URLhaus Database

You are currently viewing the URLhaus database entry for http://8.138.182.17/%C4%A7%BE%A7.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3559939
URL:	http://8.138.182.17/%C4%A7%BE%A7.exe
URL Status:	Online (spreading malware for 8 months, 29 days, 2 hours, 56 minutes)
Host:	8.138.182.17
Date added:	2025-06-09 15:35:22 UTC
Threat:	Malware download
Reporter:	BlinkzSec
Abuse complaint sent (?):	Yes (2025-06-09 15:36:08 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Tags:	ua-wget

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2026-03-03	ħ¾§.exe	exe	e342c983f2a58e9e3a7659476878cd46d4c4af9f1c0a30f09212b1a37e11adf6	n/a
2026-02-13	ħ¾§.exe	exe	c93fce7db8e22c5fcda031c52f2b96a76e3fb0520caa4f7cea5197d32507f111	n/a
2026-01-13	ħ¾§.exe	exe	29db1e73bfb20f24147385baf72b32fb86bb36a60aef1e58ac50954a9f6c3826	n/a
2026-01-02	ħ¾§.exe	exe	c14e61c8374dd36a2f291bdb540934885fb002264266738758d15d16bfee0d20	n/a
2025-12-15	ħ¾§.exe	exe	e7f504a9f6f8fafc2f3cb6a46c64c0d42e628d7ce90ac168f96939c8a2124480	n/a
2025-12-01	ħ¾§.exe	exe	6e68e8555d0990a665f17a7217fc2e9bbbf64a1e21b65b12eedea51f16570ef6	n/a
2025-12-01	ħ¾§.exe	exe	01d588c54b00cfd0dab81bd5b3c96527a8fe6e5704beee85dca6a8827f620e56	n/a
2025-11-19	ħ¾§.exe	exe	db2f5ec20486ae9b58f599c9e0908207b9f5a7629db21e7db63e405e44a80125	n/a
2025-11-06	ħ¾§.exe	exe	d4c2f6830bb4a1b1734711ca2b5a4d0ce26fc9de536862f47923bb3ee091864a	58.33%
2025-11-05	ħ¾§.exe	exe	f52b806dfa6a4fc5375a4123be66d095e8e36a768689ae3c1e1431c1d36a74eb	n/a
2025-11-05	ħ¾§.exe	exe	f357fb583f838246eb6b88f88c8f1be06a79a579eb94e3d43cdd33feb6a8bf80	n/a
2025-11-05	ħ¾§.exe	exe	fbe86a2a8a1775830ae0385a238bbb82422b06b748708dff79b39a279d672740	n/a
2025-11-05	ħ¾§.exe	exe	b9c60b29d2da87237216166c2cbfbe7746f5539ad66498008732072144e341f5	n/a
2025-11-04	ħ¾§.exe	exe	606637c6bd00e45a7d53d3e5ad38eab2e283024703d0e2c5ba7c0214dba71834	n/a
2025-08-05	ħ¾§.exe	exe	9a72be9fc686de8a548aa7a7ef9c1de2d26e9edf21b434066c5c5a00cf85a46e	n/a
2025-08-01	ħ¾§.exe	exe	6006d07f0f902d7556ef357c72cf57e5bf3bdfb29ea526d1febeda95cb76ff89	n/a
2025-06-09	ħ¾§.exe	exe	6ff529a7c38a5e07c574f5f013310aa486dbf25b8b29f24c0a8b2a4df4c7a2cc	55.56%