URLhaus Database

You are currently viewing the URLhaus database entry for http://lostheaven.com.cn/wp-includes/ID3/Qmydsnl.dll which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2676880
URL:	http://lostheaven.com.cn/wp-includes/ID3/Qmydsnl.dll
URL Status:	Offline
Host:	lostheaven.com.cn
Date added:	2023-07-05 06:03:19 UTC
Last online:	2025-08-04 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2025-08-04 05:05:12 UTC to abuse{at}sharktech[dot]net)
Takedown time:	2 years, 1 months, 18 days, 18 hours, 8 minutes (down since 2025-08-12 00:13:04 UTC)

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-06-11	Qmydsnl.dll	txt	c0c061cbd5a7ef39ef89ef36645da27bb045c54cc1bb0dfffe96bb6e15cb9197	n/a
2025-04-18	Qmydsnl.dll	txt	48addb653f6acc232690675ccbb6663365790d2606c3179bd0b8ececfdec5c69	n/a
2024-04-08	n/a	txt	83fd5f7087496b52e3a787b95adb3c3ae08a54468ffcb441eb1cc50e466fc484	n/a
2024-03-18	n/a	txt	4b20492254f14bc065b12da521675428e43141f9261e81506d1a27a5920ed761	n/a
2024-03-17	n/a	txt	86d90bae8fc78d9584a88d2b2b6be5345f5bda637a573a5d489811dd78a96757	n/a
2024-03-17	n/a	txt	bff43d73d0bb04df416ff7f59d0f07331ff44b9b1d282fa2e76c54305c061ca9	n/a
2024-03-17	n/a	txt	98aac1e3d6f489fef5c7a2c6db8f87f394049d4ede4351935bef7466d5d07545	n/a
2024-03-16	n/a	txt	2b63ec08584c08722d44a2e21c2344c8e9c2461e9099a4434a60efa82c4ebbfb	n/a
2024-03-16	n/a	txt	8a54e7c00d00065440f01477e50706fc4b494467d48ca863a227a72b327c0d30	n/a
2024-03-16	n/a	txt	d9039b242329e9342cc073b7bef5f498419089bb342a4fe2a123ddfea3c544a3	n/a
2024-03-15	n/a	txt	12a41f72559a31796c6488604750e43a2727f14661651f4cf3b96472e4587d46	n/a
2024-03-15	n/a	txt	f87ec1180e93e5958fc14f8577b145f4edb77d76a8745ad8987119b6fda5480e	n/a
2024-03-15	n/a	txt	f5a8a090f2bf0c2bfd161af0717524a8648e939fcb2540de6f6c8cc688f8d760	n/a
2024-03-15	n/a	txt	56f8b25d7aaa46de1448c7eb373d031561051dd0ad91edf52f28527eb0050286	n/a
2024-03-15	n/a	txt	a9027006cdeda6cb9f08fb94bd8f79b102bd3cff3f08211a7c3d3bb55da5f92a	n/a
2024-03-15	n/a	txt	df23ee1eec05a844017eda74ac65b28a57e63d7601c92df2740e8009bbbfc048	n/a
2024-03-14	n/a	txt	f3f8fcd7beb62dd684e0c4dc7ec579bfa809bd3e7f2063110a63cf57fa3b708a	n/a
2023-07-05	n/a	txt	9fda1a4a47149d54a701560a7012c0bb77e56bafe5a2937ead15f1325155a511	5.08%