URLhaus Database

You are currently viewing the URLhaus database entry for http://176.46.158.8/app/random.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3590301
URL:	http://176.46.158.8/app/random.exe
URL Status:	Offline
Host:	176.46.158.8
Date added:	2025-07-26 09:43:10 UTC
Last online:	2025-08-14 09:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2025-07-26 09:44:13 UTC to luke[dot]ross{at}mnttr[dot]com)
Takedown time:	18 days, 23 hours, 44 minutes (down since 2025-08-14 09:28:38 UTC)
Tags:	Amadey CoinMiner exe PureLogsStealer xworm

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-08-01	random.exe	exe	3077b0491cd6ccdab471ead20efdb78e997f56758238ff27f070eb7f07366fa2	54.29%		Amadey
2025-07-31	random.exe	exe	9a72cf40a121d6b6f8cfd0ed34bca82a5b93b8c8475e244845afba6594cf628a	n/a		Amadey
2025-07-31	random.exe	exe	98a3a4cfb634d66ad8b804c423d50e6a3cb9a6b3110fc97b40e6257df6b33599	n/a		PureLogsStealer
2025-07-30	random.exe	exe	5ab498288b862bb6438a36f2d4e34c03d0bb6319046018caad5f59ce42152fcd	n/a		PureLogsStealer
2025-07-30	random.exe	exe	44e25c19cb58e34dcdbddcb224c9af3e8ce4f5b09f172995183c3d76a17c4bb9	n/a		Amadey
2025-07-30	random.exe	exe	12c73cf8cb9b42205636ea3daa24004db05de32f40f838d8f08c4f46d5f15538	n/a		PureLogsStealer
2025-07-30	random.exe	exe	2473b6ee736524c79bf3f2da00db3f62f5e0caab26f5e5e05c6cd9f1463764a1	n/a		CoinMiner
2025-07-29	random.exe	exe	7a79ecbb853ddbbc802a7c0f61b8899b75ce00a9833d54af22b07032b1e09632	n/a		PureLogsStealer
2025-07-29	random.exe	exe	69d07a23a33404c0e198af5056c6063cec4ab92e40d2a7b78b85b6e699ba7c3b	n/a		Amadey
2025-07-29	random.exe	exe	9a24ec127c58a8704616e94911e0d265ae80d29536df19ae8fd3bbaf2680c4d1	n/a		PureLogsStealer
2025-07-29	random.exe	exe	46150b5c4ab95a629062dac2636a4d7ecaea35ed42998c8c79e4e8958400f981	n/a		CoinMiner
2025-07-28	random.exe	exe	6e6c39ed5a0e6658aa528a160bc21b07b3e30a77af4e33b8f170a286612a6bd3	n/a		Amadey
2025-07-28	random.exe	exe	2d97b803bb4ccddd8080829bc0a05ad344ffe5181119da05e33e76472a1e1346	n/a		PureLogsStealer
2025-07-28	random.exe	exe	5fc4c46859ef76b3af768abb56e32e7fe0c135c5e51c08cc88e36211609c3a72	n/a		Amadey
2025-07-28	random.exe	exe	6f1b04fda538f910ba93c4223c0d6665f166e693a34a8a57d0fb203a5e278abd	n/a		CoinMiner
2025-07-27	random.exe	exe	d72968aa59d94ce723820e0a9e0f5d4b4adce9407c586ca663bbd30fb301b010	52.78%		Amadey
2025-07-27	random.exe	exe	8e0235346e8f1805450d03092948a6d66ab7768166f9750eb2c515109f5692f6	n/a		Amadey
2025-07-27	random.exe	exe	0dae8d5d26a44f5ca6a9d96b425bd49290d5b8b8a0ad4dc495ad199ac444437c	n/a		XWorm
2025-07-27	random.exe	exe	5711f74c0eb088df40e4e3facecf4c6408225c8df90aae1283e7fc11b284178c	n/a		Amadey
2025-07-27	random.exe	exe	c34a7dd5d612f9d796ce9335bea76f4238346fcd27e0d23a5873bb586fa29a2b	n/a		Amadey
2025-07-26	random.exe	exe	2d657e0ee785ad55e31b47ea12bc73ecc43c8e4cb5e9d1c0240879410f992c86	n/a		Amadey
2025-07-26	random.exe	exe	3bcd650cfa8589518bd0ad2ab93a04589190275de3843f8f90bcead289b0924d	n/a		Amadey
2025-07-26	random.exe	exe	bb1eb86128b4c8e48570658f861ffd8a6ee7fa9ecd8a5e118da47ebf66e97be2	n/a		PureLogsStealer
2025-07-26	random.exe	exe	02d817960cb9de37bc6598cc82c6fe8f1afacfa0d8a25b0d0f4d5b70349bd1c9	n/a		Amadey