URLhaus Database

You are currently viewing the URLhaus database entry for http://jask.powerforxes.shop/ldms/04a4f32fae41.exe#d16 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3210111
URL:	http://jask.powerforxes.shop/ldms/04a4f32fae41.exe#d16
URL Status:	Offline
Host:	jask.powerforxes.shop
Date added:	2024-10-04 18:23:05 UTC
Last online:	2024-10-12 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Bitsight
Abuse complaint sent (?):	Yes (2024-10-04 18:24:08 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:	8 days, 0 hours, 10 minutes (down since 2024-10-12 18:34:12 UTC)
Tags:	dropped-by-PrivateLoader LummaStealer Stealc Vidar

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-10-09	n/a	exe	48c9e1cce6868ed1f46051b8898643c59545185e16600f15bd54ce86a74f766a	30.56%
2024-10-09	n/a	exe	6091ed0ebef8b9521789423353b160e92490b4aaf0210d2f662f6cddecd60bdf	n/a
2024-10-09	n/a	exe	541d9d89777c4fba7a39de9bc631515555e9f5e45ee126d1f1e6729f1b7b3b7c	n/a
2024-10-08	n/a	exe	59eb156c40a5708be145afd4ad609a76064a0f6ec5d883af64d133d3d7726566	n/a
2024-10-08	n/a	exe	98d4890cd3aa124b9e0e38b56271f58f32bff1cdc98e6f767279cba5583f6912	n/a
2024-10-08	n/a	exe	162b6ed1a900345d19b2be2845612e693148ac8eeba395c92cce1d0dd46e6027	n/a
2024-10-08	n/a	exe	1daff1190ddf107ab0a5233a2df070a83f9b2f64b904265c71119ef7589a49cf	n/a
2024-10-08	n/a	exe	6a9eb3917178cad8d67ced9dc10ad60b895e58a64be3057039c349d95daeb4e3	n/a
2024-10-08	n/a	exe	fedc791647e435252f93b5fd03af2c8f13569757b9263aef1c6e5a5052b7c848	n/a	LummaStealer
2024-10-08	n/a	exe	e66b9d51c08c1338d7ed7ed861bbddea77f64daf96e7ed78d4a0315cf2c43fb5	n/a	LummaStealer
2024-10-08	n/a	exe	1653176551d3ee0bb60e74e30c57f3f65d238e988d9dc01868b1d7274550d13e	45.71%	LummaStealer
2024-10-08	n/a	exe	bc42eefde4c02237fe30e73c6ba8cfcc24efe3fa0728a6552ffb71c5fefc4850	n/a	LummaStealer
2024-10-07	n/a	exe	66a59e235af041793271ed8b5b00d6812c2a15f3371ea5f24ef89ab12597bdb0	44.44%	LummaStealer
2024-10-07	n/a	exe	f3f43fb9e2530f414ed78fd4722853cec81de70e82b83eccab80f1e100dec157	n/a	LummaStealer
2024-10-07	n/a	exe	b35f199080c928dfc69416aa2d220b0e64a4ee62f60d7db08d453e5710543d4d	n/a	LummaStealer
2024-10-07	n/a	exe	09fe3a5ee3b3fa9ac60aabd0b23263844c3cad51196e3a256ffd25340ebfb404	n/a	LummaStealer
2024-10-07	n/a	exe	6fa358dd77245a977ca83500c23eefad774cc5ff0b37145cf0914f7b14bda838	n/a
2024-10-07	n/a	exe	0ad2bf1bd302874fe6db73b0e6a76abda01a4880177f252ea3cd40eabde7c191	n/a	Stealc
2024-10-07	n/a	exe	73ceea89d0655de937915c9431c1f5e6dd6e6e7c94f3b5cb20044a2a10f9d95d	n/a	Stealc
2024-10-07	n/a	exe	5afe622b5bd57908f20d7ac34133283b4a2778dbc3de1fc8c635e3c950e19a54	n/a	Stealc
2024-10-07	n/a	exe	1bf569fa9c438a489c59a9d6a3986e43242bbbfbd62c04e871b579e6c4ab50e9	n/a	Stealc
2024-10-07	n/a	exe	da20b19fc505734026aa3605a1009df35800a8c5f42c4be41824a0931c08227d	n/a	Stealc
2024-10-07	n/a	exe	805ac648caa1b552110d9a4a61b36c9b819aaf677f05fb1805543cd2135070f0	n/a	Stealc
2024-10-07	n/a	exe	931ac54db53c787f4138e73535db1664fc22cfbd9957b53d4c5135bc8a0dabd5	n/a	Stealc
2024-10-06	n/a	exe	933ba9699b22c272eb72ce0c49c48f6815d38327aeb67f1d319d4001a8e7721a	n/a	Stealc
2024-10-06	n/a	exe	2c22c5c7fa524b6d34530b3fdfd2d753b9fb9bbc417b126ec78baa718e84673b	n/a	Stealc
2024-10-06	n/a	exe	b2d613c8faed8dee72dbe537977e3242d631a46188dc845bceb49dba1acb4fb6	n/a	Stealc
2024-10-06	n/a	exe	aba5cdc0683e8f292fb378dd12e4c1e1ddfef72692c72d2f26804a024c9a9c06	n/a	Stealc
2024-10-06	n/a	exe	62bfb1f860eb92b319a95545dcb77176f72add23500ee58346c0155605ed355a	n/a	Stealc
2024-10-06	n/a	exe	f683b4561fbb593bbf5e1855e0ba2751c68cf9c53d1073b96d519b20a9dc731c	n/a	Vidar
2024-10-06	n/a	exe	e85dbbb6d160af67841d8cef7f16882619b566c5b5c7fe8557b334fff047b661	n/a	Vidar
2024-10-06	n/a	exe	20a883f2d906dd69764dcec1e43c8220e968b18ef544687418126c3d5f35ad88	n/a	Vidar
2024-10-06	n/a	exe	d350b70f8e3997a3fe61bdb1922eb94a1a53c6840a93a8d34d9bc9563209a9c5	n/a	Vidar
2024-10-06	n/a	exe	4e14ab029049a4dbdda9022eb2fee4e5a23198e9c9dcff0e067d79a6ef009699	n/a	Vidar
2024-10-05	n/a	exe	02141916f0fa91504408c85f6913da2608ae77177a4af0fccda3098b5d1efa50	n/a	Vidar
2024-10-05	n/a	exe	723249549b2d9cd77bca922fa35ed9efbd7c4dfdfb9267b67a29a53047940728	n/a	Vidar
2024-10-05	n/a	exe	50b5395fcff3eec83e3f78b161463e82e20e768a09d9f4a69d5ee268b06de147	n/a	Vidar
2024-10-05	n/a	exe	bfcfd4a3db15a5a471c9704ea1ceef45da78eb4173d7956cbf71d834da0ef264	n/a	Vidar
2024-10-05	n/a	exe	68d8114a9d8667e077824b82b3aacde03f2540c129152e12ec8b01355dca5290	n/a	Vidar
2024-10-05	n/a	exe	722e0b92085e2ee9cbd7ecf53c41a7e6214da6e144f2a2e483f49810d53a29f3	n/a	Vidar
2024-10-05	n/a	exe	e45dcf7163f11fe683793f8083790bd1b8f872969cc7fe557accad3442ebe5f4	n/a	Vidar
2024-10-05	n/a	exe	c01b6049f95646a2940c7e022bb50cb097043c77314d55080ae89f40661f2128	n/a	Vidar
2024-10-05	n/a	exe	d0aa23689ef62b3ad4148e26599b05019db4e90817a3a246df4f544df518eb4b	n/a	Vidar
2024-10-05	n/a	exe	51093b2cead2316a882fc64c6a946cb19bd79c6c3f1e8034dd86847d68c8ebcb	n/a	Vidar
2024-10-04	n/a	exe	c4ff9b4427d663d65d013c66a7f3f660fda0f0638916cb9aa1f55a418e2f05ef	n/a	Vidar
2024-10-04	n/a	exe	068d53785a0b43ef01fdeb40f9ae7168190bc094414173eb5f964f74e979d0d8	n/a	Vidar