File Search Engine
  • Search
  • Syntax
  • Fields
  • API
  • 89.58.41.159 · mimikatz.exe

    /

    ·

    Yara mimikatz From Florian Roth by Benjamin DELPY (gentilkiwi)
    Download archived sample
    The password is "infected"

    SHA1: 040fbf1325d51358606b710bc3bd774c04bdb308
    SHA256: 2e8092205a2ded4b07e9d10d0ec02eba0ffcf1d370cab88c5221a749915f678a
    application/x-msdownload
    971.76KB
    2025-12-11 15:24:30 +0000 UTC

  • 89.58.41.159 · log_checksum.txt

    /

    ·

    SHA1: 59cfe664c1f716966386d757eaebaeef204464dd
    SHA256: b85a73a0a55fa967bb00c354fc0971d9fa82955437a200bf0826b72f2e5bf000
    text/plain
    612.00B
    2025-12-11 15:24:30 +0000 UTC

  • 89.58.41.159 · india_winrsTCP_grbl.exe

    /

    ·

    SHA1: 1e4391e226a261e76acdfffa04bdd75f2d65f679
    SHA256: 05fb76a09b71268dc5873c9f7160207e7c512d0f1dee822604c778838bf6c559
    application/x-msdownload
    478.50KB
    2025-12-11 15:24:30 +0000 UTC

  • 89.58.41.159 · mstage.zip

    /_9999_mstage/

    ·

    SHA1: e531bf1999b53ba48dcbc242353952c461edf76a
    SHA256: 912a70785c22ed2a844d69f902ae55ee2478b338d1f1261ea8dcbc43987aeede
    application/zip
    550.28KB
    2025-12-11 15:24:32 +0000 UTC

  • 89.58.41.159 · mstage.jpg

    /_9999_mstage/

    ·

    SHA1: 6f22e31ea8508794cf294c98d1e09ef2a7c14fa3
    SHA256: d90708837155475d984044a598ff2aa9064b13542de8568d7838737a04f4aa45
    image/jpeg
    1.06MB
    2025-12-11 15:24:32 +0000 UTC

  • 89.58.41.159 · mstage.iso

    /_9999_mstage/

    ·

    SHA1: fd79a682547eceab75a8fe688507a6b1e03af62e
    SHA256: 4dcd5fc76ab0c7521b987a3899ebe6adf382f8f1c9c0dd88213d2b4d6b11d608
    application/x-iso9660-image
    1.40MB
    2025-12-11 15:24:32 +0000 UTC

  • 89.58.41.159 · mstage.exe

    /_9999_mstage/

    ·

    SHA1: cdd89ee49a8c726ca905dfe56742e6d48a93e163
    SHA256: 8ec7101ec30f4c18b21af18360f691175adfa52a6474f88f0e15d064d0565a1d
    application/x-msdownload
    1.06MB
    2025-12-11 15:24:32 +0000 UTC

  • 89.58.41.159 · mstage.7z

    /_9999_mstage/

    ·

    SHA1: d68b9b2199b3bffb09bec479fee3d9322a002cdb
    SHA256: 6e636bc515ff2524bd39fba102378859670d9eafbe0813910981da3b6bd74270
    application/x-7z-compressed
    436.18KB
    2025-12-11 15:24:31 +0000 UTC

  • 89.58.41.159 · mimikatz-multistage.exe

    /_9999_mstage/

    ·

    Yara mimikatz From Florian Roth by Benjamin DELPY (gentilkiwi)
    Download archived sample
    The password is "infected"

    SHA1: e08016485310896a4534d870d70cdfce02e5c300
    SHA256: 505d1cd0b9caf7efa10ed2076c0042ae04645aa1299baacc5033a7daef0220b8
    application/x-msdownload
    1.41MB
    2025-12-11 15:24:31 +0000 UTC

  • 89.58.41.159 · test-payload-mod.jpg

    /_8888_tests/

    ·

    SHA1: b6df35339003cc59d8a2f3e55da2fd4a2ae22ace
    SHA256: ecd9c8029d44866d905cc8fd9b33404e46f060ab5f8dcf34d74c50da503c4dc5
    image/jpeg
    135.99KB
    2025-12-11 15:24:31 +0000 UTC

  • 89.58.41.159 · test-image_1.zip

    /_8888_tests/

    ·

    SHA1: 9cc0556c254f41259706f584ad64f7ce70b779c0
    SHA256: 93e0b2b89aaac6898ca851c3d678364bed81e6f9bde2e65c5192106e2fd78300
    application/zip
    100.92KB
    2025-12-11 15:24:31 +0000 UTC

  • 89.58.41.159 · reverse-shell-sender-x86_64-windows(1).exe

    /_8888_tests/

    ·

    SHA1: 3a6dad138b17d94dad49e4108627de7369b32961
    SHA256: 2af174e42c2eace1101b32f775dbc2528a6abb40077f1db79a5864ca4ae4ab60
    application/x-msdownload
    78.50KB
    2025-12-11 15:24:31 +0000 UTC

  • 89.58.41.159 · reverse-shell-sender-x86_64-linux(1)

    /_8888_tests/

    ·

    SHA1: caee86f51beaad0056c5762d0e4d52f30ff4a5ac
    SHA256: 5a8db851eb4d8f6fbae0e5d718603bf134dd89aaecd57d72bf4f419c59df65ad
    75.70KB
    2025-12-11 15:24:31 +0000 UTC

  • 89.58.41.159 · reverse-shell-sender-aarch64-macos

    /_8888_tests/

    ·

    SHA1: 2295a081aa9935ad49a2455cbff8530d630c48a1
    SHA256: e97503369e59332d2cf609a857d2669682924a473e98bbdaafba587f886ceb35
    111.66KB
    2025-12-11 15:24:30 +0000 UTC

  • 89.58.41.159 · notepad-mod.jpg

    /_8888_tests/

    ·

    SHA1: 393b007f77db645fb463ca662c1ef157e0ca639e
    SHA256: 6e119143c5ac3c960e4a16cae18325ac950dd592c978e0e1118cc8d142b95177
    image/jpeg
    196.99KB
    2025-12-11 15:24:30 +0000 UTC

  • 89.58.41.159 · winPEASany_ofs.exe

    /9_WinPEAS/

    ·

    Yara INDICATOR_EXE_Packed_Dotfuscator From AlienVault by ditekSHen
    Download archived sample
    The password is "infected"

    SHA1: f5c4b4c45b9b40b75e58827104a7786912a322c0
    SHA256: bdbfb7a35cf48dbaf1de8e6577fd6148a764860cf5eef8083ad1dddc2daf63b7
    application/x-msdownload
    1.75MB
    2025-12-11 15:24:30 +0000 UTC

  • 89.58.41.159 · winPEAS_nonstop.bat

    /9_WinPEAS/

    ·

    SHA1: 02ea5698321470bcda82bc878255a1d1f5b0d2a0
    SHA256: 3bf383b2477a60972be441cab088bdc5ac21c798db17d0abdc718292e71ac248
    application/x-msdownload
    34.28KB
    2025-12-11 15:24:30 +0000 UTC

  • 89.58.41.159 · peas.zip

    /9_WinPEAS/

    ·

    Yara Disable_Defender From AbuseCH by iam-py-test
    Yara HKTL_NET_GUID_privilege_escalation_awesome_scripts_suite From Florian Roth by Arnim Rupp (https://github.com/ruppde)
    Yara INDICATOR_EXE_Packed_Dotfuscator From AlienVault by ditekSHen
    Download archived sample
    The password is "infected"

    SHA1: 35b8de3bcfeac972ca9d3eeb5d20c281e2aea213
    SHA256: c1f5cc914d898b0c4714d9be6680227a2aa22c32177ded4ab8ad56fdcab420b9
    application/zip
    1.32MB
    2025-12-11 15:24:29 +0000 UTC

  • 89.58.41.159 · peas.iso

    /9_WinPEAS/

    ·

    SHA1: ee77a45d8083e926c3630272611c2b4f90372c26
    SHA256: 7ad642b20fe276070d1ff77bc55142508ab1cf5b5ea910a853ac58de6f37732f
    application/x-iso9660-image
    1.84MB
    2025-12-11 15:24:29 +0000 UTC

  • 89.58.41.159 · peas.7z

    /9_WinPEAS/

    ·

    SHA1: 82e2eb2b114d95210548015a6a1c6f50f4075dc5
    SHA256: 9da0d429efaebb1326dc012034c836edd2debfce080c9b52089e7bb7260186e1
    application/x-7z-compressed
    517.27KB
    2025-12-11 15:24:29 +0000 UTC