URLhaus Database

You are currently viewing the URLhaus database entry for http://178.16.54.200/app_win/random.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3619114
URL:	http://178.16.54.200/app_win/random.exe
URL Status:	Offline
Host:	178.16.54.200
Date added:	2025-09-07 04:04:11 UTC
Last online:	2025-11-14 00:XX:XX UTC
Threat:	Malware download
Reporter:	c2hunter
Abuse complaint sent (?):	Yes (2025-09-07 04:05:12 UTC to abuse{at}metaspinner[dot]net)
Takedown time:	2 months, 7 days, 20 hours, 16 minutes (down since 2025-11-14 00:21:55 UTC)
Tags:	Amadey c2-monitor-auto DarkVisionRAT dropped-by-amadey Fuery PDQConnect PureLogsStealer SheetRAT Vidar

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-09-17	random.exe	exe	9ff0ed219c56fb95f58e739e9eece082606da8556a9fccf344409daeae2a4eb7	39.44%		PureLogsStealer
2025-09-17	random.exe	exe	934a7a6ed4ad95a8811c892a9da1bf576f82a7f5fb9bd7f03a367efd7d89c07d	54.17%		Amadey
2025-09-17	random.exe	exe	707837ab12e3265c697210c168216999b7f82727119723d8d1006a4d46d3093a	n/a		Amadey
2025-09-17	random.exe	exe	9eaace6e03a623f19b42824620b0c25d4187c905bf2b4a45f1a200d9750f4a07	51.39%		Fuery
2025-09-17	random.exe	exe	0046ac156acfd377676b3b6a529e8dd7426d058f20a8ff445d47134b02e5c8c3	n/a		Amadey
2025-09-17	random.exe	exe	8d7365cc48461b00dd0ad82bc44b7a05ac2a9c31680b2c86d4e0bcd1a5a87067	51.39%		Amadey
2025-09-16	random.exe	exe	6e823fcb84f802a443178df02eb1cd3ed62082a5f5227b86f093506353351b9f	45.83%		Fuery
2025-09-16	random.exe	exe	c4334489b8112ba58b4bb96a758ae07ce38ce976608c6accee6522c8cf0024bc	47.22%		Amadey
2025-09-16	random.exe	exe	526b6ce033a3639f19f8486853ac99356dd90f09075f07579f8f9b1e9e530e2a	n/a		Amadey
2025-09-16	random.exe	exe	452467956f142874056adaf483929ddeb2c9de3dba06474e6aa33ea1780c85ee	44.44%		Amadey
2025-09-16	random.exe	exe	5fe8458656946a12d7eac289a4be70795687f11170d4f079fb49c2a3b06b2762	n/a		Amadey
2025-09-16	random.exe	exe	c85c0e454ddc6684b4e577431f661b7fd6a5f6aa088258739a891302f630de68	38.89%		Amadey
2025-09-15	random.exe	exe	f3c2bee63d4dd75081878822b5bca8f78bd9c6eaf4aa4e1582c2a7c65c2fe114	n/a		SheetRAT
2025-09-15	random.exe	exe	65ba1bd46374d8ff4a10048190b08ed6caf531ddafbb4bba4230708dee48fede	48.61%		Amadey
2025-09-15	random.exe	exe	5cfc7216841e38a28c47d993a0d7f9751868611de5cf5062bd85c351e6a0cf41	44.83%		Amadey
2025-09-15	random.exe	exe	848f8e2f82562e35a1492f19d8ff8dcc1506cfb6d13a9e9864e52194c12e75a9	45.83%		PureLogsStealer
2025-09-15	random.exe	exe	9d6627aacc316d06f4168e45a8934761e9d12cb1056cc26093e7f970535cfb04	47.22%		Amadey
2025-09-14	random.exe	exe	2007835d7cb7f59ddfd68986b3e28846e15274b5f8a93706b737e9a10ebc5a51	n/a		CredentialFlusher
2025-09-14	random.exe	exe	46cdf3efa0092626af28ed5d00b3eddca969b481d89080c3d0788124f985c3a3	n/a		CredentialFlusher
2025-09-14	random.exe	exe	9a8213cdc3db431325ca1e249d4c91f51e2855cb235a1f500da9dad8a4b773f4	n/a		Amadey
2025-09-14	random.exe	exe	e2ab368dbc3683479f156446ff128b6baca7d6dc200aa7f6028dd2dab5d70497	n/a		CredentialFlusher
2025-09-14	random.exe	exe	453f4ec842998a8748f31bab15f6dae3d512581dbe68cd761cbb02d40ae62a08	44.44%		CredentialFlusher
2025-09-14	random.exe	exe	e9eaf190579ab0c8556e00cbe6a2bc2e6152247c1bf64239b454aea22dce1558	43.06%		Amadey
2025-09-13	random.exe	exe	13b7299d85360722cfb6708db290e29dd7ce61f8273189dd17a3627f66e93333	57.75%		Amadey
2025-09-13	random.exe	exe	eb9e0e130ca4a4aa0473ece354f2e0c81ec1fce275e4388014098d9a2d4f054f	57.75%		PureLogsStealer
2025-09-13	random.exe	exe	e23436d76f6e6150991b83fe3989637a4b24d340045d42e4654798094a972cc5	n/a		Amadey
2025-09-13	random.exe	exe	6304f36b5baa132feee6ee53bf0874545cb31d99d2383183946c7189ab2155cc	n/a		PureLogsStealer
2025-09-12	random.exe	exe	a1cf408946aebd1c2b43cf956262da4b3fabe37079f16dd736ef90bc151392c3	57.14%		Amadey
2025-09-12	random.exe	exe	17f8a2abf75debe0751dde1ea157f89293ca75d6b1fb49dc8417b5411af190f1	56.34%		Amadey
2025-09-12	random.exe	exe	dff79b4e41a15196c5a3696623fb08954a8ae4b2448d1adf265276614cc9988b	56.34%		Amadey
2025-09-12	random.exe	exe	68f3fbcc2c7864587867c406007cb726189c4e2257c8bfe0fcbe95644f183b97	57.75%		Amadey
2025-09-12	random.exe	exe	1d9e8eb25c72138e7a3ad85bcd19a765bade731cd102092456f94dab3a211a47	58.57%		Amadey
2025-09-12	random.exe	exe	8611c18b798fa81457583068d2b5825b1a5f69a787e71070b9ea7440c6e247ba	57.75%		PDQConnect
2025-09-12	random.exe	exe	b79fef898880d03bb1b20c0f80196358c2b40b751f7628758d203d0cc6b58500	58.82%		Amadey
2025-09-12	random.exe	exe	d4684facb24bbdec0322bfe0022878c326b0403ef267bb80e7a2d342e3752a87	n/a		Amadey
2025-09-12	random.exe	exe	f3c239c3be39862be02aa904748aa46b7fcc5ade520fcea424a6d3c88dd8faf2	n/a		Amadey
2025-09-11	random.exe	exe	18b46f4382510716f5659003575e63e62b50a403f4a78570b053e79ee2c07537	n/a		Amadey
2025-09-11	random.exe	exe	1bc3888a2da621de0e660bb2caa674270a1868dfeefaeec8bc10a8df6c0a159d	59.15%		Amadey
2025-09-11	random.exe	exe	99baae6e6268917fcd38800a2a272e2c373d279c9c7fdff712773d6c17328c62	n/a		DarkVisionRAT
2025-09-11	random.exe	exe	b27a9307ac96847554582ee1b84c006d36c29f41c222ccdc8d349c0d5e775729	n/a		Amadey
2025-09-10	random.exe	exe	ac313710828c2f9c571a30cc6ab8783df184256e69140a7b909893d3c874e9c3	56.34%		Amadey
2025-09-10	random.exe	exe	a1929d1fdd2165a86afcfc232c20aaa5a63e3a2cdbd3fff7104fbf77af191c69	56.34%		Amadey
2025-09-10	random.exe	exe	78c15fe99029971da65e6b8fb5bfd9aacdb3fddfc51aeeefb86118c35a22afe9	52.24%		Amadey
2025-09-10	random.exe	exe	e26939d828811c563ec325b50b48e277c9b7b08c6dcc2efc741fe704198e83f9	53.52%		Amadey
2025-09-09	random.exe	exe	29c8ba9dbd758d391e658f1ff36fab249ef5c2d1a85a15d3a912c91c7c89b6f4	54.93%		Amadey
2025-09-09	random.exe	exe	5ae88cd51d2e3ed742036edc37cfa7c5a8ea3ac7b0e7cbce6a3cb5157fa72f73	56.34%		Amadey
2025-09-09	random.exe	exe	fba71471e39aa6f5fad6db81392302b924f137d256ad13836fa2bff6b62e869a	54.93%		Amadey
2025-09-09	random.exe	exe	1a415d27f841721da64afea8855f1562e63b3b515360f0db82e6084ecb551341	58.82%		Amadey
2025-09-09	random.exe	exe	1c52c7f629bf1cfaa4b43e42174825cbd3e24cedd40b8fc63281b29bfe9f4e5e	57.75%		Amadey
2025-09-09	random.exe	exe	dcc2de9a387102f876834661c9328bacd36f28f41857f963e880ada0eed0f78a	55.71%		Vidar
2025-09-08	random.exe	exe	dd4095557998cdfb6675897f18a2c0a993e4f810e2043a32a6ebca6b25b8ce84	56.34%		Amadey
2025-09-08	random.exe	exe	c34e870017753ac448f08b506a13d1236d081a33fc61b7b2a96e30c659f03539	57.75%		Amadey
2025-09-08	random.exe	exe	6ba0aa6a5d2ec13c4368a36ecb677d03aef21bc17b140c44e9709feed9e0742d	53.03%		Amadey
2025-09-08	random.exe	exe	35c110c30e3c297fae36e6708a57e7c022d8d311596b5fa9d7f33825b5ce1cd2	55.71%		Amadey
2025-09-07	random.exe	exe	9e567b22046308b8877a26392f43cc41f6bc2ae23f98cff9ecdfbd4cfb17d91a	53.52%		Amadey
2025-09-07	random.exe	exe	de5439de8e4008d4189ea5bb97f617694f9c12bac77acc0ecf840828a0a831d2	56.34%		Amadey
2025-09-07	random.exe	exe	e5ecd42dec55a0785fce2106a814acf605818904da423c256e024fb654e3862b	55.56%		Amadey
2025-09-07	random.exe	exe	315a8559935ef97b4fe5128d8ab92ba2a168be2519308e37db3ddf3a797e4902	n/a		Amadey