URLhaus Database

You are currently viewing the URLhaus database entry for http://80.64.18.219/download.php which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3533504
URL: http://80.64.18.219/download.php
URL Status:Offline
Host: 80.64.18.219
Date added:2025-05-03 06:46:14 UTC
Last online:2025-05-07 14:XX:XX UTC
Threat:Malware download Malware download
Reporter: aachum
Abuse complaint sent (?): Yes (2025-05-03 06:47:16 UTC to abuse{at}stimllc[dot]ru)
Takedown time:4 days, 7 hours, 25 minutes Bad (down since 2025-05-07 14:13:11 UTC)
Tags:8d33eb Amadey LummaStealer phorpiex link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-05-07random.exeexe 0cfd872b29279d945f0e8fad2900e5c20688a65f0d72df3d35fb86c7d1b8a571n/a 
2025-05-07random.exeexe aa7166092d9839013f346d3210845f9e1e38ad07396b5d9075e9546695ec8098n/aLummaStealer
2025-05-07random.exeexe adf7fc126864cb19d5ecbfff18695d5e3193f6cf4b4dc1976bfa3393c4f4c929n/aAmadey
2025-05-07random.exeexe 0b8ee89e13fc9964e7a84dc0978cead50510898b96a0666bb44cd535ee0741cfn/aAmadey
2025-05-07random.exeexe 733d8eafbb62b77e85fed5e69b6c57f513059ed6e8176760ac8ed92ad3753e8en/aLummaStealer
2025-05-07random.exeexe e64416260dbe457ca7d80c88a79a3614f27b00f053acf34928508d34d17ea1c5n/aAmadey
2025-05-07random.exeexe 5622b7ef0cf5fd57c8d4c65f89188dbc06f328d72e489ae15e9c3ed86e91f9aen/aAmadey
2025-05-06random.exeexe cc657294051cbc4eae6e20baee2f51606c6750dbb9b745590855752ab8e310ddn/a 
2025-05-06random.exeexe 1dc8823b25fb4cdb522323fa9218db3f9cefef40e32b683cc9862e58ecee8577n/a 
2025-05-06random.exeexe 7fd9fc6f100cddadd4c4caeeabeca8e30b4cb292abf63996a200bc56f79a15e8n/a 
2025-05-06random.exeexe 438a78f855ed5fa5290f562b170c839b0e7eaa7a982262df78e4c5149bc18a10n/a 
2025-05-06random.exeexe 2be993ad29a7dfa946e4d3256d25d53c93ae842c1b481d11fb7d5547f669b721n/a 
2025-05-06random.exeexe 1310a4bd67ad6e44fd542cd0cd660a68dc2d789f47ccd8bf7bd6824bdc8dd2aen/a 
2025-05-06random.exeexe 5b5921fdc7fd2a0539d46d5944b12630627c38b052546483d3bcef401fc44a68n/a 
2025-05-06random.exeexe eca18c742863dc119d0cad7cd25ac2a20572aec48a10ff5b0df8827ecd91bb2bn/a 
2025-05-06random.exeexe b3533456039ee92af56ea0e77a8e1aadd8014fbcb2dc45a63123f2a9964b9319n/a Amadey
2025-05-06random.exeexe fb30f48c2b7be8a3b1fe522c57ed4c25fb04d6c6b05ed3e2f8d3ac606261cd4cn/a 
2025-05-06random.exeexe 47e2cc0a967fe4fae3acc6a9421e3ea4e135182d187db7f546932b2f0d520fa3n/a Amadey
2025-05-06random.exeexe e29d1db9e13282e9c4f4246a09d115941c03834b602cd29fd911a10f544e9d93n/aLummaStealer
2025-05-06random.exeexe 5255ce23d92d6ee14e824dd8b516a2babba7171323d35caade52dc5c00bec982n/a Amadey
2025-05-05random.exeexe 67a2e87017480099e35d4acc405a5aefc8c36643d22d642ad2a9fb0494913e7dn/a Amadey
2025-05-05random.exeexe c4df606846acbe1a50dbf51627216ec2e61083cc983a2c5776246ba5777cf6b6n/aAmadey
2025-05-04random.exeexe 8c098b6e18f901fb9f1d0a7aecc056c341a2cac7f358c2ad62c314f8e9b52750n/aPhorpiex
2025-05-04random.exeexe b53d5cfb0931da60ab8b2ab93372e3e810384c249a283807b44cf88875ad8efaVirustotal results 63.89% Amadey
2025-05-03random.exeexe 067f1447caf7f9219bc458a2437a68aa1b8f6ce9ce8959e54153ad50d9a95e2fn/a Amadey
2025-05-03random.exeexe 10495cc20b6e421735c3e75fb56bdfb2ef92421e452b02605f1e7cdb5a1b6d67n/a Amadey
2025-05-03random.exeexe 071d9d0a3ef27a110c8e9b2a27489831706a2dddbb3c0f706d00eecc42d071c6n/a Amadey
2025-05-03random.exeexe 20de631a99f663f3e9db1b47be993c9b239f2f204ef6adce196f6fb29a82b5bbn/a Amadey
2025-05-03random.exeexe d7a3649624f14ac642f9839fcaa4d5d9426508b4a2f6ce76a33e51539de6737fn/a CredentialFlusher
2025-05-03random.exeexe c9532264880e896b9e741bf16b91aa75539082f351c8f95bc5cfc1745be1cf0cn/a CredentialFlusher
2025-05-03random.exeexe e01b8076be81c22cfe1ae022b0da89d8910273b1db97f0d6baac2174b438f9e8n/a CredentialFlusher
2025-05-03random.exeexe ca51ced33b27e131a1c8cf55138dbbf6254d007a406e9f0e22d0b754e46fb37dn/aAmadey