URLhaus Database

You are currently viewing the URLhaus database entry for http://101.133.225.51/02.08.2022.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:3570449
URL: http://101.133.225.51/02.08.2022.exe
URL Status:flame Online (spreading malware for 1 year, 0 month, 25 days, 8 hours, 53 minutes)
Host: 101.133.225.51
Date added:2025-06-26 18:11:35 UTC
Threat:Malware download Malware download
Reporter: DaveLikesMalwre
Abuse complaint sent (?): Yes (2025-06-27 04:00:14 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Tags:censys CobaltStrike link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2026-07-1602.08.2022.exeunknown a45c19ccd122009f9f0cddf15f8a50d5dcc6687f5eeb81ac6b6332d4dcc163ebn/a 
2026-02-2502.08.2022.exeunknown 715a1bdbc9997618b96f2c40ebba2027c0c4c59c2d1356470f0611f71c9aa304n/a 
2026-01-1302.08.2022.exeunknown 41c89b4b0b3976dd6f7f08f084387d11323b3fb927f08f70441d90e40457d799n/a 
2026-01-1302.08.2022.exeunknown 55d2a96566fa286ae6e17899d95dcfc8feac39b0fc4c0a285e35baacfc465e71n/a 
2025-06-2702.08.2022.exeunknown f27eafd90ac1fb1d391b4b2c431123c8944da5d44837ce9a994584e902aa536eVirustotal results 27.42%