URLhaus Database

You are currently viewing the URLhaus database entry for http://178.16.55.189/files/fate/random.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3607393
URL:	http://178.16.55.189/files/fate/random.exe
URL Status:	Offline
Host:	178.16.55.189
Date added:	2025-08-20 16:12:09 UTC
Last online:	2025-10-01 23:XX:XX UTC
Threat:	Malware download
Reporter:	c2hunter
Abuse complaint sent (?):	Yes (2025-08-20 16:13:14 UTC to abuse{at}metaspinner[dot]net,info{at}metaspinner[dot]net)
Takedown time:	1 month, 12 days, 7 hours, 6 minutes (down since 2025-10-01 23:19:36 UTC)
Tags:	c2-monitor-auto dropped-by-amadey LummaStealer Vidar

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-09-24	random.exe	exe	fb6a0d7b550268eb38b66b11d7194119e863cc077f5b4d8256bed986f7d30ee7	51.39%		Vidar
2025-09-03	random.exe	exe	1a0cbe7bd1f4cdc7658ee4e9f674d7f6b0a44c7a76c2eef744eed0dea0b2e918	40.28%		LummaStealer
2025-09-02	random.exe	exe	67e84e61aa5fe1a0946ae1df43475602bbecb658a8de14a5e83978cbcbc6b2a6	41.67%		LummaStealer
2025-09-02	random.exe	exe	f6bcb9c86a45cccbfb318545d3e3688d0c37e74892dadcac6e40970bb8b83ff8	38.89%		LummaStealer
2025-09-01	random.exe	exe	c62f5b95b87e1e31d8cc89d2d7e31968cad5eba9d26e362b35501081c4a5680a	37.50%		LummaStealer
2025-08-31	random.exe	exe	a50d536f779d7e724c8cacfa746d031bae38956c81a191824410614b1ec4bfd4	58.33%		LummaStealer
2025-08-29	random.exe	exe	8133804484911107232448ce013984b1d5e39ebc8a228fd4d2eacfb6a2bbb6a0	10.14%		LummaStealer
2025-08-27	random.exe	exe	9418a40893d69321e2a554d11ae75d5c50759baa5e881e32841813214309f00c	31.94%
2025-08-26	random.exe	exe	a31d5b19eda486f25197b70330e7a1d023c18b5d6e518fd51ab93bc765a993ef	48.61%		LummaStealer
2025-08-25	random.exe	exe	1e0889d378a313bb1e9739bc4056ca00cdea277d9239fd319c81f46cd295024b	n/a		LummaStealer
2025-08-23	random.exe	exe	c9f48c755baef832933c65ffb834979bfa06c6924122698205495b1c5213bbcc	50.00%		LummaStealer
2025-08-21	random.exe	exe	6b2491ba067e34d201364066e42a8e708356fa5b562956171bfcf293f332248d	44.44%		LummaStealer
2025-08-20	random.exe	exe	85b278f922d4621a5e2cacf18e732d5a32b6c32aeafabefedad3e746c71794b4	46.48%		LummaStealer
2025-08-20	random.exe	exe	099250469c23007b02b117b43e6a1b29d24944eebb4c12b0cdc553556d414ca8	52.78%		LummaStealer