URLhaus Database

You are currently viewing the URLhaus database entry for https://mussangroup.com/wp-content/images/pic5.jpg which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3056224
URL:	https://mussangroup.com/wp-content/images/pic5.jpg
URL Status:	Offline
Host:	mussangroup.com
Date added:	2024-07-21 10:34:08 UTC
Last online:	2024-08-25 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2024-07-21 10:35:08 UTC to info{at}veridyen[dot]com)
Takedown time:	1 month, 5 days, 8 hours, 11 minutes (down since 2024-08-25 18:46:43 UTC)
Tags:	64 dcrat exe LummaStealer N-W0rm opendir povertystealer VenomRAT

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-08-16	n/a	exe	7c4b4f1a1f108f68b76b671c61733f392114bbff28813279b67b63c5fe3939b9	n/a
2024-08-16	n/a	exe	33dc6f89d505ad4b2df91ba98bff96bb2767e12eac2ba716246615c83dffbde5	34.33%	PovertyStealer
2024-08-14	n/a	exe	db97cda7ff3499cd07525da8e7b9fac658abc66114e9a6e0f4ef261bff07b72d	n/a
2024-08-11	n/a	exe	4127c9695c9aa08cf6e36097b5666c0305768372a07d4e607b7c4eee01bafe52	5.77%
2024-08-10	n/a	exe	ad10046a15cc39d5cd5189866042caddaf8c4db6622523b7b4a54436f0682655	n/a	LummaStealer
2024-08-06	n/a	exe	e4ff7372f55485d5d9dcf1849985eb7e79ccc1945b71c7293dc0b2b5a2034606	21.62%	VenomRAT
2024-08-03	n/a	exe	f1530d12529d8b0ed379457feee1a7cfc223596f455ea0d0771f414699bc88f5	n/a
2024-07-31	n/a	exe	389302b364b2896c0df6c8f5f1476a1f1c0665f0279ad82c239cc1530edc33b1	n/a
2024-07-30	n/a	exe	e3c4d8b4ac89054d7c9cf1a5d70f3007834760b9291a87e03314a388315d441f	n/a
2024-07-29	n/a	exe	8b524dddec188461ed552383b167ec674a95daf5555e649f692c55bbeaf932c1	n/a	LummaStealer
2024-07-29	n/a	exe	69cb12f4e954ea46ddd099260d52b12d72d7cdd4b5c38da1719446d03f0a4e87	n/a
2024-07-29	n/a	exe	bd9f62e2a72bededade84324b78f2b44125eb216eca9eb85e8a2ed60558a28a2	n/a	N-W0rm
2024-07-28	n/a	exe	b9f8f5c4ed63c98568d9e4d4c943ca3784bd4d48c3dac2c72bb7b93c5ef3f732	10.67%
2024-07-27	n/a	exe	cb6ac725a5ae3120ec9109fd0580c316b175c0f4be36c7b7f2799cca0b21451b	n/a
2024-07-27	n/a	exe	1309c8993adeb587e629615eb6838a280f0a1faa6ac74fdb11b80d5bddc1c94f	n/a
2024-07-25	n/a	exe	e9ce3ba16ae990857b4db0f1ba428bcb59871eea5096041154dd4f7a44128aba	n/a	LummaStealer
2024-07-25	n/a	exe	47ed5d5f80db1367cc17a25744caf26e25527079acb04d8794f521e31935a08c	32.26%
2024-07-21	n/a	exe	8d6895d17c739f660f438cde260fb536ba768dfd35e8c63138b0a2702bf24be0	35.62%	DCRat