URLhaus Database

You are currently viewing the URLhaus database entry for http://80.64.18.219/well/random.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3532656
URL:	http://80.64.18.219/well/random.exe
URL Status:	Offline
Host:	80.64.18.219
Date added:	2025-05-02 11:59:13 UTC
Last online:	2025-05-07 14:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2025-05-02 12:00:10 UTC to abuse{at}stimllc[dot]ru)
Takedown time:	5 days, 2 hours, 40 minutes (down since 2025-05-07 14:40:28 UTC)

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2025-05-07	random.exe	exe	dce58402161634deddfe6a5163c6d2f09aad572e11cffb494f2683512c22c25d	n/a	CredentialFlusher
2025-05-07	random.exe	exe	04ce044d553f7a6ea538a240ae7fc48a4cbc62c144663ae180a5dc96ababfed0	26.39%	CredentialFlusher
2025-05-07	random.exe	exe	f7ab4e40281281269233d22e20affae234ef7c1bc776eb8353b030eeb515e8e0	n/a	CredentialFlusher
2025-05-07	random.exe	exe	fbdaa34cf96318452714143d52539c223b4be42ce8530e284673b93236eb5810	26.76%	CredentialFlusher
2025-05-07	random.exe	exe	c79ddd08c7c47c76256907d6d937aacc8f6f1855117b16477674f8eaec4bf1e0	n/a	CredentialFlusher
2025-05-06	random.exe	exe	c5e77e849db51fcabb59d50ae5ff78799715e4a34c620bc3e10a9d15119cdb84	n/a	CredentialFlusher
2025-05-06	random.exe	exe	b18392f01c99ee44a2ce0206be4387013d12304726cb49f27541bd03238a7b5a	n/a	CredentialFlusher
2025-05-06	random.exe	exe	fa069b8a7c26e328caa1b7b39593696f2d517566c7c216d9384568ef7fdf06aa	n/a	CredentialFlusher
2025-05-06	random.exe	exe	27d893d06620c1ab091069ed3bd01fa67edd6a2d9e420f56f974b4f186150c94	n/a
2025-05-06	random.exe	exe	f47f8995a5218e8c5bce19714908bf5fa25093ee59bf34976960e585569b3819	n/a	CredentialFlusher
2025-05-06	random.exe	exe	a150eb7b2afc55e3603de31784c75953247dd9e79560e2d0bf98caa315829645	n/a	CredentialFlusher
2025-05-06	random.exe	exe	b80b18f831c37bc8fa5d0fabe9aebc9aa807657080cbdde9cf37d951b5c93fa4	n/a
2025-05-06	random.exe	exe	d4822b144fffd190be562d57d0369f3a49f27f0c9c64444b2ccb7a210132389d	27.78%	CredentialFlusher
2025-05-06	random.exe	exe	f424ba1553aa46d54530be327bf1c7eded9f640b9d4ef30e0afe31d0a9bbe2a1	n/a	CredentialFlusher
2025-05-06	random.exe	exe	094fc4fa9d15eb62ae375075e3aab8b6dd5f26051fefb07f15fff4584419dcb7	n/a	CredentialFlusher
2025-05-06	random.exe	exe	c92d00ad81536dc3c8782dae4882d379b6d38ca375a938eaa981112dfe6c6ad8	n/a	CredentialFlusher
2025-05-05	random.exe	exe	ebb08357b9377669222a923af5586d49683eaad13b4de012b9a6e97e67dde350	n/a	CredentialFlusher
2025-05-04	random.exe	exe	1c2186ba4df7ed5c3bbe3a8c7cbca28bcff84debc88ed0348aa66d3243f55e3a	n/a	CredentialFlusher
2025-05-03	random.exe	exe	4fd82ce4aeb0a7686bbc3666e26c2fcb642a3a46f23469cd0f80ae1e716c7c73	26.39%	CredentialFlusher
2025-05-03	random.exe	exe	4577dabf474d2fb34ad164be5cb509bb175285852ae1fae6659d5f7cfaa44d48	n/a	CredentialFlusher
2025-05-03	random.exe	exe	dc81f381d5a133373e89a2e71ead659e937e566a006cbe89a57d9e5a4264a8ab	n/a	CredentialFlusher
2025-05-03	random.exe	exe	a92bb0374034d7599dadbfd1c9ea4b82447091c8ce1bc9a62c544d084aba42cd	n/a	CredentialFlusher
2025-05-03	random.exe	exe	16ca62d7a63db6faf5b28bd871878ceb3a84d477821e351f49f79155314d2db4	n/a	CredentialFlusher
2025-05-03	random.exe	exe	9e574be5e2b5883aebe20d4da8ab4e70c20ae55eb335b9c9896867b38bca522d	n/a	CredentialFlusher
2025-05-03	random.exe	exe	ec9f8c2a3432742bf2fed10bbad3de88f40f89d1dc42fe1be05d62aa7583ed6c	n/a	CredentialFlusher
2025-05-03	random.exe	exe	7d221f4530c6439527ce1bef2ed7db41d969d4b5e51c78b41a45ad2791f26cb2	26.39%	CredentialFlusher
2025-05-03	random.exe	exe	0bf43bb57332909f48396f64df0a1aea52dccf8701ac456b7bb359fe270db048	27.78%	CredentialFlusher
2025-05-03	random.exe	exe	90fa92d639b3946023c732654b1740d9606ca3a87d61228a3b49477ca2a338d5	26.39%	CredentialFlusher
2025-05-03	random.exe	exe	a2802a5a9ca95e5b0b86cd1cafc21e8e4629ce0f283c8fb92d7715990ea7172d	n/a	CredentialFlusher
2025-05-02	random.exe	exe	2184bcc32d47c506d95da46ef17c94613ea4f7f2b56b92e3f953c4f8b102b818	27.78%	CredentialFlusher
2025-05-02	random.exe	exe	7da1880e254d9a72484a51cfa2ecb32e1a54d7095432742ed10fd2df378a5cba	n/a
2025-05-02	random.exe	exe	22850f752d88d183465dcf56528d837f3edbd6300d4f64bfbbf24680952ac3ff	n/a	CredentialFlusher
2025-05-02	random.exe	exe	13c1dbaf34d0eef57e214942bc3275d0f8d2aa1cf2aad07087868d94d87cf9e3	n/a	CredentialFlusher
2025-05-02	random.exe	exe	7bd05a5cc0cc8ac396ce0fd05ab22bb80228f812f2698a13ddc4370beda9ca00	26.39%	CredentialFlusher
2025-05-02	random.exe	exe	b6f13edc8a36dd4b2774597eab25e1e8b1993e9f4c25aeaba266fc24d445c1eb	25.00%	CredentialFlusher