URLhaus Database

You are currently viewing the URLhaus database entry for http://178.16.55.70/v3434.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3615435
URL:	http://178.16.55.70/v3434.exe
URL Status:	Offline
Host:	178.16.55.70
Date added:	2025-09-02 04:03:13 UTC
Last online:	2025-11-19 18:XX:XX UTC
Threat:	Malware download
Reporter:	c2hunter
Abuse complaint sent (?):	Yes (2025-09-02 04:04:12 UTC to abuse{at}metaspinner[dot]net,info{at}metaspinner[dot]net)
Takedown time:	2 months, 18 days, 13 hours, 58 minutes (down since 2025-11-19 18:03:11 UTC)
Tags:	c2-monitor-auto dropped-by-amadey njRAT QuasarRAT Vidar xworm

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-11-14	v3434.exe	exe	d2173d71f1f062e9f767075b82f7c4c4153c6aaf80f97202d4055429af5c3f3d	25.00%		njrat
2025-11-13	v3434.exe	exe	3333d304a03d22fe82d82dc9d3561fc5df761b4c27d563e0b4e908af02c6fe1c	n/a		QuasarRAT
2025-11-12	v3434.exe	exe	d8c5d04d859189de3321a635abcd5ddf84f28f04119830402c66527ae36ae3bc	32.39%
2025-11-11	v3434.exe	exe	4263f3bf622b67bd45664a7dabd389777997e2d1304156d22d8926a246b3e5a4	n/a		Vidar
2025-11-05	v3434.exe	exe	a716e32febd8d73a8fd105b3e54b111918b7279250665850968ba954170b8fa8	37.50%		Vidar
2025-11-02	v3434.exe	exe	e39c53235a69fbf475022607381fc0aaf1a3730b2f812ca45d0ea20b92903b9c	n/a		njrat
2025-11-02	v3434.exe	exe	2e0210288c277759777273fc8be96b4cf1b10027ebda7e15cbfbdc7da15cc9f7	n/a		Vidar
2025-11-02	v3434.exe	exe	a16ef8cd6d331655c72d192ee75e26b5e9b3b5c0914b306944269db98f6c1f2d	n/a		Vidar
2025-10-31	v3434.exe	exe	cfab2e8d53783b5af7d4627faa24cb3895ab58e8edf8b153259b0633e36ac958	n/a
2025-10-30	v3434.exe	exe	77aa01db8271f6a66d74a67a0f6a291ae68aec5120e4db8d831eec0ddea6d0b9	n/a
2025-10-19	v3434.exe	exe	cd8020249e6e52bc13433b2a3da0028244afe2fc2e95650c10fb559aa7bbd7e2	69.44%		Vidar
2025-10-13	v3434.exe	exe	98e7702831534b4a4e3ec22791555d21ddcfee9e306ba882b2f9c37aef8d763b	n/a		Vidar
2025-10-09	v3434.exe	exe	d08846cf35cb56da56be21201e7a056c30e98fa6fb5d778b61c483bd0cf7fd3e	54.17%		XWorm
2025-10-07	v3434.exe	exe	64cad1ccb76a7413eaad9330f1e5ad44269c0b51098e83053bf0e13039f81b0d	54.17%		Vidar
2025-10-06	v3434.exe	exe	7a7b817b401bb8f0bacaefe551adb695dfdf8873de4457ebe368d6c7a4555c21	59.72%		Vidar
2025-09-29	v3434.exe	exe	ea9295847b901711f67d0647b2f8eaf528e5b0254d6590153c12a52c547b37cd	56.34%		QuasarRAT
2025-09-26	v3434.exe	exe	6a7396d49126f2c310c0a47f0e6c85890d7e609f382ff3309f79da2b1562398c	57.75%		Vidar
2025-09-19	v3434.exe	exe	e87152ef68cd00d81c8890079fbb9acd18ad90e6d6568251feda68e5761d76bd	n/a		Vidar
2025-09-15	v3434.exe	exe	15bcff2e78c4739154eaa724eadece06f8b4955e66becb5412d8a6921df1c481	n/a		Vidar
2025-09-10	v3434.exe	exe	b51faaf89ca817bb943abf2b161537106eeaf0b1f0114b406c5c9ab9a4ce1f66	54.17%		Vidar
2025-09-04	v3434.exe	exe	abc96e29a342d5766dca5cb791d0ba938fb96db82bd6d8587bb77722d5cf426f	36.62%		Vidar
2025-09-03	v3434.exe	exe	5f809fd6dfd4a9835a59270b0a82fa23d4b7be207729892f58d4ed0f1cd0ea23	65.28%		Vidar
2025-09-02	v3434.exe	exe	f0311927554d2cc8d96fdcc7756851ce6020e33ac2663a736dca2ad4fd411d48	55.56%		Vidar