111d09d89bee90a8e6f65a7c227c7a814e12eff1n/a CredentialFlusher
2024-11-08n/aexe ddded603df90dcfc5b14681a867cea72fe416bbcfe9dbb00e3cd209ed18e5588n/a CredentialFlusher
2024-11-08n/aexe ea48eeb32b51e99a87438bc4aae90f2525b8cc323090f36d523e1cd6ed42db4dn/a CredentialFlusher
2024-11-08n/aexe 49d1abafb895893207ececde1020a75398e166c4218410d27a09d50d0af932c5n/a RedLineStealer
2024-11-08n/aexe aafc4aab87dc557e55b78d0f15c7eb79df667d65dae05b4ff154a72642046ee5n/a CredentialFlusher
2024-11-08n/aexe 591686baa6b6ee33297775a07defbb8d5a391dcb96315d32991f9ba9283babc3Virustotal results 59.72% CredentialFlusher
2024-11-08n/aexe 788f5c37a852803ce2f3fbeb27bde0e619ef414dfbdc0c8263b16c584c495447n/a CredentialFlusher
2024-11-08n/aexe b1da3115e86062303f1c5be58feca54d6cb6a29174496f5ade4e3c3eae562cf6n/a RedLineStealer
2024-11-08n/aexe 11664520584074b5f48b347d0a2eb93a24d3073788b4fa7643960c63695fee48Virustotal results 66.67% CredentialFlusher
2024-11-08n/aexe 0fd7123dd662ece27c377db556892bc30d0835064ffe66a91c84261aed2e4523n/a CredentialFlusher
2024-11-08n/aexe ea3b02266e6bff890ff47e59da0e88cd31d0783dac9d8c0a7c5ce9bf66b89a3fn/a CredentialFlusher
2024-11-07n/aexe 2323be2fd15aa79b9342d61bae72e3ca6e29ab916cb3ecdf9dd95dc639a3a8c0n/a CredentialFlusher
2024-11-07n/aexe 81b52dab91dcd3627c3fe72c79319edd22c7f3795b1c8941583b8973c1b73717n/a CredentialFlusher
2024-11-07n/aexe 5aa47e342483cbf1379164875c5131f896ce3ca562d37135e8baed56fc6486a0n/a CredentialFlusher
2024-11-07n/aexe 715bf00bad4f0e28ccc7280669ec6070684c3b43d8333001fa3107825ddb6305n/a RedLineStealer
2024-11-07n/aexe e94444b9858e8444f45a707b3b3d028674a2a3f7727414d38371cf5f3224dd40n/a CredentialFlusher
2024-11-07n/aexe baf8b7e2ee48818deb6635d14afd2b14e278d5cb5e5fef5e57ee1f0aace06365Virustotal results 58.33% CredentialFlusher
2024-11-07n/aexe 9c3748b52a29c68ce473bc92557f57d67c9a67d7f140bb959e91619b7626d26fn/a CredentialFlusher
2024-11-07n/aexe fce3e333499d76aab0a1f02f5359b356478fbf155d4cf300c300e2708db01316n/a CredentialFlusher
2024-11-07n/aexe 3d7f7ab09d0bc79f998d382d07f9e835d76c038464a3637332ba167e87435ae7n/a CredentialFlusher
2024-11-07n/aexe 61f4563f36ac673b169cec6695298cd8a051b6b23af32b087290cb738d11ffc7Virustotal results 58.33% CredentialFlusher
2024-11-06n/aexe 6f94d6476598cd87ce7da5c42a81bda51127144165175a11b65622eb26d3bb05n/a CredentialFlusher
2024-11-06n/aexe 10619938f0de2f85572d65566e80a34af1db73e3c582fcd5239d3d57d8b04655n/a CredentialFlusher
2024-11-06n/aexe 0c14104ee0f0153dbcdad60a88871161a5aebd1c01cf552a10b48bbb0696ea62Virustotal results 61.11% CredentialFlusher
2024-11-06n/aexe f627c5c8edf647d5f01d443fa16f44a0cf2e59e094679532c54244ce5f5be1c4Virustotal results 62.50% CredentialFlusher
2024-11-06n/aexe 525aeed252d130d4771057a08e33c58bf81bee98098c7c2f4d3713c6e321df07n/a CredentialFlusher
2024-11-06n/aexe bf69da913de8c880c27894bc4c0c8e5527e21dd8c30db608523ea41f6dc66ff6n/a RedLineStealer
2024-11-06n/aexe 634b6ee927bc835d1c7c251bb57c8dc64ab532b9a20545e173e57ccd0170214bn/a CredentialFlusher
2024-11-06n/aexe 911333a6ffffa3058b3573648ea35201a1598fab324b44dcd4b8c38f9bf79f6dn/a CredentialFlusher
2024-11-06n/aexe d3bac412e6866b1d1a2df8f3d765a08648eabe856e741b65a5b6bcc3c7cf777dn/a CredentialFlusher
2024-11-06n/aexe 5b09c694ec61e5f335700ec8dd6e10ef24af1d206f2daceed70bc6b2d4b57d00n/a CredentialFlusher
2024-11-05n/aexe 1def794784440aed915ef195eb67b51bb079d7df7fa45b87dec5b9c6c5c9f4e4n/a CredentialFlusher
2024-11-05n/aexe 043bffa8a917d004026079dda2ad1ea6667d5b6edf7917604045be576110ac13n/a CredentialFlusher
2024-11-05n/aexe 767b6471dfb0efa62976fe92a31525d5053f9474600526020b80dbaed2c94ec4n/a CredentialFlusher
2024-11-05n/aexe 04c18f3e5a5fb35a1f7af50293f2abf787658ed10f30deaf3198b1c2d5546035n/a MarsStealer
2024-11-05n/aexe 0e7d6baa61e7cdd146d7cc4f537110cf0fe88381d5e4526fc58270652227c90en/a RedLineStealer
2024-11-05n/aexe 0953f43404fcca30dc21934063ab700df362d1ab858b667cd62a8e3bc356a5can/a MarsStealer
2024-11-05n/aexe 401c279b75ab842417d215e5f7201e0f872f408e9f7a3c3f3df0a560b1770bddVirustotal results 50.70% RedLineStealer
2024-11-05n/aexe 26309ceffdfb8ef91a3d435a569841ed8532f855557aeee54620a54e2c2dcecaVirustotal results 51.39%MarsStealer
2024-11-05n/aexe 69321782fa34fd498bdeec1689406544090465f528a2f3529326c85c612e444fVirustotal results 50.00%MarsStealer
2024-11-05n/aexe 9dbe6deb8353066e2b268719fa8ebea44009b31eec6d80775e56c630fa45528en/aRedLineStealer