URLhaus Database

You are currently viewing the URLhaus database entry for http://192.252.181.93:6635/1.dll which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3558513
URL:	http://192.252.181.93:6635/1.dll
URL Status:	Offline
Host:	192.252.181.93
Date added:	2025-06-05 09:24:19 UTC
Last online:	2025-07-20 18:XX:XX UTC
Threat:	Malware download
Reporter:	Riordz
Abuse complaint sent (?):	Yes (2025-06-05 09:25:08 UTC to mfjp{at}hotmail[dot]com)
Takedown time:	1 month, 15 days, 8 hours, 38 minutes (down since 2025-07-20 18:03:27 UTC)
Tags:	opendir

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-06-29	1.dll	dll	4d6c61bcbc7773618ff8768b8edfb234c7e8528363ac6c26da89e21b8ff68633	n/a
2025-06-24	1.dll	dll	be8e14d35b858022dffd4718c328a86ffbb989463c3efececc280e922f54dba2	n/a
2025-06-22	1.dll	dll	7af5a8b8a19138e978f6423e0c0ac1e71dc16db1803d4c08aec38f869d62d2d6	n/a
2025-06-20	1.dll	dll	e125decb929d19ebf9f653e5426880ee678ed1501ce47728c5f298aa14a661f1	n/a
2025-06-12	1.dll	dll	4b4700c6d9419f0da5648519829211fc16fb0071e8b3d7853450fc0c0f55db00	n/a
2025-06-09	1.dll	dll	5b4ba1ecb3e011e7758ec930382340be593405ab05798a3a03e156b5f64fb8b5	21.13%
2025-06-09	1.dll	dll	8ad2972ebc73bba1d94aee04b4e9e056eaeb74155c52cc2327269db681f802cf	n/a
2025-06-08	1.dll	dll	cb516a1de497249c80f33a79ebcbf34c61c01c94fa5041219ea922b5d1837af6	n/a
2025-06-06	1.dll	dll	64805f0091860b0edb7db032889e93a6f64aff4bfa627e5a3bb581dffe1fc23c	n/a
2025-06-05	1.dll	dll	234798f311c19364eb956b7d47bb6b5f89e94055b13cb0b2732bf5376d0d4f00	44.44%
2025-06-05	1.dll	dll	3d40e4fbd24a754140e97bf839f3d623d4406fb55da7bcca8bba5f1b70d389c0	29.17%