URLhaus Database

You are currently viewing the URLhaus database entry for http://143.92.51.20/1.dll which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3558504
URL: http://143.92.51.20/1.dll
URL Status:flame Online (spreading malware for 5 months, 20 days, 11 hours, 57 minutes)
Host: 143.92.51.20
Date added:2025-06-05 09:24:14 UTC
Threat:Malware download Malware download
Reporter: Riordz
Abuse complaint sent (?): Yes (2025-06-05 09:25:14 UTC to cs[dot]mail{at}ctgserver[dot]com)
Tags:mimikatz opendir

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-11-181.dlldll 9974ab8e80c6410e04c70315f8d3a0ce59dc30f6310a346845357a35be462439n/a 
2025-11-151.dlldll baa0485966846ad83310d6d0371b883f600e9be74c110f8fb8f886c6ce30fe59n/a 
2025-11-091.dlldll e78a285a764d7f22c896e07ea866afc8cd646bcd7dbbc0167a1aaaf1de6c3d42n/a 
2025-11-031.dlldll 8ebb651c6c9b570c8a8d3cb6866e28fd05bca9f1eb3cd9e0909339d45885d149n/a 
2025-11-011.dlldll a7bf0ba64f9f2992285e1877ac07b85549c4deaa47e31f45ef3744890c4b28een/a 
2025-10-311.dlldll 81fdc084efd4e348b879a462231526377f350f565892241d173ff1267f65f62cn/a 
2025-10-301.dlldll 91bd1f56d4ea35d52b1183c868f7a951c29e691e3fe9112423b6079ae655d1c9n/a 
2025-10-241.dlldll 0bd853d083af59ad270e2f5574c066f4db609b868fd2b30cc6d1b0e927446f67n/a 
2025-10-231.dlldll 28d06cfe5bb2077dafe1e75a820dafe471569a08ebb4a57cdf20b1f4041366d1Virustotal results 37.50% 
2025-09-201.dlldll cebac3a5d76c211d762d2426dacb5606b15b3bf998c1677760d9e06e85c58500n/a 
2025-09-191.dlldll e30b4831dbd01f7079b19364ceb9c1df8d4840bd5ebcd791c2ce6682d202acbbn/a 
2025-09-181.dlldll 1e69fdf3dde2aeba05f510d027a9a762cbe5d188c051167876f2621ad60fc3f5n/a
2025-09-181.dlldll 94d43da6ebcda1155d346f2a4b40ea048d6daa8d06557209db02c6c1dcdf3f09n/a
2025-09-121.dlldll 6957912a92003c515f45cc7e595397006859a24b4f5666dcb30b0ab712129cc4n/a Mimikatz
2025-09-061.dlldll 31710f833d41aa3ae3f0574f63024123f4608524829ff924d481c71392c56374n/a Mimikatz
2025-09-041.dlldll dc1cb52f0614b2d13933e55340e103b592d3bcb78105f490a6cc668ad798a27fn/a 
2025-08-311.dlldll 2f4593dae650acef8319388b03ce666b96daa11da61454cf109e4ceed8ea199bn/a Mimikatz
2025-08-271.dlldll 25a63892d678e5e226add8af843007e30e1390419d920a4ae2cbc28637282c4cn/a Mimikatz
2025-08-231.dlldll 71e73ffae53990faa99f03b654b152fad779e022b723b83b38acc34a893ddcaen/a Mimikatz
2025-08-221.dlldll 08a7e7df7a404f18eca663a3bcc8c973784d1fa31b4dcbcc8a36868649f90992n/a Mimikatz
2025-08-201.dlldll 8bee438f227a9457b957fb2cc641b1c1c0b3455c6efa49299c2a7f94b9b6403bn/a Mimikatz
2025-08-191.dlldll 18c4b16fd365b669d01af49fb2d06e35ac4c5ed7fcac7dbf7fdade128e04cd6en/a
2025-08-171.dlldll f749cca298b068789cc18d056f0e1fd2975a838e15a3d788838214f47a511f4fn/a Mimikatz
2025-08-141.dlldll b60539bc2449dcd7fcc84bda39f01d488f41317787b36fabb1d639e8d51afb63n/a
2025-08-111.dlldll d06f5c926a26961f2cde6901928d82b260db67176fcaee9dc53a4aeefb141240n/a 
2025-08-101.dlldll e12976fd1ff01a6dc6211b32eb5af493dc791be12c190a8fb0f4f7637216f9e7n/a Mimikatz
2025-08-101.dlldll 212b338d6c415cbafd4c150adb43bccb3b37bdad3a09739370ada975466d28ccn/a 
2025-08-051.dlldll 766b89e4c657a9103a15bb8fa671ef0edb3e6d6f7fb912c289b9e82caa286543n/a
2025-07-311.dlldll 1ac2e2ef90b97c9e55a0cfcef6891ca5f6e6d2e67f347faa58599f2d822ab87cn/a 
2025-07-301.dlldll eafe4393aad23fe96e32409a4bb1ef6890c9f65fdbbe90ec583da340213739dfn/aMimikatz
2025-07-231.dlldll e04d32ab7057fe7125dca18d976c6bc8dfa964ec004c098de62289977a7a3973n/a Mimikatz
2025-07-221.dlldll ef71923640550ae59c24de22a70759124d68bec526c3755cb9b6d75db46f3518n/a Mimikatz
2025-07-211.dlldll f149ecffc170c825a35d5ed00071d4d206c2637fc3e7addc83c680e00dbdd5d9n/a 
2025-07-201.dlldll 0e37810779a033dad139c70d696cd59366fcbfcfecc699ceebc5cd73503ff552n/a 
2025-07-181.dlldll 14dcb1024e678c4946122f832761b2540bf5e83ed647c109d12de20f924a475en/a 
2025-07-131.dlldll 3803be496d70770dd2febf47b349d55bcf4982ae80ad6cbc92c567832ce374f7n/a 
2025-07-121.dlldll b6ee54eeedb357fbf0667ce9726e0a04a7c19675124aad0196ffea24e42127fbn/a Mimikatz
2025-07-111.dlldll 3700f24d52e9e60a614006bfde207d503db4b8794692f0293e27402f6742f610n/a 
2025-07-091.dlldll 31317c628326b4d37fad7b2b4a146f394ced15d3eed8681a89aa9bd4408c063en/a 
2025-07-091.dlldll 7b28c13a2b7b520c2e68c4f5c19e0e8db001ee336c8996e80465a09406ba134an/a Mimikatz
2025-07-091.dlldll 6db3132fa6f8c63aeab17ada60b2ebbcc5c99bfd8b5bf7d97261a6c8834e6d72n/a 
2025-07-041.dlldll 22bc6c7d880b7a048d0c6f78718534aaa394fb368f771669724ed344400b61ean/a 
2025-07-041.dlldll e6d7be49f5347a1f8068b9c5a5244faa0e611bed8a17961a1d3636698850a645n/a 
2025-07-031.dlldll 7ce3271b1bf2f93ec594c588e34598da863d600432a869a019262f29fd7efc4an/a 
2025-06-281.dlldll 4791a1feabf474de3b2d42585985b49c1fca66cf68d30f3cf6b7e88d33f95849n/a 
2025-06-251.dlldll 383bad39c90efad20c4afbd9cbd3d7b24e06b6d2f1258c52bad3173bf5c7b923n/a 
2025-06-231.dlldll c69c4b5a917b533e71ea9866c27c119dbdcc8e6453526001d5e7b3fa6aa7a85bn/a 
2025-06-191.dlldll bc4f4770c724c50a9567eaf65b3086da901be15063ef5f8a8e62090f87594018n/a 
2025-06-181.dlldll 7e537e1963a63430c1e8e4065bafd220e40b7b0e15efd7689a71b65f275f8eb4n/a Mimikatz
2025-06-171.dlldll 92d8bdbe2e64645a8dad096cf7d9861f3c21e8924545d1293320d7eeb5472484n/a 
2025-06-161.dlldll c56260ed9433815ed4ad2962d6eab73c1ae32651c72f265fd9c17a1c4d098c47n/a 
2025-06-151.dlldll c3a8c8a1afe39d9b0c4abf7f4d88e259bd5ed647d3f9449023f0b0c768706fabn/a 
2025-06-131.dlldll 98497046a93826967f9bd83d0dcb4508ea1cef8e5059c47b5faafb77a28a86c1n/a Mimikatz
2025-06-101.dlldll 0c23cc423a8f291398a4768052c5b08ee7e2b3e903388a366d7497203c9d6e3en/a Mimikatz
2025-06-081.dlldll 9aa56c4014a85f93fb5ab2d586ba22f939fe5f16774d43fc960fd2683a0d2ea9n/a Mimikatz
2025-06-071.dlldll 12607fd79e02e20bdc08346686673b3196b37346cf804180d6ac25d81fbafd3en/a 
2025-06-061.dlldll 76088f07afed7293d9a1886808c780a9159eb21b1a3dea0cd2be25611679e320n/a 
2025-06-061.dlldll 1a2bca511cd54cc66fe888cec2d5cf604523c556346d17560f93afe53ffdb648n/a 
2025-06-051.dlldll 2090bdae4d49cc0a20526b8d57c5928500eadab334764b89810e0b08f907308aVirustotal results 55.56%Mimikatz