URLhaus Database

You are currently viewing the URLhaus database entry for http://nsdm.cumpar-auto-orice-tip.ro/ldms/a43486128347.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3219218
URL:	http://nsdm.cumpar-auto-orice-tip.ro/ldms/a43486128347.exe
URL Status:	Offline
Host:	nsdm.cumpar-auto-orice-tip.ro
Date added:	2024-10-07 15:34:20 UTC
Last online:	2024-10-09 13:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Bitsight
Abuse complaint sent (?):	Yes (2024-10-07 15:35:11 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:	1 day, 21 hours, 34 minutes (down since 2024-10-09 13:09:34 UTC)
Tags:	dropped-by-PrivateLoader LummaStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-10-09	n/a	exe	6ad1c9a514dd9a2e2213d52f6c943451c9eb8f2a074913fa98c68d644fd3466b	n/a
2024-10-09	n/a	exe	c07557cc8cf976f2f0d093d193fa1901bd0010261555a7f3624dbead45ad8f9a	n/a
2024-10-09	n/a	exe	c0f89aed08873352dcd91f3d98f7284902a9fe0ea884ab1e66132f5d9c8837a3	n/a
2024-10-08	n/a	exe	ab7152a55aaf8d7ebd93a3261894eff791712f8dc205b653ce498a2f6ec20116	n/a
2024-10-08	n/a	exe	fd8c183d915e1412e491848342473fd26cb6e9543a1679acd15f85bb7f3dafa6	n/a
2024-10-08	n/a	exe	d6303a71ac1f6fd6ddeab804764cbcd46fd53f8ec8f258238dd60c0c1f2fca4c	n/a
2024-10-08	n/a	exe	3133ec7f157cc16c4096df439faceb6995e1e0b5ede3668eadb8cfc24fed98ce	28.77%
2024-10-08	n/a	exe	596667fd7f685701e6b4d0052b0996b9aaff795048cc1f3df2f8afc50a1e9f86	n/a
2024-10-08	n/a	exe	d847f1834d945e4ac199083136efa6baca021e30c995a78cc338e6145d7ff121	n/a	LummaStealer
2024-10-08	n/a	exe	ffeabfc0d6b33647e95b723947a3fa8e174a91ebc370f1a7528c74ed4d3193ed	n/a	LummaStealer
2024-10-08	n/a	exe	1fc5ef14137ea4754c446e675127bc1bb5f903e527b74b357f574bf47150a75c	46.58%	LummaStealer
2024-10-08	n/a	exe	f44d05e3b61f4690782ce7e72ff24209abeea31013e50dd8233ef9c2e5f3a6a4	n/a	LummaStealer
2024-10-08	n/a	exe	ca03b8d8929a2c6a1e94663b3b45a1d46b6e5002f13858c8dc05a83d5b11c607	n/a	LummaStealer
2024-10-08	n/a	exe	f5fc12afcc52c3dbee5cbb21b2d2181e6ab3cb731f8f057f8a4772ed3bc52c9b	n/a	LummaStealer
2024-10-07	n/a	exe	7781fd500447528bfa5f7064c773b07caaf1d13ba734aca1d10dc95d401c07fe	n/a	LummaStealer
2024-10-07	n/a	exe	1445f8dc16bf7f0e1c7b3d16bee14ef83e6170ab00a2381d509051c64617fbfd	n/a	LummaStealer
2024-10-07	n/a	exe	aac905a9cc4ed6041bcd5fc673d90634244ad3ea444bde85139c0bd2c20b0f17	n/a	LummaStealer