URLhaus Database

You are currently viewing the URLhaus database entry for http://males.mugutu.com/ldms/7f3c2473d1e6.exe#sp_vid which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3216299
URL:	http://males.mugutu.com/ldms/7f3c2473d1e6.exe#sp_vid
URL Status:	Offline
Host:	males.mugutu.com
Date added:	2024-10-06 12:46:07 UTC
Last online:	2024-10-09 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Bitsight
Abuse complaint sent (?):	Yes (2024-10-06 12:47:08 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:	3 days, 2 hours, 1 minutes (down since 2024-10-09 14:48:37 UTC)
Tags:	dropped-by-PrivateLoader LummaStealer Stealc Vidar

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-10-09	n/a	exe	53e0a2da42ca576d96a70ce70f1b1817230456a4e66e6ae58ed4167c260be391	n/a
2024-10-09	n/a	exe	4306100cb31ae0fca779e56963ef5f327a428954a815d3b9424b608e6ec3a8fe	n/a
2024-10-09	n/a	exe	6727476baca4acfa82920ef3bc360a300bf5137791ebcf6d195a852a37bceca4	n/a
2024-10-08	n/a	exe	a0f1b9c4a6fba64a6f7be086ff71afbd8ee8151471884b8e0779f698f4bfb834	n/a
2024-10-08	n/a	exe	d85f32606404c77998bb0eb875fbd5091159d823babbca22b3afd94335f0a0c5	n/a
2024-10-08	n/a	exe	e1f6dec156086574076959eb94af6cad8ed9e335ede720e574170819bc6c6278	n/a
2024-10-08	n/a	exe	ae4652c4433d845665b44f36ba2e4188ca5e33a1df4ea3183af5f3cfbc0d3614	21.92%	Vidar
2024-10-08	n/a	exe	c5c589750dd358e0a11d017551f4889665ccbff04cebbc5448f71b01416e143d	n/a	LummaStealer
2024-10-08	n/a	exe	85c5eb205bffaa98daaa261a17c8f38e13b0fb2fc0e012ffa19af3d4ab6b4813	n/a	LummaStealer
2024-10-08	n/a	exe	2c90b8d93d2a2cdfcbc024099dc866acd34a89c1f4aa597c4f21ab2061a5e2b2	n/a	LummaStealer
2024-10-08	n/a	exe	efe009cccba55e069392a76e833c36984fcee4e86c16a48f0e4dbcfbb56852b5	n/a	LummaStealer
2024-10-08	n/a	exe	c60e631b614e15e7c025f011836997fd34867ab89d3260b0b50727bf651c8c4c	n/a	LummaStealer
2024-10-07	n/a	exe	8bd9125f50c5d4050780972bbe7fc81253f866e902ab965a9412868138f5a7e3	n/a	LummaStealer
2024-10-07	n/a	exe	28e5db508bbc80a7d9e5900aeb15d8eab24e241dd1e9279abb618fe980672375	n/a	LummaStealer
2024-10-07	n/a	exe	0e0eef4dc62fa4388dbc40cd4d7738942abba54bd6808fb6ebb4926d4c0de390	23.61%	Vidar
2024-10-07	n/a	exe	f1bedbd519ad0e2f211b23fbed256dbf274e72c591d6133a77d712f6a894ea6f	n/a	LummaStealer
2024-10-07	n/a	exe	a65dadd40bf16ea07c92d07b0cd602390866f4a9ffb6478b114bcf6ffd131d26	n/a	Stealc
2024-10-07	n/a	exe	094b2c3b591cd812b4890ea0e2c7c79658b6452f336925f1e3a1027f86b4e31c	n/a	Stealc
2024-10-07	n/a	exe	a2c455eafbdf70154e8696e9a333994e7f3819e993b2fead43069783851f1570	n/a	Stealc
2024-10-07	n/a	exe	058ff02c16fc7e9f9af959170c7155c9d37ac723b824c1546e404734f535a3bb	n/a	Stealc
2024-10-07	n/a	exe	cf080ecf1b49f41b41f504264e805887b80f739d596971093afeeb9254761da9	n/a	Stealc
2024-10-07	n/a	exe	998db1093fba6e39dd6baa067ac2981451947dda769312d43d1c6c1cadbda3c3	n/a	Stealc
2024-10-07	n/a	exe	f655c42917dd0c1287bcf47561c4200cb79c6240f41492f675093077d7a2e350	n/a	Stealc
2024-10-07	n/a	exe	f754c5c7f44951ec07e037b39af702849b07998f37edd249d54ead17fce888a6	n/a	Stealc
2024-10-06	n/a	exe	c97981f98cede375ca3c46325450be958745ec0bb0d145ef95dc4fac450094b0	n/a	Stealc
2024-10-06	n/a	exe	bb86fe00919919ed886033e7006607dd0180cdcb3a7a1bdf6da15810c19cd22a	n/a	Stealc
2024-10-06	n/a	exe	db30ea9c5367e95d5aa347e3c821b690343f593fdc257e7802fed7e14df4cdb5	n/a	Stealc
2024-10-06	n/a	exe	671191f9920d167f4f39d106093804de305c34e6853264dc8ccf1bcac6f6bc9b	n/a	Stealc
2024-10-06	n/a	exe	cb521bcf0eedc08f1e79613098dea9380b2e8bb2d7a727b9f400c3dda1ce1dc8	n/a	Stealc
2024-10-06	n/a	exe	6951e56ee86f60d39de58fb2f898f079b6ee6cd202b62246d89167b94a4d8015	n/a	Stealc