URLhaus Database

You are currently viewing the URLhaus database entry for http://178.16.54.200/files/fate/random.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3617790
URL: http://178.16.54.200/files/fate/random.exe
URL Status:Offline
Host: 178.16.54.200
Date added:2025-09-05 14:55:13 UTC
Last online:2025-11-05 13:XX:XX UTC
Threat:Malware download Malware download
Reporter: c2hunter
Abuse complaint sent (?): Yes (2025-09-05 14:56:13 UTC to abuse{at}metaspinner[dot]net)
Takedown time:2 months, 0 days, 23 hours, 0 minutes Bad (down since 2025-11-05 13:57:11 UTC)
Tags:c2-monitor-auto dropped-by-amadey LummaStealer Vidar link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-09-22random.exeexe fb6a0d7b550268eb38b66b11d7194119e863cc077f5b4d8256bed986f7d30ee7n/aVidar
2025-09-21random.exeexe 10058bc28fcfdfa517e458d166d3b9401f11f6b309552739202330957107f91dVirustotal results 16.67%Vidar
2025-09-19random.exeexe 4cfe5a076f8b5aeedafccaff49969c10d09468bbb795075099f10974248c23f8Virustotal results 12.50%
2025-09-17random.exeexe d45a54d3e490add7c0b547f6a6be16b843f9fdf12f1ac8427aa84c3e58aac93fVirustotal results 44.44%LummaStealer
2025-09-15random.exeexe 067a4cb79a2d602dc1f9003ef585d6018f53fd7ed206a6d4814707a7d9fdbf8aVirustotal results 54.17%LummaStealer
2025-09-13random.exeexe 5301711b35117a25cd6fe5a484f00f8565e8ff7206006f922912c50fb0d8adc8Virustotal results 54.17%LummaStealer
2025-09-11random.exeexe 724766e82eb006e53d86fbcc054a39c2ec55f2d13484b21df43de1e4f309ad1cVirustotal results 50.00%LummaStealer
2025-09-11random.exeexe 2740aaaccbef9382423a4a3030a46b744557a78a448b26d67caa5ad6740070edn/aLummaStealer
2025-09-09random.exeexe 61e3418b02d835bd161fa575ba60ddbb12f07ebf906ca17eae633ec431244023Virustotal results 41.67%LummaStealer
2025-09-08random.exeexe 289d549bc3ee9191b3ad2123e105d429012e05dde6f3f6aab8d3c7234e41f25aVirustotal results 52.78%LummaStealer
2025-09-07random.exeexe 779cd78bfa84b99aada5e385d088eabbf1696512bf005a836cac31ddf0366012Virustotal results 48.61%LummaStealer
2025-09-07random.exeexe 5e6e516c43ba268c6ff1bc4dc1b673b6ae53f2415867a64a353dc1ca59118b61Virustotal results 44.44%LummaStealer
2025-09-06random.exeexe cc8a223b9967a9ffada7bfbfee927c0089f7c07d5829029cdc36d61478e53f07Virustotal results 37.50%LummaStealer
2025-09-05random.exeexe 6fd88f40e32415937aefc28d37dd92c63182613e266e591cd0231fe70bc97f5cVirustotal results 59.72%LummaStealer