URLhaus Database

You are currently viewing the URLhaus database entry for http://152.32.169.68/02.08.2022.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3717315
URL: http://152.32.169.68/02.08.2022.exe
URL Status:Offline
Host: 152.32.169.68
Date added:2025-11-26 16:58:13 UTC
Last online:2025-12-22 17:XX:XX UTC
Threat:Malware download Malware download
Reporter: DaveLikesMalwre
Abuse complaint sent (?): Yes (2025-11-26 16:59:31 UTC to hegui{at}ucloud[dot]cn)
Takedown time:26 days, 0 hours, 45 minutes Bad (down since 2025-12-22 17:45:30 UTC)
Tags:censys CobaltStrike link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-12-2202.08.2022.exeunknown d7d00cd7cea92fa2c374d0cbf61feb04528e07f4eee489ec9e37c4c92cdb61f7n/a 
2025-12-2002.08.2022.exeunknown 64dbbf19dd5a5eafbe317a5a500079f9752f9bca2d48d4a4ad3ebe490238d000n/a 
2025-12-1602.08.2022.exeunknown 10aa21cef5e92c3898dca98e8859d780e5c637e2f1d1de614e1622d06954e72dn/a 
2025-12-1002.08.2022.exeunknown 21ccc8408c232df46791c20bc54e59910e42d08bfc3c46c6ce5a2744f5986f28n/a 
2025-12-0402.08.2022.exeunknown 37e7e4beb171ee3f64ae26d303b4c69b1b7f6fea7bbb6ee013ede54a4588ac9cn/a 
2025-12-0402.08.2022.exeunknown 75bea1eba2b69311947c484dcf2c97b72054c26281aaed355c07b7e0713a024bn/a 
2025-12-0402.08.2022.exeunknown a8b4134b06e5871ce2aea16425dfda1b27f491f1dde65405489e1c19cf420757n/a 
2025-11-2702.08.2022.exeunknown 459def63202668236ea3d380da3c4e6fa4baad844fae3ef9c1650a90cea2a9e2n/a 
2025-11-2602.08.2022.exeunknown 3a50b74fef4e7b22fda6aa139b19951db592f84e8ccca3facd27f57ba36c39cbn/a