URLhaus Database

You are currently viewing the URLhaus database entry for http://nsdm.cumpar-auto-orice-tip.ro/ldms/9dd06d870941.exe#d15 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3220042
URL:	http://nsdm.cumpar-auto-orice-tip.ro/ldms/9dd06d870941.exe#d15
URL Status:	Offline
Host:	nsdm.cumpar-auto-orice-tip.ro
Date added:	2024-10-07 18:23:02 UTC
Last online:	2024-10-09 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	abus3reports
Abuse complaint sent (?):	Yes (2024-10-07 18:25:16 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:	1 day, 17 hours, 13 minutes (down since 2024-10-09 11:38:36 UTC)
Tags:	LummaStealer Vidar

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-10-09	n/a	exe	743066ea0e49b30514250a6cf9a6b948448bfbcd33736f86a9ce5bfca5742dfe	n/a
2024-10-09	n/a	exe	7fff0d19b9da6425a745dd9f902d4380edb69c2fc4a7f3d87f8e6b90c9a2fa5d	n/a
2024-10-09	n/a	exe	eac4a4c26502159bb5547be88595ed2cb526cf8af62b91c59d420698253919bf	n/a
2024-10-09	n/a	exe	c5584fe00bcd34f9a44bca7fc3a44aba589ebbf20e886251a25d68a493091cc0	n/a
2024-10-08	n/a	exe	77d2dbd78954474edbd72082ffa8f588626978d069d96299c26877d58a6b4ad7	n/a
2024-10-08	n/a	exe	ae3a1d7a318cfa9e3041fd2b95f7e4ae2ea605c132eacb1d11429cec0d520fe5	n/a
2024-10-08	n/a	exe	4bd55d9184f65271514cb0d9e25e97831d2c46ef367b3a3e2c223b49001af26f	n/a
2024-10-08	n/a	exe	a4826bcd911476b7dd968dc241dfd24f0c35775395b871ed0a61c3a3bace6ca3	n/a
2024-10-08	n/a	exe	7a947f2289a0cb63b5dae2f4409db33fd73655f2102193b2f8b2e2bd75879bf7	n/a	LummaStealer
2024-10-08	n/a	exe	4ac4adc2a79ccde058c44394503f22683fa23b0da813e1241a2650e3036bd48c	50.68%	LummaStealer
2024-10-08	n/a	exe	486312413e95144ce8ad664387fbe664d5a02f627a18ce0f35cb6de1c834452a	n/a	LummaStealer
2024-10-08	n/a	exe	3e9bcffa53eaeed8668e7908a9a85b3c2a67608f7c3a1ceba896a8a1f45add76	47.22%	Vidar
2024-10-08	n/a	exe	700d28c943cd4e2e6e11f350964a4bf954c7fb32e31c829cda3b726bb24ab471	n/a	LummaStealer
2024-10-07	n/a	exe	31e8cafc14871bc98ebdb7b8f54d77eecb736f6f8f0d3546b2a364eec885a77a	n/a	LummaStealer
2024-10-07	n/a	exe	fa38ff2ff75e86f0c854fa7a6f24b8b76fd4252bd7e19e8f3ab810481dec0b7f	37.50%	LummaStealer
2024-10-07	n/a	exe	95c1d4d9870829c9fc9503cfb401c952101cf9d741d1e3f50f15164179140406	n/a	LummaStealer