URLhaus Database

You are currently viewing the URLhaus database entry for http://hans.uniformeslaamistad.com/ldms/9dd06d870941.exe#d15 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3209534
URL: http://hans.uniformeslaamistad.com/ldms/9dd06d870941.exe#d15
URL Status:Offline
Host: hans.uniformeslaamistad.com
Date added:2024-10-04 07:51:06 UTC
Last online:2024-10-12 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Bitsight
Abuse complaint sent (?): Yes (2024-10-04 07:52:09 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:8 days, 10 hours, 30 minutes Bad (down since 2024-10-12 18:22:52 UTC)
Tags:dropped-by-PrivateLoader LummaStealer Stealc Vidar link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-10-09n/aexe 743066ea0e49b30514250a6cf9a6b948448bfbcd33736f86a9ce5bfca5742dfen/a 
2024-10-09n/aexe 3295863006af2db31482e81e08bc048a1db976c138ee7a9794f2777bd361ee1an/a 
2024-10-08n/aexe 5b891de147033f98344b601a4316a905469c042d531e2b1dcc6600baeb955756n/a 
2024-10-08n/aexe c70c1246fd506eca826845e3cafc7c00a29f3cfc5d1734c64150bd82bec82194n/a 
2024-10-08n/aexe 9373941957ffe079e76d8d52e511af7b2bb808a32bb42861b7140d9674893e2fn/a 
2024-10-08n/aexe b4d9d5fef234772a724f297d5d755857ea7494e9c954f86b9a77d1847b7d0f48n/a 
2024-10-08n/aexe a4826bcd911476b7dd968dc241dfd24f0c35775395b871ed0a61c3a3bace6ca3n/a 
2024-10-08n/aexe 4720c19da4d5bd5fab47debe2a578912cf89121f79473b54c41bc761ae7ff04cn/a 
2024-10-08n/aexe 7e60b7f563e626de6426c74c22a0722709670da54e53bb22d71e6f993a376d9bn/a LummaStealer
2024-10-08n/aexe 35af3b6016e2bc97038b72fcedbf0144abbe0b2ee0d02e33bdd4490dfe18705en/a LummaStealer
2024-10-08n/aexe 700d28c943cd4e2e6e11f350964a4bf954c7fb32e31c829cda3b726bb24ab471n/a LummaStealer
2024-10-07n/aexe d6ac96b37f9d39b52a70026c54d6ac6507f79b2bb141d29b3975658974142044n/a LummaStealer
2024-10-07n/aexe 454cc1022d742608516bc98da91be893556f594efcf036b837b4e214b40fdbc2Virustotal results 43.06% LummaStealer
2024-10-07n/aexe 95c1d4d9870829c9fc9503cfb401c952101cf9d741d1e3f50f15164179140406n/a LummaStealer
2024-10-07n/aexe b55660e3de289d075208b998498d8e1009efa144d849615032769e8c430f48ean/a LummaStealer
2024-10-07n/aexe 281b1852931e3ec2ad170ea338067b2380404d6d2c2ea3ac0ed915fbff589152n/a Stealc
2024-10-07n/aexe 6dc8919de351e0692aee53d5f9805210e5943ea877ce139f35330d650463e8b1n/a Stealc
2024-10-07n/aexe 4a2be209ff32f2d4e36642d916958f1737bf9b05897a4b62648de79800c63e90n/a Stealc
2024-10-07n/aexe abd658569bb10ea24e47c7eea874523012e0acf85f7b8706ba193b2ffd5efde7n/a Stealc
2024-10-07n/aexe d0be62dbf14eeeb193c4b0d460abc67d6173420caffe527ccfe81e9f269c7f8en/a Stealc
2024-10-07n/aexe b731087236662a029e0bb94b08212b7fdf131a071862613c4531c02712b3f5f9n/a Stealc
2024-10-06n/aexe 14970e8dfeec4ff1c9c60d9cea17b84544f7f671d8d9b5c6f17d637fb6f94bd2Virustotal results 38.89%Stealc
2024-10-06n/aexe e8f75c7bd07d542508b5adfc92a2a5b2b8acc36cf9a42a2046dfe678ca5fc9e6n/a Stealc
2024-10-06n/aexe 78051aa7cffa7f114ee38406244733cc1eb43035310262b08bf474d7b7b30b3bn/a Stealc
2024-10-06n/aexe 661702709cba3bd27c6028d9a1d39b1474fbef6e84eb53cea1ffca8df7ed4383n/a Stealc
2024-10-06n/aexe 6e8099029c3559e8e7dd9d2b55ddd18d24a8336fa2145be6b1976d002d569322n/a Vidar
2024-10-06n/aexe 99416bcc94e430d603331957608cc7150e33808bf6fe4a3ee95c0e7e5cc52ae7n/a Vidar
2024-10-06n/aexe 4d168922bfe2c239bf23050c30d1430b66ae4cf4563d13ec6e8708b71d8cd7a3n/a Vidar
2024-10-06n/aexe 89e3077993a341d86b873fbab7b71b998e4440abbd767f8546f4b99148fb9e6bn/a Vidar
2024-10-06n/aexe 142e278dd5a4048686f41b78bddd69ef7c337fea2471c91c8df39bfe225b767bn/a Vidar
2024-10-06n/aexe 813558b9809ba2f83ca4a33620166f9b11f7500b5bef8033e6d07d3e13f2d975n/a Vidar
2024-10-05n/aexe 80738a73a274ea9fae0e85621c995764bac5207bd8a1cb7b85c0b0b3aee1bd92n/a Vidar
2024-10-05n/aexe 421bd4706d444a615d30d878bcee03eb4dc348dad1def6cb53c89ff04477ca86n/a Vidar
2024-10-05n/aexe de0df6b2149c6e21793a6d0610cfac5461d7e602104c7bbce32bc8c300abf68an/a Vidar
2024-10-05n/aexe a963880fe068a967042a90e748546ad4da6775bc911805e6c5dae934ca4d4506n/a Vidar
2024-10-05n/aexe 8561029b569ec3e37a982aba5e1735cc0643ee985be5f6a033c6f322a966b695n/a Vidar
2024-10-05n/aexe aef13bd4c3f41debb5c5dce252830dbd1287686a8f34285cbfe081276e77034fn/a Vidar
2024-10-05n/aexe 93476a22aaeb8d9fb558e55e12a040e7e8c274cde359cbb211a3ce171e34b8ban/a Vidar
2024-10-05n/aexe 02028304743b922eafbdc891aedc722b09067ed3a70b8e536b093e40a867a028n/a Vidar
2024-10-05n/aexe a732a494dd1c2d92a2cfcec61685d47db6ba19af1a7740c614a0eed6e9d2aad9Virustotal results 44.44% Vidar
2024-10-05n/aexe f88431a9ff783fc759e279e0cb28fa94ddcc40ab9590eeb1630b36209359977fn/a Vidar
2024-10-04n/aexe 1786d0b0308c4ab88d29de4e16dd88e7a9d52662596ea0b3f707c7ea4ef96b08n/a Vidar
2024-10-04n/aexe db1abe1ca2961065531bac9b81199e5ca14603213f12b2dfb90e28850e2328cdn/a Vidar
2024-10-04n/aexe f11a2bea655d1a1d6add3e7c988720f4dae3d26db345602a43a8b1879a9c2859n/a Vidar
2024-10-04n/aexe e0ada5755f65e73f6805ec1d78fa2fab8774dac76d0ed677b5f8c1bd20d7bfffVirustotal results 30.56% Vidar
2024-10-04n/aexe 07569e9d6bbc92ce7d7492e5e3b935e7aa42bc6d3da683b8128ddb0be07086f8n/a Vidar
2024-10-04n/aexe 1fcdc70b74c302b1b556521e98844962e010c0c0006a73bb26293f971addb9d3n/a 
2024-10-04n/aexe c7a9b126d27a142ad49c3b46591716348393efae2bf563df648701827bd7f80cn/aVidar