URLhaus Database

You are currently viewing the URLhaus database entry for http://118.89.73.78:8088/02.08.2022.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3691443
URL: http://118.89.73.78:8088/02.08.2022.exe
URL Status:Offline
Host: 118.89.73.78
Date added:2025-10-30 20:08:09 UTC
Last online:2026-03-01 15:XX:XX UTC
Threat:Malware download Malware download
Reporter: DaveLikesMalwre
Abuse complaint sent (?): Yes (2025-10-30 20:09:15 UTC to abuse{at}tencent[dot]com,abuse{at}qq[dot]com,jsquare{at}tencent[dot]com,dreamsruan{at}tencent[dot]com,noc{at}tencent[dot]com,ipas{at}cnnic[dot]cn)
Takedown time:4 months, 1 days, 19 hours, 5 minutes Bad (down since 2026-03-01 15:14:56 UTC)
Tags:censys CobaltStrike link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2026-02-1002.08.2022.exeunknown 05460ba2657ec291e598e7493a154a3c5e3c4d0fd4455a02a3f0e3245e4aece2n/a 
2026-02-0902.08.2022.exeunknown 4cdd42f2cd97afa8d80520cf20a972c1e576d6ff201c121791ea3239c91929e1n/a 
2026-01-2202.08.2022.exeunknown a5383aaddb7accbf00f494f21339b2be22cfa9845cc26ff83358aa3ba13a7116n/a 
2026-01-1402.08.2022.exeunknown 2c25e331b7db0fec8167bd3661d13cef95ae06136b0652b7413eadeb683c4e43n/a 
2026-01-0802.08.2022.exeunknown a69d4017665aa2297ef4c2f51a2749616f7209a5f723f5e31c8c68b0cd66410en/a 
2026-01-0502.08.2022.exeunknown a9bb8e740cb86065994b73a7f38bbfed5a04b4ba0b9bfbe7d1da34537cda7691n/a 
2025-12-2902.08.2022.exeunknown 6436c9aa821ae2f810967d3ecfd0455a5aee8829549d4cf927d3259532821630n/a 
2025-10-3002.08.2022.exeunknown cebcf98386686570d528917e544951f90c4ad789e285cf5deb5a40de9c82ddedn/a