URLhaus Database

You are currently viewing the URLhaus database entry for http://hans.uniformeslaamistad.com/ldms/f2e7fcb20146.exe#sp_sl which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3208780
URL:	http://hans.uniformeslaamistad.com/ldms/f2e7fcb20146.exe#sp_sl
URL Status:	Offline
Host:	hans.uniformeslaamistad.com
Date added:	2024-10-03 22:28:06 UTC
Last online:	2024-10-14 19:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Bitsight
Abuse complaint sent (?):	Yes (2024-10-03 22:29:08 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:	10 days, 20 hours, 32 minutes (down since 2024-10-14 19:01:32 UTC)
Tags:	dropped-by-PrivateLoader LummaStealer Stealc Vidar

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-10-09	n/a	exe	ddf3c590d0cd0bf3f871c5baa3a84e14428cecf3a929fd2c40d483e3252d45ff	n/a	Stealc
2024-10-09	n/a	exe	20d347c984cc29d7bc7de25c5170e7e7d0ce69636bc21bfbc06f6fbe9713c053	n/a
2024-10-08	n/a	exe	bd348c569e04324df5485115285b645ac2211584d44a4817f4b5a47cf7c03516	n/a
2024-10-08	n/a	exe	52bfe75fc136a58a03223278f4b531bf57eab544156c73236e49e8150fab2631	n/a
2024-10-08	n/a	exe	48c1073f759732f8f5618c041fc702b6ab0c55aa2470710587ff98237ae801dc	n/a
2024-10-08	n/a	exe	59e46c48659184ef6d565efd96ac1941d524eee0cb4948d444fdef165a4c8b1b	n/a
2024-10-08	n/a	exe	b0610ae89d41ffe5692ab5e3c42dcb76a93c09d3e9c499dbc7076a2770d3dedc	n/a
2024-10-08	n/a	exe	d4e84d52e2c97c91c9b773072de7570d61c05f9da81638447f85750141581d44	n/a	LummaStealer
2024-10-08	n/a	exe	b387b9e0ac7d941eebd0dd0c2d529aa987612b522ae79d23de989d0180b960ea	n/a	LummaStealer
2024-10-08	n/a	exe	113ad884fd67dda3a7bdc728146bb9229e1ce290e3edf03f2e2ed82f4d5e950c	n/a	LummaStealer
2024-10-08	n/a	exe	f721c42b15a8ca45724567536c76531f6fab4086b0e9b587b9c630eeda81df5b	n/a	LummaStealer
2024-10-08	n/a	exe	0d0973c018dcd19f8636feb053b4fdb94efd4021ecc16d1461ce60dfaf617cf9	n/a	LummaStealer
2024-10-08	n/a	exe	e274d51ea7826fd0eb19f2b12fdf5f6baa720d599229ddf9aac7e802a059a4e6	n/a	LummaStealer
2024-10-07	n/a	exe	b0b01f4549f8edd1419964f03e4bb3d5f2f4a182e95cf35b46c36bb31cdb83e2	n/a	LummaStealer
2024-10-07	n/a	exe	eb2f1a0c7103a84dcaca730f58221dc73bffa51190711e484f6a0bce8720526d	41.67%	LummaStealer
2024-10-07	n/a	exe	fde872c02c049b7b02d8dfa2d694fba47b8d300001c6cf0ec83f11634a7256dd	40.85%	Stealc
2024-10-07	n/a	exe	f45d355c1594350d8619dfccb3ba2c035c23b1f5e443bb6df18523d1517781b0	n/a	LummaStealer
2024-10-07	n/a	exe	ee2170d15c02cdd9204051cfad256a3b84ed52cd215b1c35f86658860b2fb25c	n/a	Stealc
2024-10-07	n/a	exe	58199657faf3cad7e7de43b8e6ee3f5913db6035ee653ff135d104c9a8c4bb66	n/a	Stealc
2024-10-07	n/a	exe	76c8e7a3919d8f2e41f6c1f5dbb03b481d8c8541f8a063847a6308c034d1014f	n/a	Stealc
2024-10-07	n/a	exe	f2c602fbe5b5fd1aeeec123d1d0ee554d7b6ab98501ade7202d6b418f6cb1017	n/a	Stealc
2024-10-07	n/a	exe	e9572daa16680342af2236edf6a7e52ef00cabd5b5ca386c7bda206f3f7c5495	n/a	Stealc
2024-10-06	n/a	exe	5a95cd75410b2a203d21a676f1db25f5ace9a067cf179208d35d5503e40ae0ef	n/a	Stealc
2024-10-06	n/a	exe	d931557d506a066b96d5ef58d4e4149afac368f75ac2305e86c7541e03a68ed1	n/a	Stealc
2024-10-06	n/a	exe	3ab89a8983d7cbc4b0a36e9216c498d207162bd23b3e623d4a34fd7f16685fd2	n/a	Stealc
2024-10-06	n/a	exe	ae8cbadaaea2cf8ad51fb95e5d7d7277301a921bd692305d9255e97522fb6e7b	n/a	Stealc
2024-10-06	n/a	exe	2ce2697b97ae39946b00bf8bfb06bb91afa31c2fe3ca6401a447560a9b0600b4	n/a	Stealc
2024-10-06	n/a	exe	124f2f0e92d96c9d7f6b9cb39fe46a6f0929956f75fa3c4a5213c7f03552c02a	25.35%	Stealc
2024-10-06	n/a	exe	ccde8f8e0c6eb0bde1d3dfbe8a51d0d49f38b4e9b9212f668160feb77673e6df	n/a	Vidar
2024-10-06	n/a	exe	be2d11f67bae102b4b0dba704baa89fa90732ecac9a34e9d6160ea9dc8e1e923	n/a	Vidar
2024-10-06	n/a	exe	fadc4f78be69edda473c483208793ac85df97f721f4f0585f04a0d21b3ee1e22	n/a	Vidar
2024-10-06	n/a	exe	a12cf4352231e3a5c90fa75f789fc4e2fb5f2a6680c5aeaa87dae34872f26fba	n/a	Vidar
2024-10-06	n/a	exe	e865be0f30099ffdfcabc43cc7ae0b545892584cfef6f7411ab293dc0d0a80e1	n/a	Vidar
2024-10-05	n/a	exe	dce28605ce4ffb9dffec229f1548c5a1a02b02e18147bc0fd1656dfef5db4284	n/a	Vidar
2024-10-05	n/a	exe	d1f691b1ec05978ed2d54e2ec4404bce8f9cb65d13653aced7ef564aebda18af	n/a	Vidar
2024-10-05	n/a	exe	eec168afb101f28c6c294b90dbdbe4e01a99284e93ebf3ae98b1bd52efa3d5a1	n/a	Vidar
2024-10-05	n/a	exe	214b31335194891246692c3baa5eb0c3a771e01d7ad66323400ab55d57437ff5	n/a	Vidar
2024-10-05	n/a	exe	ea41bda77c6d41ceace0f163ae710c6a07c15b5d3afb8e4823d7ef68fbd90a4c	n/a	Vidar
2024-10-05	n/a	exe	1c202e44a458c29f151b7202d97049848f9972c07b14475be2ca535445753273	n/a	Vidar
2024-10-05	n/a	exe	7a5009125785182ab9524a7c9a70777666bb48b99382c2a6e453aed4957d7b82	n/a	Vidar
2024-10-05	n/a	exe	99f889705c25c1beb94661f7faba1128c521ea4253118de2d931749facfb5563	n/a	Vidar
2024-10-05	n/a	exe	b0aacdea670a468c8a4c29dff58b191ceaadeb88c099d3a3ed9e4fc7caf99f5a	n/a	Vidar
2024-10-05	n/a	exe	f57f2625b60ae2cf24c303a79c4170d99f41f1add6a6db9b59d48c680f9d65c0	n/a	Vidar
2024-10-04	n/a	exe	d900c872f3b2bbdf30a91ea2631e63fca98da7aa1598602e9b815840ec213f47	n/a	Vidar
2024-10-04	n/a	exe	18b922592face3baaccf80d96b8798c2fb25bef2c885ee904976e477f65f2fd4	n/a	Vidar
2024-10-04	n/a	exe	d36483649805200e9a2c2f691c981b75316c6a531d3cc7c4323c64fa0034f8b6	n/a	Vidar
2024-10-04	n/a	exe	a6f61ec714e02691b463dba5494e44896c69a00a0ab7e87aa2e5199e9d7d55a9	n/a	Vidar
2024-10-04	n/a	exe	678c5f3c2187cad4c0dd036fe4e3d64bacfaf05e8eed36ecbfe9ad7cc386d67e	25.35%	Vidar
2024-10-04	n/a	exe	3dae11ff2654581fe0914e2777099379ccda7f6c9c82b2352191782d29f6d74b	n/a	Vidar
2024-10-04	n/a	exe	e0b65584305b3fed89a0ca71bdb6f6fce1af7a77e638ebeabe167a2a02b53a86	n/a
2024-10-04	n/a	exe	69b7150db3b2eda60b104fa68ea825deae50b1917e853ef46938bb664f05eb94	n/a
2024-10-04	n/a	exe	7e8aa29d3f658fd85232f27d55ca8a42de9758d86626daeeb0748287737fe438	n/a
2024-10-04	n/a	exe	fb2fb2f11a1d5721deff43d8c267c428a1d19cb138482d21fb9ea07a2e300e93	n/a
2024-10-04	n/a	exe	5325322242cebe18a9973e888b7123faeb10cc90457a9fdbca4d080fcd801387	n/a
2024-10-03	n/a	exe	1dc17bd6367dafd965adb0a12819f7efd6d5bc61585feceee69f6a09e4d1fc32	n/a	Stealc