URLhaus Database

You are currently viewing the URLhaus database entry for http://185.215.113.209/inc/psfei0ez.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3338108
URL:	http://185.215.113.209/inc/psfei0ez.exe
URL Status:	Offline
Host:	185.215.113.209
Date added:	2024-12-09 08:17:23 UTC
Last online:	2025-04-18 12:XX:XX UTC
Threat:	Malware download
Reporter:	abus3reports
Abuse complaint sent (?):	Yes (2024-12-09 08:18:12 UTC to automatic-abuse{at}eliteteam[dot]to)
Takedown time:	4 months, 10 days, 4 hours, 1 minutes (down since 2025-04-18 12:19:25 UTC)
Tags:	185.215.113.16

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT
2025-03-14	n/a	exe	b3f9111a3095ac616c42a3423e5f81b6b2dc7781761ef90840e7dfed6fcb7d97	n/a
2025-02-28	n/a	exe	e19739f8fef3b09367896b058dba64efed78c0c8eac027d0b15fa5c28dc987f8	n/a
2025-01-25	n/a	exe	a7674b33e72b2a7d388eca5de77e734353868052f665835b2b0907961f7531ad	n/a
2025-01-24	n/a	exe	f19885d1f9b0adff770f6da0bcc2c9e95d23b2a2128bc8f0df0b93337723cf36	n/a
2024-12-09	n/a	exe	2eefc67e88ff5a0a714747d74e249f324912bb0953d112c096311c4e118138e5	77.78%