URLhaus Database

You are currently viewing the URLhaus database entry for http://jask.powerforxes.shop/ldms/7f3c2473d1e6.exe#sp_vid which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3209805
URL:	http://jask.powerforxes.shop/ldms/7f3c2473d1e6.exe#sp_vid
URL Status:	Offline
Host:	jask.powerforxes.shop
Date added:	2024-10-04 12:05:54 UTC
Last online:	2024-10-12 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Bitsight
Abuse complaint sent (?):	Yes (2024-10-04 13:36:08 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:	8 days, 4 hours, 38 minutes (down since 2024-10-12 18:14:29 UTC)
Tags:	dropped-by-PrivateLoader LummaStealer Stealc Vidar

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-10-09	n/a	exe	53e0a2da42ca576d96a70ce70f1b1817230456a4e66e6ae58ed4167c260be391	n/a
2024-10-09	n/a	exe	10a32cf0ca141f121f691eb7cf72159c158cde4c220f20b1fbaad44b961e56d2	n/a
2024-10-09	n/a	exe	6727476baca4acfa82920ef3bc360a300bf5137791ebcf6d195a852a37bceca4	n/a
2024-10-08	n/a	exe	b7070d6be787bb23286f4b57a399c3c20216dc08cb2c4019d22c65fd1e333a69	n/a
2024-10-08	n/a	exe	b1eeabe90edd7dd40abb462e41d3d4e69b5057213828b977c9393259e5520497	n/a
2024-10-08	n/a	exe	2efbe99eaff294a4ee41b922098c0ae2eeba044cc2f9fbc5586a620c2ceadc93	n/a
2024-10-08	n/a	exe	ae4652c4433d845665b44f36ba2e4188ca5e33a1df4ea3183af5f3cfbc0d3614	21.92%	Vidar
2024-10-08	n/a	exe	0354299279d74bf20ea88cf017002360c397b50462a9ec4e23594eb344545b87	20.55%	Vidar
2024-10-08	n/a	exe	f76e79c5e64a9d070fad62850774c0110ec1340fa83268acc6163491e138e5aa	n/a	LummaStealer
2024-10-08	n/a	exe	2c90b8d93d2a2cdfcbc024099dc866acd34a89c1f4aa597c4f21ab2061a5e2b2	n/a	LummaStealer
2024-10-08	n/a	exe	dd8ccb98038504de4c115d95c91707c849ddd57196c413661530a15f5f97e83e	n/a	LummaStealer
2024-10-08	n/a	exe	b205b92c24af56a9410723c0ca91c554388a7c72227522399b8747a8bda1e97b	n/a	LummaStealer
2024-10-08	n/a	exe	ae66a9bb78b38d759f7344b4b8429beffef795e21a73be7d657b26ba718c94e2	n/a	LummaStealer
2024-10-07	n/a	exe	2f2a7d626e6b01d3337d295d603befb142404596f73d05889059b8872a44adf4	n/a	LummaStealer
2024-10-07	n/a	exe	f0a8b069fdf150662ff44789cf2850b9c416e1be736f13f66111ebf2e2f7cd6f	n/a	LummaStealer
2024-10-07	n/a	exe	78e3ab598b6bf3c5be92c0a3b0f4e541227e64423c8866df23c85b8bf0f4ad28	n/a	Stealc
2024-10-07	n/a	exe	cf080ecf1b49f41b41f504264e805887b80f739d596971093afeeb9254761da9	n/a	Stealc
2024-10-07	n/a	exe	998db1093fba6e39dd6baa067ac2981451947dda769312d43d1c6c1cadbda3c3	n/a	Stealc
2024-10-07	n/a	exe	f655c42917dd0c1287bcf47561c4200cb79c6240f41492f675093077d7a2e350	n/a	Stealc
2024-10-07	n/a	exe	f754c5c7f44951ec07e037b39af702849b07998f37edd249d54ead17fce888a6	n/a	Stealc
2024-10-06	n/a	exe	e3b5cfafcf00db7ad7b234a234dc5a141ed2666e7aa3de39fc989d545f0359fd	n/a	Stealc
2024-10-06	n/a	exe	bb86fe00919919ed886033e7006607dd0180cdcb3a7a1bdf6da15810c19cd22a	n/a	Stealc
2024-10-06	n/a	exe	db30ea9c5367e95d5aa347e3c821b690343f593fdc257e7802fed7e14df4cdb5	n/a	Stealc
2024-10-06	n/a	exe	29602f409dc1367e54ef3b422371ecea4b953d6c2cd4b1f3ead7b42b44d969ce	n/a	Stealc
2024-10-06	n/a	exe	feb54a8e52248fc6850776783ab8f9b8df88f2d2b9e8668a3f2b40aa10371b30	n/a	Stealc
2024-10-06	n/a	exe	6951e56ee86f60d39de58fb2f898f079b6ee6cd202b62246d89167b94a4d8015	n/a	Stealc
2024-10-06	n/a	exe	38b5532b8f14898bac9256f4b6c2fff64f4583991c90e339c78f5775c8fb64b6	n/a	Vidar
2024-10-06	n/a	exe	905f4f8dff6769a0a2c29a6b6dfca2687da9dc7afe06223d6f74aba15c529eb9	n/a	Vidar
2024-10-06	n/a	exe	771921cba445b16f22472ffa0527ac75e6e7aca7a4be521c30ab49ada3d86150	n/a	Vidar
2024-10-06	n/a	exe	38be31cc5fb2d1ac1227be4edbe140c162923e7cd986219f9df2d46778f6766b	n/a	Vidar
2024-10-06	n/a	exe	2157a27566abf0ea4652ef9cbe69b3261a1e845b825f4ec69af3ecf0319d88a0	n/a	Vidar
2024-10-06	n/a	exe	274ce44491d778fb72978902382af505ebb5d0fe3ad39d0fe798329f91c65496	n/a	Vidar
2024-10-05	n/a	exe	c89fc9046f21b0adb4d51aac97bf678f781d54e1109323cc84f54f6a3cae2627	n/a	Vidar
2024-10-05	n/a	exe	6c87da6f0d840c20f6aa50cb9cc554c1585822551be3e5c9cc1f2c9b0e7a5552	n/a	Vidar
2024-10-05	n/a	exe	2a4ddfdd244c73f6d954544b437daca20f6f63bbe2863c7b07e6cd050e4cbd9e	n/a	Vidar
2024-10-05	n/a	exe	201fa82dbcf25ad6f9ab3edcd4914997bccda676bc6220a4659e7c3935cf7f7c	n/a	Vidar
2024-10-05	n/a	exe	789282ec4f9beca0ab85fc0d9ff9e4429b5c6165823f170a6ccd055fd5bcc255	n/a	Vidar
2024-10-05	n/a	exe	5b3d5d302e786119f4c7ec6d0b0ca2b5946f7afbadf7cd2f9bdaca08c32f8246	n/a	Vidar
2024-10-05	n/a	exe	85cd0c848c69642329c8c0a029c09c76b6b7899163acea9e03516142268700ee	n/a	Vidar
2024-10-05	n/a	exe	fbb142b40b314b9519a770b9c635e3e3a6b315201a498c5310a8a05ff498894a	n/a	Vidar
2024-10-05	n/a	exe	72ccd52f462afc928a8078b53becb1905173891ad62719c15dcfb402caf8eac6	n/a	Vidar
2024-10-04	n/a	exe	d7da8e3cdc0b679d791d6cff3728e1f239007fa4250f637eb7a95a9b4a5c94b9	n/a	Vidar
2024-10-04	n/a	exe	18e8556789ba12cac2e51b4b4f8540b5f2ec254b40eae0eb7b63e64457187794	33.33%	Vidar
2024-10-04	n/a	exe	e4726c9a70f4590e2eabe4705c6264d5370003839d0bd1323227f055ddea28b2	n/a	Vidar
2024-10-04	n/a	exe	60bd16249ed2f24c98380920cb581f447a806541827d4eb2a5c1e889b9379c30	n/a	Vidar