URLhaus Database

You are currently viewing the URLhaus database entry for http://178.16.54.200/files/rdx/random.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3617806
URL:	http://178.16.54.200/files/rdx/random.exe
URL Status:	Offline
Host:	178.16.54.200
Date added:	2025-09-05 14:55:25 UTC
Last online:	2025-11-14 00:XX:XX UTC
Threat:	Malware download
Reporter:	c2hunter
Abuse complaint sent (?):	Yes (2025-09-05 21:05:12 UTC to abuse{at}metaspinner[dot]net)
Takedown time:	2 months, 9 days, 3 hours, 25 minutes (down since 2025-11-14 00:30:13 UTC)
Tags:	c2-monitor-auto dropped-by-amadey LummaStealer Vidar

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2025-11-05	random.exe	exe	56fe1918c477c22758d784c1be780c4704d6301106bfad9d2d0ad8cf57436d14	56.94%
2025-10-17	random.exe	exe	d525e04de355791e45f126e241fc2adfdee57b567fe2e2b1f0bb9b20bd852244	50.00%
2025-09-20	random.exe	exe	04537b68ef029a66a16e85052f829b6f6cc969fefe894e0c55f8048cc5ad74a6	11.11%
2025-09-20	random.exe	exe	056da2c44535d94e059c718491abba3c85fad9c70f98b0e3566c689c316207c5	n/a	Vidar
2025-09-15	random.exe	exe	fe5aedd6d39a3871c306cca4ff6dbb8b2dc980edebab92377e55576dac22f124	42.25%	LummaStealer
2025-09-15	random.exe	exe	992abc6a5dc42444230f760886be38a7ab5e8e03c5f7c0b28e8eb7eca759ebd5	61.11%	LummaStealer
2025-09-09	random.exe	exe	599fa3e078b1cf240f0513969cdc3a5016ffb60c1feae9e574ab8a275ae8e891	70.42%	LummaStealer
2025-09-07	random.exe	exe	2e399a125e513e01d470e8bef5758116869d80617bc58bef2ced37ed158ee269	54.17%	LummaStealer
2025-09-06	random.exe	exe	1f8a0a528ce10785f929770fd9b1a3bb4d02f9f187ec0f7aab701b7a252c7099	8.33%	LummaStealer
2025-09-05	random.exe	exe	8f297acc5a4c98ca7f6c0cb2f1f8327a60819739bd7b78fcfffaddfbf21517f2	70.83%	LummaStealer