URLhaus Database

You are currently viewing the URLhaus database entry for http://jask.powerforxes.shop/ldms/f2e7fcb20146.exe#sp_sl which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3209803
URL: http://jask.powerforxes.shop/ldms/f2e7fcb20146.exe#sp_sl
URL Status:Offline
Host: jask.powerforxes.shop
Date added:2024-10-04 12:05:07 UTC
Last online:2024-10-14 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Bitsight
Abuse complaint sent (?): Yes (2024-10-04 12:06:07 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:10 days, 2 hours, 22 minutes Bad (down since 2024-10-14 14:28:55 UTC)
Tags:dropped-by-PrivateLoader LummaStealer Stealc Vidar link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-10-09n/aexe ddf3c590d0cd0bf3f871c5baa3a84e14428cecf3a929fd2c40d483e3252d45ffVirustotal results 30.56%Stealc
2024-10-09n/aexe eb83308b8258055f86c82f23999ec10535dece1c3dfdaee0f8d41c4a97ce3179n/a 
2024-10-09n/aexe 20d347c984cc29d7bc7de25c5170e7e7d0ce69636bc21bfbc06f6fbe9713c053n/a 
2024-10-08n/aexe 79dcab12fb6366fd486a8341d9001112a8bc5b56c8dc7c0e466aa406c09e212dn/a 
2024-10-08n/aexe 52bfe75fc136a58a03223278f4b531bf57eab544156c73236e49e8150fab2631n/a 
2024-10-08n/aexe 74a62ecaa883cc9a10021ef4fc7129b9f8d6b1d400a2d245e2295cfebf87f93bn/a 
2024-10-08n/aexe 4bc16c5fc21ba9d2c60e9d47d1f7e5b8d83c043f7b2707c7bf0e0d5f58be35c8n/a 
2024-10-08n/aexe e547c5c0e076d79198d0230931860de0aaa96653e53160ce2f5eef42d3f91a59n/a 
2024-10-08n/aexe d4e84d52e2c97c91c9b773072de7570d61c05f9da81638447f85750141581d44n/a LummaStealer
2024-10-08n/aexe b387b9e0ac7d941eebd0dd0c2d529aa987612b522ae79d23de989d0180b960ean/a LummaStealer
2024-10-08n/aexe 38c1660d5da12df35c15a642266247923cdc4c564e80f6d1d729f216554d991an/a LummaStealer
2024-10-08n/aexe 3ba82a28fea9fae111b4dd28a63e7ff8ecb8a0100bfb377eb45b8a3c480c653en/a LummaStealer
2024-10-08n/aexe dbb939fb8b11e194fc8b03ca72644397e99ed91ecf03995eb7b9e0d6ac3c907dn/a LummaStealer
2024-10-07n/aexe 6937f18bfcc53400c0770b258f8850ab7903ad77742e8b965e50442c492974cfn/a LummaStealer
2024-10-07n/aexe 22595bd9120d6fad0bd0e8caf9700fe6ab5f2805c8903681baddb1bab83819c5Virustotal results 40.28%Stealc
2024-10-07n/aexe 08fc29d1bcd3c1c9145a6cf9087ce892217c2d0312410d916dd8aa748a0479c6n/aStealc
2024-10-07n/aexe 704465dea60612c850ff0e2fd1e71a3b6066850ff62ab78810fdf1d4a411e23en/a Stealc
2024-10-07n/aexe d7c67cda7e93f60e1a7043317e13efb74ee87372a2bf8a219428c741a5ed3825n/a Stealc
2024-10-07n/aexe 63cb5534211d5973fec5d4b7c7c00f5965cbd4e928ce48c90825c2b26c4c2186n/a Stealc
2024-10-07n/aexe a4a36a3f30c7b01ad1d043b3bb6d5c7155693d9acc60df77746284ebdbbe1043n/a Stealc
2024-10-07n/aexe b203e7abd53a6de71d5271e86d2b5029bd14ec1cbea5d29a500d9aa21d564e06n/a Stealc
2024-10-07n/aexe 3bc752d2803f660c3216bcfa6fcd3cfb03b21b8753d4bec32f4e679af854028aVirustotal results 41.67%Stealc
2024-10-07n/aexe 9d0155c232643bc30619128aed2f12a37f303a323687fadb5996324a5c733c74n/a Stealc
2024-10-06n/aexe 6fda89aea72534c26fb6ece1367dc6668c32f2bb01448b9b66863725561e3237Virustotal results 38.03% Stealc
2024-10-06n/aexe eacc9139ad1c246a8a2fdfd2e54c9429a2cde7b6ed277cac25b12539659187e0n/a Stealc
2024-10-06n/aexe ae8cbadaaea2cf8ad51fb95e5d7d7277301a921bd692305d9255e97522fb6e7bn/a Stealc
2024-10-06n/aexe d29e9075ed609da7e51588a3be10725ba6112032445eff073ee4ec3f43698339n/a Vidar
2024-10-06n/aexe a2c18d441ed9f2c249c39a7e9eff7f2869e101399437d04a0ed7c6f45f998640n/a Vidar
2024-10-06n/aexe 0cc59a9540c9097385a8a84e001a1abc8d602e4a88d0d4a52bfb7b5c747ab0b8n/a Vidar
2024-10-06n/aexe fadc4f78be69edda473c483208793ac85df97f721f4f0585f04a0d21b3ee1e22n/a Vidar
2024-10-06n/aexe 4fa7cb613e362322112ad9a75f61dab9712406bad19017555f238159c22eb3a4n/a Vidar
2024-10-06n/aexe a12cf4352231e3a5c90fa75f789fc4e2fb5f2a6680c5aeaa87dae34872f26fban/a Vidar
2024-10-06n/aexe 3afea274ce1caa7922bb874e5cff0981f891e900df09c1073aa51788b830e7f2n/a Vidar
2024-10-05n/aexe fbf81f05fa49d96599830f2d509f6b08c714028ee12ab8e0d450b062aaff3aeen/a Vidar
2024-10-05n/aexe f6a1bf44d9909f742c9b41fddc6f84c690c17bde55835c0d03c023977066cb10n/a Vidar
2024-10-05n/aexe 6d9ccf98e96d1c1f1e3f77802c19b062e8660582d69f5ed0e9ccc34288d69f6dn/a Vidar
2024-10-05n/aexe a5c357943ae3c212581305413ab6ce2d549c54f606b6bd167cfe6cd713c9e47dn/a Vidar
2024-10-05n/aexe 44bc724d2d746995d774bde70cf40532114fa7a91af60a70a412d13a5911e571Virustotal results 45.83% Vidar
2024-10-05n/aexe d0f6dcba8254da01972aa421586d0d89f12f6861990005aec8f9336e5f248562n/a Vidar
2024-10-05n/aexe b0aacdea670a468c8a4c29dff58b191ceaadeb88c099d3a3ed9e4fc7caf99f5an/a Vidar
2024-10-05n/aexe 857ff92d87a4a489cf04d37626e7a75f97f24ea623426cb2d1633c34e0dbc763n/a Vidar
2024-10-05n/aexe 9502bac881fca65807ff99f3802f8dc7965b10e1486d5cfbbeaa90d9e74dfdadn/a Vidar
2024-10-04n/aexe 04698ab91618e4387a1938857c44d5e625437e54c8af3a19a3f02b455d05617an/a Vidar
2024-10-04n/aexe 066631c49b32c7bab3fd7343b65c8797cb9c1230ea9e4f69af2adb8b8c21ce5aVirustotal results 33.33% Vidar
2024-10-04n/aexe 525edde94fd17d1e7a511bd1ba34e65345ef086c3319e9ba2e7bf0a4a04a1831n/a Vidar
2024-10-04n/aexe a6f61ec714e02691b463dba5494e44896c69a00a0ab7e87aa2e5199e9d7d55a9n/a Vidar
2024-10-04n/aexe 06b175df8354967a0b2004f5122cf30eb335c983e128f76951076e8dc90ba353n/a Vidar
2024-10-04n/aexe 98a63017e0d5084ced9459e819a9586691062b1bbe5f2622069df90112201329n/aStealc