URLhaus Database

You are currently viewing the URLhaus database entry for http://45.141.233.196/files/fate/random.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3594026
URL:	http://45.141.233.196/files/fate/random.exe
URL Status:	Offline
Host:	45.141.233.196
Date added:	2025-08-01 06:14:14 UTC
Last online:	2025-08-19 14:XX:XX UTC
Threat:	Malware download
Reporter:	c2hunter
Abuse complaint sent (?):	Yes (2025-08-01 06:15:20 UTC to abuse{at}virtualine[dot]org)
Takedown time:	18 days, 8 hours, 10 minutes (down since 2025-08-19 14:25:59 UTC)
Tags:	c2-monitor-auto dropped-by-amadey LummaStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-08-17	random.exe	exe	be15448c082d10d5047eca8a6b700cfcad7487e8a9dec0d3251c8c955d0b2acc	41.67%
2025-08-15	random.exe	exe	e30c46a43703c8ef08dedfe53a5df680d9a39b4783554b01f5318bffc71956ff	41.67%		LummaStealer
2025-08-15	random.exe	exe	fd6437854ff6cc69da2fb9d203b49d57e8f97886a46eb8c1d77b6e92c497ae6f	52.78%
2025-08-14	random.exe	exe	19a6b0d4e0d799b5323b0ffd3f6f6ad624f1ffeb72a36802f01364065b0bb3d8	48.61%		LummaStealer
2025-08-13	random.exe	exe	b595ce29d8475d2295321d4951d2a9343ad2cc30cb1f5d1bb22b5314733eb576	54.17%		LummaStealer
2025-08-12	random.exe	exe	995f184cfa8a715a3b9cd946828614c7f9c90c60c94abbf5d52674c460bc2759	51.39%
2025-08-11	random.exe	exe	b36aadec945e219eb2b54232bc057fff4fb9f5da6229c00f54ba3f1a66876f64	46.48%		LummaStealer
2025-08-08	random.exe	exe	6a598128fde3a08fd93fc7a3378a751d07002deaae73b051a918744e63895555	54.17%		LummaStealer
2025-08-07	random.exe	exe	49fd7fcc348036502f56c55103c0337f2cc73bc884cfa5a83f90e3374e77a189	52.11%		LummaStealer
2025-08-07	random.exe	exe	3f7b07530a97a73e5c969409307e9fa037b58ec682cfdc9e215a250be9f52a60	51.39%		LummaStealer
2025-08-06	random.exe	exe	6bb6493e93b04a7376c31939fc22c9b7a17d1a8334016bdeb9f5f157563bc561	47.22%		LummaStealer
2025-08-03	random.exe	exe	1bbbc6c31af6a057f9206a78a5e1703076a5ac512cbd656db011368676e11865	45.83%
2025-08-03	random.exe	exe	b3ecdba9ca3673a377051c16e95646b71029e7da320a4c88e40764260ca321a1	38.89%		LummaStealer
2025-08-01	random.exe	exe	28c947039254699da4345db011064b691f933bb6019ae142c2592b4e275ab116	39.44%		LummaStealer