URLhaus Database

You are currently viewing the URLhaus database entry for http://hans.uniformeslaamistad.com/ldms/9dd06d870941.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3211169
URL:	http://hans.uniformeslaamistad.com/ldms/9dd06d870941.exe
URL Status:	Offline
Host:	hans.uniformeslaamistad.com
Date added:	2024-10-04 18:46:36 UTC
Last online:	2024-10-12 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	abus3reports
Abuse complaint sent (?):	Yes (2024-10-04 18:47:10 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:	7 days, 23 hours, 57 minutes (down since 2024-10-12 18:44:30 UTC)
Tags:	exe LummaStealer Stealc Vidar

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-10-09	n/a	exe	743066ea0e49b30514250a6cf9a6b948448bfbcd33736f86a9ce5bfca5742dfe	n/a
2024-10-09	n/a	exe	5ab5d7f06782bd5931370a8df51fff9d0cc04787bfcb54a15e4e21dc6450eac9	n/a
2024-10-09	n/a	exe	3295863006af2db31482e81e08bc048a1db976c138ee7a9794f2777bd361ee1a	n/a
2024-10-09	n/a	exe	1a1bbb2fa0c4c7754da0a4ed0cc82e59a1ac7b43bbe707c737df08745f82c606	n/a
2024-10-08	n/a	exe	b101d104360ce72e09b6cdee5602349903d2a128a4304b0815d819428246b5db	n/a
2024-10-08	n/a	exe	9373941957ffe079e76d8d52e511af7b2bb808a32bb42861b7140d9674893e2f	n/a
2024-10-08	n/a	exe	a4826bcd911476b7dd968dc241dfd24f0c35775395b871ed0a61c3a3bace6ca3	n/a
2024-10-08	n/a	exe	cd3c4c758a515f83c792125f6db0350cbcfa93a46d225456952e7cce4b40567d	n/a	LummaStealer
2024-10-08	n/a	exe	7a947f2289a0cb63b5dae2f4409db33fd73655f2102193b2f8b2e2bd75879bf7	n/a	LummaStealer
2024-10-08	n/a	exe	486312413e95144ce8ad664387fbe664d5a02f627a18ce0f35cb6de1c834452a	n/a	LummaStealer
2024-10-08	n/a	exe	700d28c943cd4e2e6e11f350964a4bf954c7fb32e31c829cda3b726bb24ab471	n/a	LummaStealer
2024-10-07	n/a	exe	972cf2b4f77057dfd2b78ebe9fd3a1ab9814141332bcf0e610936d975e89a008	n/a	LummaStealer
2024-10-07	n/a	exe	dbf4208f147f4d3569d935410844bcfb27fd36ac12315077f90ac2c2593c6160	44.44%	LummaStealer
2024-10-07	n/a	exe	1cd82b6081140f4e6d5c99fb8abaf8d0498a367975850ac04255f3993a212147	n/a	LummaStealer
2024-10-07	n/a	exe	3fb57a35dc34f33de9711fc291041b36d8be7d3c01364e17a9aaf597cbf52d80	n/a	Stealc
2024-10-07	n/a	exe	ef20bcd669bee21699a91d7d04a454c7705e2f60c57d5b6ba218e4a03bdc71cf	n/a	Stealc
2024-10-07	n/a	exe	6dc8919de351e0692aee53d5f9805210e5943ea877ce139f35330d650463e8b1	n/a	Stealc
2024-10-07	n/a	exe	4a2be209ff32f2d4e36642d916958f1737bf9b05897a4b62648de79800c63e90	n/a	Stealc
2024-10-07	n/a	exe	abd658569bb10ea24e47c7eea874523012e0acf85f7b8706ba193b2ffd5efde7	n/a	Stealc
2024-10-07	n/a	exe	9114673029dbad6c77412250deb7679c9b307f775179296e8cd712a235dd1666	n/a	Stealc
2024-10-07	n/a	exe	4ccf53a2794619d16b6718f4ab330e92399a1f5cfe8d066045c87dc41990d6a4	n/a	Stealc
2024-10-07	n/a	exe	901ecbcc7c14b12ca55d64bcb5006c53e3d5d3ae9167a9c5270e414e37fa46f0	n/a	Stealc
2024-10-06	n/a	exe	6b562a0297fd22ae945ff23e69cc91fb21b15d190e6e407479d9b55d2ef9a67b	n/a	Stealc
2024-10-06	n/a	exe	7cf465e29bc82ecd7f773ff442428684c9792bdf2739e1d33681f21450c6b809	n/a	Stealc
2024-10-06	n/a	exe	f3a78cce29408f9c74082c91c1488ef48e92d017ef1d56866d60d07e95fc9a25	n/a	Stealc
2024-10-06	n/a	exe	2fcd3d26c304a7b09dc1e0fb00bad8636312fc72b7a4dd7f6669217f2c833d2a	n/a	Vidar
2024-10-06	n/a	exe	4d168922bfe2c239bf23050c30d1430b66ae4cf4563d13ec6e8708b71d8cd7a3	n/a	Vidar
2024-10-06	n/a	exe	52b869c82b4bc309a3fe8373d94110429dee9be945350e95d067463e334e8948	n/a	Vidar
2024-10-06	n/a	exe	813558b9809ba2f83ca4a33620166f9b11f7500b5bef8033e6d07d3e13f2d975	n/a	Vidar
2024-10-05	n/a	exe	8d24570a4d0e6ab4a79fc9910d852c2069766ea76c317f678efe8e4e82ff0bcc	n/a	Vidar
2024-10-05	n/a	exe	fd0e49e7d4ab5a1a8c7c725453244f421bcdd148b3e7b430871cef816e454b16	n/a	Vidar
2024-10-05	n/a	exe	8561029b569ec3e37a982aba5e1735cc0643ee985be5f6a033c6f322a966b695	n/a	Vidar
2024-10-05	n/a	exe	f19fe9f2a66241145002497de635067e08975333f4b0436e3770ffadd144bd10	n/a	Vidar
2024-10-05	n/a	exe	b8e81e6b1771fb9f56e5f79f179e4b511257a027352bf93135889f177831d990	n/a	Vidar
2024-10-05	n/a	exe	6297a1a1acb8dfdb27bb8accbf8568e54638791a321c19e430607fc60bae32a6	n/a	Vidar
2024-10-05	n/a	exe	af4cf211cf777e52921aab7411a900ab9fe404c804a53202d8d95b3cf6d8842a	n/a	Vidar
2024-10-05	n/a	exe	02028304743b922eafbdc891aedc722b09067ed3a70b8e536b093e40a867a028	47.22%	Vidar
2024-10-05	n/a	exe	a732a494dd1c2d92a2cfcec61685d47db6ba19af1a7740c614a0eed6e9d2aad9	44.44%	Vidar
2024-10-04	n/a	exe	346539f37403be51d0718b0cc3bc2fe03316503875695916f7f6503ac2be4400	n/a	Vidar
2024-10-04	n/a	exe	7c1bbb873478b5febe041868e95ab70f6ddbbf69e1cad60fbb06d09a3e56cf9c	n/a	Vidar