URLhaus Database

You are currently viewing the URLhaus database entry for http://mussangroup.com/wp-content/images/pic5.jpg which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3084901
URL: http://mussangroup.com/wp-content/images/pic5.jpg
URL Status:Offline
Host: mussangroup.com
Date added:2024-08-02 12:54:08 UTC
Last online:2024-08-25 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: abus3reports
Abuse complaint sent (?): Yes (2024-08-02 12:55:11 UTC to info{at}veridyen[dot]com)
Takedown time:23 days, 5 hours, 33 minutes Bad (down since 2024-08-25 18:28:21 UTC)
Tags:jpg LummaStealer VenomRAT

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-08-16n/aexe 7c4b4f1a1f108f68b76b671c61733f392114bbff28813279b67b63c5fe3939b9Virustotal results 16.22% 
2024-08-14n/aexe db97cda7ff3499cd07525da8e7b9fac658abc66114e9a6e0f4ef261bff07b72dn/a 
2024-08-11n/aexe 4127c9695c9aa08cf6e36097b5666c0305768372a07d4e607b7c4eee01bafe52Virustotal results 5.77% 
2024-08-11n/aexe ad10046a15cc39d5cd5189866042caddaf8c4db6622523b7b4a54436f0682655Virustotal results 29.73% LummaStealer
2024-08-06n/aexe e4ff7372f55485d5d9dcf1849985eb7e79ccc1945b71c7293dc0b2b5a2034606Virustotal results 21.62% VenomRAT
2024-08-03n/aexe f1530d12529d8b0ed379457feee1a7cfc223596f455ea0d0771f414699bc88f5n/a 
2024-08-02n/aexe 389302b364b2896c0df6c8f5f1476a1f1c0665f0279ad82c239cc1530edc33b1Virustotal results 64.86%