URLhaus Database

You are currently viewing the URLhaus database entry for http://hans.uniformeslaamistad.com/ldms/956d73b7f041.exe#default15st which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3208779
URL: http://hans.uniformeslaamistad.com/ldms/956d73b7f041.exe#default15st
URL Status:Offline
Host: hans.uniformeslaamistad.com
Date added:2024-10-03 22:28:06 UTC
Last online:2024-10-14 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Bitsight
Abuse complaint sent (?): Yes (2024-10-03 22:29:08 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:10 days, 21 hours, 16 minutes Bad (down since 2024-10-14 19:45:51 UTC)
Tags:dropped-by-PrivateLoader LummaStealer Stealc Vidar link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-10-09n/aexe 50ceb67e5a65b823aae5f46619a22c70ee8bd3a9629cae0f2057dc910a833d06n/a 
2024-10-09n/aexe 504397645b2efd38f335bbbcec0c5957e25ab89fc984994d3f2017411bd2ff53n/a 
2024-10-08n/aexe 718de8066fc41249c9dc9cd893e499606fc96bc344e8fa5d86efe8b6ca6742d6n/a 
2024-10-08n/aexe 2b031c700c747233c5248cadc3cd48e4ccb7f81935d97277c08c6e9321c995abn/a 
2024-10-08n/aexe e8f985d8eec65a69f0ecd34cff68f4d337103fc972e0d8a008fb323e4ace74bdn/a 
2024-10-08n/aexe 7eed9d234518572764708ace2bbb00a35832ac5ea8c787b5c3a5840c2e2d70a2n/a 
2024-10-08n/aexe e9775dd0baddb14b93f59a0c03db28bf930519e91120ba44d3317ef817cb3220n/a LummaStealer
2024-10-08n/aexe 2b43d94e4d391723efff6a967a29d43fc27a7eb68c5eb9a3395b0f21ac3168b7n/a LummaStealer
2024-10-08n/aexe cd4b514ef6c279f24ea49822d8c7b668f5e62f3d01d901ca9ec918f94187e49an/a LummaStealer
2024-10-07n/aexe f1f1e532ccc327d4f648bc4c249fbad7056414b137e036bc4011f1583cc5d1f6Virustotal results 40.85% LummaStealer
2024-10-07n/aexe 91b47658a9671c508493339a0cd8c5bef29fde95e1ec8b89bdcda57679cfbae3n/a LummaStealer
2024-10-07n/aexe bb139f4942ff485c392225b82f7124811d640e6d69eb41ed9fea15fda8b0a177n/a LummaStealer
2024-10-07n/aexe 317a0b9ed2e3f33dd13ddb5efdf8dadeb9ceb2ef9ea9dc097240fcf67a91c6dfn/a LummaStealer
2024-10-07n/aexe 0fe5e69e79b98b1f3eb136ef11c90d9033241c59c4eda9dd0f8332d9253aca98n/a LummaStealer
2024-10-07n/aexe 59407e3678e29f0429e8896430f71acebd85d39c3e3c0738fcbf057abaa1e06eVirustotal results 47.22% Stealc
2024-10-07n/aexe 457312720154afb20a73932cc3ad3e0e852eb36ca03c26aa5fc3fb8b3e1d6135n/a Stealc
2024-10-07n/aexe 5106e8ba1e4f7729549d91cccd7bf7b1ab785d9d3fab62bb8b6a6dc86145b8ccn/a Stealc
2024-10-07n/aexe 20cba003b8b770bd17db2e8be69a6db4281c220e02bd97a06b87d6ab595532f1n/a Stealc
2024-10-07n/aexe 97589cdb752317b0a8001b6faf0fceb68acd34c561b9a02b44b77cd3592e638cn/aStealc
2024-10-06n/aexe b5b97529454b73559eb70e9ce50a61456192b70e8baf1844cb783e79bdfc276en/a Stealc
2024-10-06n/aexe 07f9c54aeb287f13a681ce4213f3ae94845535a3c514847fbb387ea35dcb2170n/a Stealc
2024-10-06n/aexe 0e6938f21f87eada1b64ffe5761ffbf00a483bec17fd5e294f799bab4eca8628n/a Stealc
2024-10-06n/aexe e4afbd3e968175039bfe8b2d618792630c7b68c3620b75a16272fd47a74ffc75n/a Stealc
2024-10-06n/aexe b986a005dc342782efd295081e8facc359647bf5f37a772294af3d65be47b7a6n/aVidar
2024-10-06n/aexe 1b3e24d043d8f35fa8d6bebe5f9753a4dd5b7e6e4662d0d2173fa59b6acd2992n/a Vidar
2024-10-06n/aexe 944acbc39f93176bc335b786cc3cbec503f3f8459b450c31d7fea60122370f56Virustotal results 27.14% Vidar
2024-10-06n/aexe 274c3d9dc0c770a32104029b5148bbaa7b3722fb7e9f1cf154adbe748367e794n/a Vidar
2024-10-06n/aexe 6346b83cd3dfd7e28d36515e79e386a1c8c23823f2f304beba730be019d153f7n/a Vidar
2024-10-06n/aexe 0451756282195cdb92612e8f1858aa9cbe9a25421b863bc1bb1412c6e3885770n/a Vidar
2024-10-05n/aexe 1c319d38ab446ece4205d8901b5934ece998bde1f3a5c80b063956484375627fn/a Vidar
2024-10-05n/aexe 0a079c9cbb05da8ed41aac2392d805c9ed0333f20f0de13743c721bd6b5a2cf3Virustotal results 26.39% Vidar
2024-10-05n/aexe 71257e25769c627bf88306897b0c3d6227455b74dffc5ba77ef00cbfcf152d55Virustotal results 26.39% Vidar
2024-10-05n/aexe cea9fd46d7c1ed0a01a242d8a3e5315d62de17867cab7e76caf8ba777ba843c2n/a Vidar
2024-10-05n/aexe 1d3a532c196533ba8efcaa02cf63e819b1c9743fb5c7d530efcde7700b89fcc5n/a Vidar
2024-10-05n/aexe 90bf64d289a0b590944ff3c6cdf631bc12c5f72204b3ef24f2b9b68cde3a7b9en/a Vidar
2024-10-05n/aexe 95b7e869a1c191de66a2a0eb6febe297b0b96a7cf61758eced70b33de75e36d3n/a Vidar
2024-10-05n/aexe 46dbcfb1bbe46ccc2480f23d54dde73bf7d359882b6a9320c28d983d166b28d6n/a Vidar
2024-10-05n/aexe b451f3885cedc18049a6fd23d372e65cc2be714024ee050d5417b9e29706415an/a Vidar
2024-10-05n/aexe 0a200bbfa0e482e4c81e27e97fe8c2235f447c9eee93894d363cef2f81d74638n/a Vidar
2024-10-04n/aexe 939bc1a5ea09b2b5f5a1713798e350dd215ec8a31b0b5add53e28ec860d94a01n/a Vidar
2024-10-04n/aexe 98e51c54396ae8b8ba8fa7448693683be5232b6895c52d2a653be77c87d67b87n/a Vidar
2024-10-04n/aexe 0fe46543ff4f650cc9b3091a65ab697171391d1b2f9a797bf778db993d47cf69n/a Vidar
2024-10-04n/aexe 0db238ecc6f027d553c26085977840865707bd24d2656656381d84c54e456206n/aStealc
2024-10-04n/aexe 789518691c359e3504ebe047c801b155eeb3189e2fdfcd5e82b0cc88bb460d7fn/a Vidar
2024-10-04n/aexe 49d241974f8a5b61a533825b45b5bb1885b1be3250309156bf6b0cef8d8b5699Virustotal results 29.17% Vidar
2024-10-04n/aexe 0fe9f6d6baea288f269334c0b795cd240e7ad5c01c34eb26a1f00c77454f9e6bn/a Vidar
2024-10-04n/aexe 69c8f0908a338352f26622867a7d74204e2586465c0d0616fefd00df77cdd813n/a 
2024-10-04n/aexe d40ca89b254438f792b11224d1380e82ca8d486b88be65c580678fe25bbbcc79n/a 
2024-10-04n/aexe ec225a238d212d5460fa6f6fa40099a21a17cccec6fe33501c66ae3c24c54a3an/a 
2024-10-04n/aexe 7342f019735ec4bcc40d84520ac80d56c8f8f4aabf792cee06e63d5b368c419bn/a 
2024-10-03n/aexe d498d07e1ddb734daef7968a218620d9251d480b0f10f1838365bfbd3387aba6n/aStealc