URLhaus Database

You are currently viewing the URLhaus database entry for http://92.63.197.48/o.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:57565
URL:http://92.63.197.48/o.exe
URL Status:Offline
Host:92.63.197.48
Date added:2018-09-18 18:36:15 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Unknown
SURBL:Not listed
Reporter:@zbetcheckin
Abuse complaint sent (?): Yes (2018-09-18 22:37:14 UTC to hvfopserver{at}protonmail[dot]com)
Takedown time:5 months, 12 days, 0 hours, 27 minutes Bad
Tags:CoinMiner exe GandCrab Ransomware.GandCrab Smoke Loader

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-25n/aexee5b65cd761ff26171d49f535dac59efae0a6501dae18c675a0bfacc76256f1f5n/a
2019-02-24n/aexe4ec5ac282163226d3a52949bdbeca7fac3e523108761c2fc81cd943ce59c994eVirustotal results 32 / 69 (46.38)
2019-02-20n/aexe065586040168b8b5e14410780992483bab63a30f14451ffcf8c5aabbe98ad31an/aCoinMiner
2019-02-20n/aexece2bcab5b5c92b46ade212ffbcddb43ccf63a753f2a15d72083af3b7752048a6n/aRansomware.GandCrab
2019-02-18n/aexe6f4ea46cd37fdd4009d4892a68aed3184788017b9ae54eb9172db8cb21927b0bn/a
2019-02-13n/aexe11182a25c4eef1e9567859e893a9464171c21cc0456ac96236422ccb1f6213e1n/aCoinMiner
2019-02-13n/aexe11182a25c4eef1e9567859e893a9464171c21cc0456ac96236422ccb1f6213e1n/aCoinMiner
2019-02-12n/aexe72f7c16c2db8621b62e64a42b017b7892b69a8ec5f29dc93106e7581688a42d6n/aCoinMiner
2019-02-11n/aexe395ee0641c186659b0b95d9515fbc5aaa39c3825aadee9c2bfdd8bc45e00a62cn/aCoinMiner
2019-02-10n/aexefdf1aed640293c7fa25d084ffdae15623a1f38acfb0a7ee61a51f6ef0108307bn/aCoinMiner
2019-02-07n/aexe453375371a20efae3ac33601b2876e19d00b0d9cc5f77ba137c596fcbc872decVirustotal results 11 / 69 (15.94)Ransomware.GandCrab
2018-11-21n/aexef8fa19c9a846bdae61ea183f588b7bd2af887a495ec8214bb9e93b096f05059bVirustotal results 27 / 68 (39.71)
2018-11-18n/aexe47b306c80cf27a773d252757397fe9ec0a9571666044276166ede5b5958489ffn/aRansomware.GandCrab
2018-11-17n/aexea8c052327c0064de6ad062e29171be149ad2f0a7b7f4688059b11912c41b2e28n/aRansomware.GandCrab
2018-11-17n/aexe548e1df5a9b81d468d627fdc135d9001913f57f2999ec0b3cbfabc348f4faa22Virustotal results 28 / 68 (41.18)Ransomware.GandCrab
2018-11-16n/aexe29a0af328b686b4850706e82e638ce64810870b9d97331b3e6b26fa4e7e94581Virustotal results 12 / 67 (17.91)
2018-11-16n/aexed5adb03dd26c0e264bd1af58e889cd373136dce7202406e063ecb26785b3fe9dn/a
2018-11-15n/aexe8e16bff3e9ffe13fcc4d71891ac2360642a11ed248e77bf9df37ec8fcb4f5bb3n/a
2018-11-15n/aexe45564cea271036f3a1b422c9d1706a06d4ea50067e642f5925365b95f30ce2e0Virustotal results 32 / 68 (47.06)
2018-11-15n/aexecdacad249220c478c0953d6b3bfc338fa8d82d5bd7e6c3618f6141487549527cn/a
2018-11-14n/aexe7e5a30abc6deff1ff15e54352966fb9947ebf1b1687f6f26177a4f8967ba97ean/aCoinMiner
2018-11-13n/aexe91eed4446b67a232489e454afd3d389947e9c2ab3ddb8c8a1fe89ea5d91fac17n/a
2018-11-04n/aexea3f13a940ae3f6d0a8e94c8ab203005cd737a899962425f1600a4bdf30877375n/a
2018-11-04n/aexe1f44936dc6290ca95870ea4aa7f67d371bb53742a3aa5c632f56e7c9adfb39abn/a
2018-11-04n/aexeb6bdb57720e1abf7a5b36b7058173bf67704e6bbf42391e261edbac6064aa484n/a
2018-11-02n/aexed186f0c183c719e7cb5e338da7b2ff7ad8b9a7446e6355192b6ccb7300b25696n/a
2018-11-02n/aexe30492f5daeea5e0e7f447de290066a6a2bce72a0fc358966ba8d71d2260645ecn/a
2018-10-31n/aexe96ff355f3e5ff0f941d4b1fa21be6f09a0e0c89a9803d2bbd10d8c046ba9b73cn/a
2018-10-30n/aexe83a75d566b3545381c891d427240b803cfb84162352b20ac1f30cbe821465072n/a
2018-10-30n/aexe29ece45d3dfcf0dbff793ab17208c200cc9becb8d46edfd0f7e13860dee2109dn/a
2018-10-29n/aexef952dc34f2692429770fc5953d6aa9d10570f4b03338a8b2adec48d398da88can/a
2018-10-29n/aexed05828b569c0f8b5486c07a7874b4e274d11a01ced5932514188ef98bfff6ceeVirustotal results 31 / 68 (45.59)
2018-10-26n/aexe5ac7b18d5fdadbd865cbb2b8730d057fe177e876147b8f0b51094e64dac5be76n/a
2018-10-26n/aexeba9af4a25b32402f64a7b2c2a6e3ce36ee29eb1790186be1ab83bf60841e1d52Virustotal results 47 / 67 (70.15)
2018-10-25n/aexea96b4485092cd56e6ff7362be21dfc9469f6159322fdd91bc9b724df505e19d9n/a
2018-10-25n/aexee4c7e11b6418915c6b1d5d955039fe1948956914bf4541481436d2eaad3b904bVirustotal results 45 / 68 (66.18)Ransomware.GandCrab
2018-10-25n/aexe5ebf11052803eab2accd50cce6d78fe40fb23a3cfa39ee29b09f8e8872577717Virustotal results 30 / 68 (44.12)CoinMiner
2018-10-23n/aexe3e82fae172bbe395942bd25b5cea0b173ff810574e6a1b600a63c6df2ebd101cVirustotal results 32 / 68 (47.06)
2018-10-13n/aexe76d4e6ec34b4aef26bc7c3cc3ca438fdc142b82809729756cf35a20bd956c618Virustotal results 27 / 67 (40.30)
2018-10-09n/aexe9a8f6298d68457bd148e5770b9650b439c2ada730cdfeedf38c08cc35c592578Virustotal results 44 / 69 (63.77)Ransomware.GandCrab
2018-10-07n/aexe4aa07ade401818f2c8b26fda79fb7f5aa5f4a525fa0504e128a0bb88ee65fd46Virustotal results 17 / 69 (24.64)
2018-09-28n/aexe0759d0008278b0a1878ff0834a7a4ae10097efd3a5ec31ad8b628ec1fe8f100fn/aSmoke Loader
2018-09-28n/aexe623f558a50bb665a15f50121d0b7a8b54d90108c35e2787f2576016f3fe74dd8Virustotal results 43 / 65 (66.15)Ransomware.GandCrab
2018-09-27n/aexe9c2d5308393e2c920405530e3960643f1cdafc8efd8f180ff3e8e98d15e3ce14n/a
2018-09-27n/aexee477329f934fd4e842eadfc8fa78f1f8e3ca8c2bbfb026f06891e75f903a2e19n/a
2018-09-25n/aexea99d58e05877f37749c72ddf0f6a5ed0f725ca46bc1c4ddaec653f855aa26dbfn/a
2018-09-25n/aexe51264e7038f8b069daad19c8809d4d1d9f1a50ec9c0047ae814c8fc44a09c060n/a
2018-09-21n/aexe3cb3a1459ce4083235f6b542f40215e6cadeee21bf2f2a329e2963ffc7fe2f47Virustotal results 53 / 69 (76.81)Ransomware.GandCrab
2018-09-18n/aexea056ffc21630fc6b2d47c96f212b33d58635a758a570fd4bd80a90cfdca3c93dVirustotal results 32 / 67 (47.76)