URLhaus Database

You are currently viewing the URLhaus database entry for http://158.94.208.102/groupware_11.80.93.2_INSTALL.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3709973
URL: http://158.94.208.102/groupware_11.80.93.2_INSTALL.exe
URL Status:flame Online (spreading malware for 1 month, 9 days, 17 hours, 46 minutes)
Host: 158.94.208.102
Date added:2025-11-16 16:57:09 UTC
Threat:Malware download Malware download
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2025-11-16 16:58:19 UTC to abuse{at}lanedo[dot]net)

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-12-09groupware_11.80.93.2_INSTALL.exeexe c147deba293c5bc0c2f10814bb5f1049069a65608cfc63b1de01b8ac147ef476n/a 
2025-12-05groupware_11.80.93.2_INSTALL.exeexe 698577d4123787ad5306ace27a30dec4e955371ffc706f179ddd83a37bca3151n/a 
2025-12-03groupware_11.80.93.2_INSTALL.exeexe 60a8f7ee3d0508743f343c3a9634a16aef30b5dc42ca171e46467b81571c8887n/a 
2025-12-03groupware_11.80.93.2_INSTALL.exeexe 07191e503c814b16b5ec5540a5d441459e8e4400930c46effe521c8070cf91d5n/a 
2025-12-02groupware_11.80.93.2_INSTALL.exeexe c80842e84b88015fef25c69ec9223e59172abd83386b2717b2a06805700a46e6n/a 
2025-12-01groupware_11.80.93.2_INSTALL.exeexe ee2bd4c07372a56e4aa2a07eb64c6b1b99d92f8a3d53c40bf89891882eff2b5fn/a 
2025-12-01groupware_11.80.93.2_INSTALL.exeexe 2ce34579adbe0bc63ea9f7e4de8a030d1a71c4fd9a523030cb0e8aeaf776a29cn/a 
2025-12-01groupware_11.80.93.2_INSTALL.exeexe 7fe60b87e8267f54ba552b99f3c46d29d2950e152fb8dd7f6d275ec5bab22666n/a 
2025-11-30groupware_11.80.93.2_INSTALL.exeexe 2a117d99a181855d01baaa07311848ee1729c9bf36434fa81c65c7615f0acb88n/a 
2025-11-30groupware_11.80.93.2_INSTALL.exeexe 11738e6dfb4863cbc55cf90874fbd09373f21181e3b7f09a28d4df07cffc8573n/a 
2025-11-30groupware_11.80.93.2_INSTALL.exeexe 4688fc8bf45b8208402ac4818e451cad9b4bdcac22d7f1d71c2f922f001b69e4n/a 
2025-11-29groupware_11.80.93.2_INSTALL.exeexe ae15f96cdb0f6210dde4df7949f890b09af93a223a2996a9e3ea1a3a8de27dd8n/a 
2025-11-29groupware_11.80.93.2_INSTALL.exeexe 78784db9847d018448137a5569ee8f563ebd0893f61fb7d0575543e88cdd010dn/a 
2025-11-28groupware_11.80.93.2_INSTALL.exeexe d4c763b7129177af417a850e88729eef8707231068fabc8b31e68b774c8b9824n/a 
2025-11-28groupware_11.80.93.2_INSTALL.exeexe 9d4e91df6819f768ba287677caabf337f7f913a5b7e086fc1c866affaefead23n/a 
2025-11-27groupware_11.80.93.2_INSTALL.exeexe cbe059d860211b1a29839c44620b74976043c011295ec97f8253effb917db89an/a 
2025-11-27groupware_11.80.93.2_INSTALL.exeexe a4861344e338ec002b32cb390fb1e09341672b9a1b5b492ccff27d7a714e3d6an/a 
2025-11-26groupware_11.80.93.2_INSTALL.exeexe cea65a13c483d0df24ca1867c9b19b02540c16ec661c4d61f4d7d1a7713079c8n/a 
2025-11-26groupware_11.80.93.2_INSTALL.exeexe 657e471819910659f972b27aa1ce3c48a02164f8b5d7c3990abe98354f034a5bn/a 
2025-11-25groupware_11.80.93.2_INSTALL.exeexe 0455f10a63fd3fda645273838626fbdb890505bfc1ffffce21a178f7ead3574en/a 
2025-11-25groupware_11.80.93.2_INSTALL.exeexe c715c4c41f0a6be03158049e53f2d70115d605a2117a7699fcb10d5ca0014093n/a 
2025-11-25groupware_11.80.93.2_INSTALL.exeexe 71fac923d119e6b4b5f5f233eaca7313393fafde64141d388ec47bcf5a217b0cn/a 
2025-11-16groupware_11.80.93.2_INSTALL.exeexe c23250e624a2b1275511311ede6b522134d18717a131f216a26a0e1a16e86cc2Virustotal results 25.00%