URLhaus Database

You are currently viewing the URLhaus database entry for http://194.5.99.229:4560/press1.msi which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:66528
URL: http://194.5.99.229:4560/press1.msi
URL Status:Offline
Host: 194.5.99.229
Date added:2018-10-10 08:13:03 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Reporter:@abuse_ch
Abuse complaint sent (?): Yes (2018-10-10 08:14:03 UTC to abuse{at}kvsolutions[dot]nl)
Takedown time:4 days, 17 hours, 4 minutes Bad (down since 2018-10-15 01:18:41 UTC)
Tags:exe

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-10-12n/adoc 8c920ac0e731cefd85d4f6fc506214806dfe404d64e21a25a37dea476cc6e04an/a
2018-10-11n/adoc 9d924743e027f70e175840fe1852dedaa0b81e037e9df650b59a30d3d238148an/a
2018-10-10n/adoc db29ce48e7117ba2416baedc51d445407bf9e110ab6479d398e5b4eb9d8871b5n/a