URLhaus Database

You are currently viewing the URLhaus database entry for http://147.45.44.104/malesa/66d1b7f7f3765_Front.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3136178
URL: http://147.45.44.104/malesa/66d1b7f7f3765_Front.exe
URL Status:Offline
Host: 147.45.44.104
Date added:2024-08-30 19:45:16 UTC
Last online:2024-10-22 16:XX:XX UTC
Threat:Malware download Malware download
Reporter: Bitsight
Abuse complaint sent (?): Yes (2024-08-30 19:46:08 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:1 month, 22 days, 20 hours, 45 minutes Bad (down since 2024-10-22 16:31:17 UTC)
Tags:dropped-by-PrivateLoader exe LummaStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-10-16n/aexe 5fbf39ea91b610b0b05ff73f372e67638ce3cdad687140804449bd847f3ea14bn/a 
2024-10-13n/aexe 8b68ebab271e1dbc57d8ed5aae0740207fbb016cad5e6735ed41ce6c30a0de66n/a 
2024-10-06n/aexe 90edc1463894f7b97ce661b24bff4db9414b32f92113b79ef76f15d2aea37f0fn/a
2024-10-05n/aexe b480cbc75e7eed6dd05cc0bda38e825ace9e02f14480cf94643a5bbad8191707n/a 
2024-10-02n/aexe 3dea8b485fd130596beaf0cf71ee85146874473ffb4e3774065d57457db6b736n/a 
2024-09-30n/aexe d513b9f19721811049359b0985b92f511d6636055892b26c460a407e46acd68dn/a 
2024-09-26n/aexe 2891ce21509db4d4da955cad92bfb570614e4336be8ea5b23d6514125f1097bfn/a
2024-09-23n/aexe d9d131aa2975d50a799336f85999e5b7eb9dc3badd6b09dc30611c00a1d96167n/a
2024-09-21n/aexe 5fe0fec9764b4c085c44faafc7db177a1f96d002985d01f13836132f68327eb9n/a 
2024-09-20n/aexe d09c1316b0fd2be99021cd1ed9da933299221da68714c10e406f660976df753en/a 
2024-09-14n/aexe c6f12c484a2ec05fd3b89b88ffd89bb0a228b647d43b191b5f5edc193c3348e4n/a 
2024-08-30n/aexe afa3196b3c2d0cc7bc921d98d60409d043f7c93cb760c30dbd691a20fa4b1e71Virustotal results 15.07%LummaStealer