http://host-file-host6.com/

https://cdn.discordapp.com/attachments/1069223617117814787/1069223713129635970/asdasdb.exe

http://140.99.221.199/sp.exe -> Binary Themida Packed and evades Virtual Box via ACPI registry values and SandBox via SystemBiosVersion and VideoBiosVersion

http://kingpirate.ru/tmp/

https://cdn.discordapp.com/attachments/1082332577060356128/1087147141560012851/635965506.exe?raw

http://respekt5568.com/downloads/toolspub1.exe

https://cdn.discordapp.com/attachments/1091449028107051142/1094520407274569738/bildak.exe

http://colisumy.com/dl/build.exe

http://potunulit.org/

https://speedlab.com.eg/tmp/index.php -> SmokeLoader pub1 

http://45.9.74.80/wall.exe -> Amadey (C2: 45.9.74.80/0bjdn2Z/index.php ) + Fabookie (C2s: http://us.imgjeoigaa.com/sts/imagc.jpg + 
http://as.imgjeoigaa.com/check/safe) + XMRig (Pool: xmr-eu2.nanopool.org)

http://colisumy.com/dl/buildz.exe

https://cdn.discordapp.com/attachments/920726397322928168/1079835676448669768/qwfqwf.exe

https://nftsmean.com/pro2.exe

https://cdn.discordapp.com/attachments/1111985588615249960/1113502455964110848/54656464.exe