URLhaus Database

You are currently viewing the URLhaus database entry for http://jask.powerforxes.shop/ldms/0a839761915d.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3212742
URL:	http://jask.powerforxes.shop/ldms/0a839761915d.exe
URL Status:	Offline
Host:	jask.powerforxes.shop
Date added:	2024-10-04 19:15:31 UTC
Last online:	2024-10-14 19:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	abus3reports
Abuse complaint sent (?):	Yes (2024-10-04 19:16:09 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:	10 days, 0 hours, 3 minutes (down since 2024-10-14 19:19:49 UTC)
Tags:	exe LummaStealer Stealc Vidar

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-10-09	n/a	exe	c349382da710f1dd44bb9b6f0bdd3189d902781cc227635f34f645663462cdbe	n/a	LummaStealer
2024-10-09	n/a	exe	9a5c70a5cff6982febcd92eb9c6f6fae8d1978a2cc2ef0dce7458546f8390a63	n/a
2024-10-09	n/a	exe	05df82ff0d22f9ec0d975d72571b1109eac2cab40a64a6d323dd2a5120a255d4	n/a
2024-10-08	n/a	exe	3afc97a2dc9182f212867655abf3e55e5c55f83cfba21dff22a46b5b836405e3	n/a
2024-10-08	n/a	exe	039562c8fc4bed39a15971aa426e2cb52492d9d81e34a14a779d96f3814a5dc2	n/a
2024-10-08	n/a	exe	5458d8d826214be4f3e4937e884007f24ac85118d7bfebba2eb2cb6d01d12999	n/a
2024-10-08	n/a	exe	809ce68996040e0f07d6e67ba013c849926cec165034b6e669299cbab57778df	n/a
2024-10-08	n/a	exe	b85b85d9cdffdbc60d1e09a235c6c3fe4b29f7579c90741c5035d73b59cd2363	n/a
2024-10-08	n/a	exe	72cb103b4fc63eb870f19e04f5fc04f20276fee3900a6ea9617afd9b996ee559	n/a	LummaStealer
2024-10-08	n/a	exe	267fe824d56b141d687c7f4892355edb1d282e5fcae172916ed63853b8535c2f	n/a	LummaStealer
2024-10-08	n/a	exe	42eef1aea01cd52ce83a59af77fe70f71fbc548698dca4d2af03a0b32bf3f015	n/a	LummaStealer
2024-10-08	n/a	exe	4a69b0742f47207178fb84b6470429b536a3b6250c37a248cff1b68444d26e63	41.67%	LummaStealer
2024-10-08	n/a	exe	6ca712075b8b085fb2b95aec517b4f353ea78fafa502529b0d7d6d7a9a4c50a9	42.86%	LummaStealer
2024-10-07	n/a	exe	b41206a89bfff3e00603b1b71a08cac3dfba7bfef8961b1e1fe417cb68ba3fb6	n/a	LummaStealer
2024-10-07	n/a	exe	a64751b555c1b6774c4e47e4956e622660a29ae6f6609acb50134b28299de428	n/a	LummaStealer
2024-10-07	n/a	exe	20e260e2c0b1fa7d96a4786bdfec8cdcb05a801f90f7c084fdabb32fef6f97a2	n/a	LummaStealer
2024-10-07	n/a	exe	40a41bb049fa99aa2ae699f44b665e355d5bcbc384dc2c45b15644a1e8085464	n/a	LummaStealer
2024-10-07	n/a	exe	76ed2d120a41f3e76dbb765661f8e592693582a46888a6e77e0aac7d0c9df580	n/a	Stealc
2024-10-07	n/a	exe	bea59030ea4dcfdd1351addf82eddba80938a239b49513e03ee64a2f9ae0556b	n/a	Stealc
2024-10-07	n/a	exe	95229d0f27e696d51f1ea42870af9c86131c5c6c45d84fb0c2a30ebca8aef23e	n/a	Stealc
2024-10-07	n/a	exe	7078052dfeed2647e9d7248e641da5f3fc70725f65afc3c9110b89eba29b54f8	n/a	Stealc
2024-10-07	n/a	exe	3108042ac2863ca5e76724efdb51129ea054adba550d11c248a3b7d2dd4dafc8	n/a	Stealc
2024-10-07	n/a	exe	cc763b12fa1d47f8f77ddee97565c0a31f8d33bda72c8f854f05625e72574ca0	n/a	Stealc
2024-10-07	n/a	exe	9c8711af757f45f047f2d47581330c77c4b78964128559c981935f31d7b40718	n/a	Stealc
2024-10-07	n/a	exe	14e38170e2a482e4e9215cc1570c419e5572a160d4f74d3d609cb39a2ab03cbe	n/a	Stealc
2024-10-06	n/a	exe	49d4f08d063bafba888f3c737a45462f2a325df431b6cd896477766f5f6ada5c	n/a	Stealc
2024-10-06	n/a	exe	16e2b8782205ce697013b7f938b415ca32b6d650e3ab8a33451a797c7644b588	n/a	Stealc
2024-10-06	n/a	exe	d274e33c6c06b75d244e018a6bdc716b98a3faeb2d6d23798643038a23d213a1	n/a	Vidar
2024-10-06	n/a	exe	0380c466565febc9304291246621f3ab363cef19976bc3c711939faa3eff3dec	n/a	Vidar
2024-10-06	n/a	exe	b1e274fed3b065dbbaab540f4e06c594115d9932376234297249738f2073a329	n/a	Vidar
2024-10-06	n/a	exe	5c3ead8ef6d760d5b0cc92a26e15dd71e3bc688e5380555c794ac68cf2144ac5	n/a	Vidar
2024-10-06	n/a	exe	2aa0617d62f74bdf8a4d5d7825141c41a055e3a13fd0d1d4ffc7baee04d35b12	28.17%	Vidar
2024-10-05	n/a	exe	07b4672c03910b7fd70b8e3653a2b4175cb65df16a8b238fcbb49f8362e24776	26.39%	Vidar
2024-10-05	n/a	exe	90ecd51220c129e03e1e94d510fc358b9c4bb539f4130caa79549ee99959f727	n/a	Vidar
2024-10-05	n/a	exe	f8213e2239db5de42b3a8c6a0dd69594e3c2789b74811ff35df7e5ba2e1023a0	n/a	Vidar
2024-10-05	n/a	exe	0587438a09245a2498325978112710f29433ca363f579579ffbe4a0a5fbbfc61	n/a	Vidar
2024-10-05	n/a	exe	9a3490c5327db85d7ddfb64e2d2fdeecc5402685c3c3899b2363a5e59e3ef3f4	n/a	Vidar
2024-10-05	n/a	exe	458ec87d86195f1a046ee708585802322eaaae262b07834790df6baaa80be7a7	22.86%	Vidar
2024-10-05	n/a	exe	ae87a0040587269150237086d4855bff4c07d051f5e8f30995d6314a0bfb6df0	n/a	Vidar
2024-10-05	n/a	exe	b10fbdf8715733af99f11a9e45d28e08782e8b4e16812e97a6886bded60b6f89	n/a	Vidar
2024-10-05	n/a	exe	30681616bbc6b8eff3a08e3a3d31ad91da37031c7ebf1a09f1b4ba57968bfe2a	n/a	Vidar
2024-10-05	n/a	exe	65a209e5a7d7a23f81d7e04678f1bc24c2dd5daee4606e72828c89af1f8b010f	n/a	Vidar
2024-10-05	n/a	exe	c55792bef18d22c17e2a1ce14e2a3c69ac142152a68321b985dafb5aa17d8dc3	n/a	Vidar
2024-10-04	n/a	exe	04f47f77c5800e6bfb5535239dbafd65de73503cc64e07f01f3b028ad20c6562	31.94%	Vidar
2024-10-04	n/a	exe	3569fa6da24869845ee0e6da07d76998d7484ea688968047fed9c1aca8c47d33	n/a	Vidar