URLhaus Database

You are currently viewing the URLhaus database entry for http://nsdm.cumpar-auto-orice-tip.ro/ldms/f2e7fcb20146.exe#sp_sl which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3219203
URL:	http://nsdm.cumpar-auto-orice-tip.ro/ldms/f2e7fcb20146.exe#sp_sl
URL Status:	Offline
Host:	nsdm.cumpar-auto-orice-tip.ro
Date added:	2024-10-07 15:21:05 UTC
Last online:	2024-10-09 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Bitsight
Abuse complaint sent (?):	Yes (2024-10-07 15:22:07 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:	1 day, 20 hours, 0 minutes (down since 2024-10-09 11:22:14 UTC)
Tags:	dropped-by-PrivateLoader LummaStealer Stealc

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-10-09	n/a	exe	ddf3c590d0cd0bf3f871c5baa3a84e14428cecf3a929fd2c40d483e3252d45ff	n/a	Stealc
2024-10-09	n/a	exe	2d249b028faa0303e3fe89f2576ce24d53e6763b4545fe91bfc950ab261637f2	n/a
2024-10-09	n/a	exe	20d347c984cc29d7bc7de25c5170e7e7d0ce69636bc21bfbc06f6fbe9713c053	n/a
2024-10-09	n/a	exe	a5d3f4eb5f1b7c5b6158de4cf0890711018581e4b914a0644af76e2abcdf749e	n/a
2024-10-08	n/a	exe	48c1073f759732f8f5618c041fc702b6ab0c55aa2470710587ff98237ae801dc	n/a
2024-10-08	n/a	exe	86ba832d528bd45408e0cf0561c91c193f16cd60d3d7997db9b62d7f3cab3bef	n/a
2024-10-08	n/a	exe	dcbae6355c7cefa0c340c805cd628a0b03b63a769f2c469e62a37f67959c69f4	n/a
2024-10-08	n/a	exe	dcfd1ffd6098558a62e54890ddc019227f9973676712142c1dd50ba9e4996f39	n/a
2024-10-08	n/a	exe	889baf05ac65ac43001c29854019a6583474d2a020ee340440eab42c2ac201a7	n/a	LummaStealer
2024-10-08	n/a	exe	a4b5361cda81bce7f77a089946579e55c5e7f4d3490eeb717a24b2df5046b240	n/a	LummaStealer
2024-10-08	n/a	exe	38c1660d5da12df35c15a642266247923cdc4c564e80f6d1d729f216554d991a	n/a	LummaStealer
2024-10-08	n/a	exe	dbb939fb8b11e194fc8b03ca72644397e99ed91ecf03995eb7b9e0d6ac3c907d	n/a	LummaStealer
2024-10-08	n/a	exe	e274d51ea7826fd0eb19f2b12fdf5f6baa720d599229ddf9aac7e802a059a4e6	n/a	LummaStealer
2024-10-07	n/a	exe	08c820a89d527454157dc1d5921e66679f6c99cccf86b2ddb9af45c56636bbc0	n/a	LummaStealer
2024-10-07	n/a	exe	865f7d5debef700e7c9c3f0ef5b8f419d45b20af8610a9db5b1a98cca57b85ce	n/a	LummaStealer
2024-10-07	n/a	exe	33105a1685207694a3de20a03c82524fe8cd7f0f19fa85ba5d88d6b4d8457660	38.89%	Stealc
2024-10-07	n/a	exe	9714d301c8b96c7263dea4a36ddbdf74896d31f648d2836fa2d2642dccca17e8	n/a	Stealc