URLhaus Database

You are currently viewing the URLhaus database entry for http://nsdm.cumpar-auto-orice-tip.ro/ldms/0a839761915d.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3219728
URL:	http://nsdm.cumpar-auto-orice-tip.ro/ldms/0a839761915d.exe
URL Status:	Offline
Host:	nsdm.cumpar-auto-orice-tip.ro
Date added:	2024-10-07 18:17:05 UTC
Last online:	2024-10-09 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	abus3reports
Abuse complaint sent (?):	Yes (2024-10-07 18:19:13 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:	1 day, 20 hours, 39 minutes (down since 2024-10-09 14:58:59 UTC)
Tags:	LummaStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-10-09	n/a	exe	c349382da710f1dd44bb9b6f0bdd3189d902781cc227635f34f645663462cdbe	n/a	LummaStealer
2024-10-08	n/a	exe	2efee83fd5a0d65b52dc46862104e91bf32ecb35389500eb7648aba19d28f903	n/a
2024-10-08	n/a	exe	e733f8b55db7c6c38ebcc532587f3aa23b97ffac29ce32e92b1dc443c96d46e8	n/a
2024-10-08	n/a	exe	b287217951ce2010c45565fe7ec1cf4b1b8ac3a8afbf89b047fd687e5ff1ebfa	n/a
2024-10-08	n/a	exe	e626ebcdb8b1dae64b2b19b1d71be9c1137b50fd4a11dce857fc28e62556723f	n/a
2024-10-08	n/a	exe	b3f051b0f0b94ee5b57603441ee0f3bf54950529e350f3015f216f5fccf1dacb	n/a
2024-10-08	n/a	exe	a22158d2c322c640310d2c2fe436bd57d1bb99ee239c95b44989d64290c7dedc	n/a
2024-10-08	n/a	exe	b798c43dfa0fac3d5016fc6f0c4ef08b55e0b808e09ebc5491ba05b585c1aabf	n/a	LummaStealer
2024-10-08	n/a	exe	030d94c733fe621c85edaa0d8aed658f229aafdec727794291e2146f31327684	49.23%	LummaStealer
2024-10-08	n/a	exe	41d8eee8903a487fb610c5ceafd16fe945fbdc0d0a9c3f781db0742300e969cb	n/a	LummaStealer
2024-10-08	n/a	exe	e1c963d149c32de346ca067dd79bce2443e3221d571f23a66744c7d96e7e4219	44.44%	LummaStealer
2024-10-08	n/a	exe	fa2f30ec45726a1b424a30d741213a1c3164db6e0d37e5215f3249d41d3eeb11	n/a	LummaStealer
2024-10-07	n/a	exe	d4c6cfd25d667b7371d702fddfb961a15bddaef0974b7bc75bc061bd6e7de0c1	n/a	LummaStealer
2024-10-07	n/a	exe	e87c74da1adce6cb579ab6091003234ff247a128fc5c5800338f114ef0ea66aa	42.25%	LummaStealer
2024-10-07	n/a	exe	9969aaab779a142c5c541dda8102cec226ecae27fb2b736bdd85e46149f5801a	n/a	LummaStealer