URLhaus Database

You are currently viewing the URLhaus database entry for http://kale.amwebsolution.com/ldms/fedf8679e8d2.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3221245
URL: http://kale.amwebsolution.com/ldms/fedf8679e8d2.exe
URL Status:Offline
Host: kale.amwebsolution.com
Date added:2024-10-07 18:39:53 UTC
Last online:2024-10-12 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: abus3reports
Abuse complaint sent (?): Yes (2024-10-07 18:40:16 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:5 days, 1 hours, 16 minutes Bad (down since 2024-10-12 19:57:06 UTC)
Tags:LummaStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-10-09n/aexe 6b032a89988a3de8005371562c8d89e1e951171eb84e40eaecf718a5a1b944f9n/a 
2024-10-09n/aexe b05eb61e8300da88984dd9692b69489b217a6485b0c2b54c8757aff3755055c2n/a 
2024-10-09n/aexe 2b9dc49a20ada5b22a2e20d3f06a44064c4f42dda488a87dfc43e5736e458629n/a 
2024-10-08n/aexe 4e279b8a2d0b73cc8b05409ddb909f4e5f3df19a23fc2fc82cebb473fe204261n/a 
2024-10-08n/aexe 0bd0c02701c4cb4c6fa64a13f5fbfeb840c2ec9988383d6364ad029953b13b57n/a 
2024-10-08n/aexe 22e3d02c1bccba0b38b1830c287670a62ba34aa0638203c51bd6966ac78193fan/a 
2024-10-08n/aexe 723d9c81ff68cc09506076d91cad38dca5a9ac7c756c32bfb66f0bd3ee4c742bn/a 
2024-10-08n/aexe ae925cbddc9cc9006173736c8bb083f9029c73fb5e8f4f335d2eaa62e01ab23bn/a 
2024-10-08n/aexe 8fcdb3be80a5ca82cb30f3b56f261254025fd509b2413d9c73771ef3d04dc519n/a LummaStealer
2024-10-08n/aexe a9573fc6aee8c95f0972bb4f600cc694f762cbef2fe95abadfbb174abe341d9an/a LummaStealer
2024-10-08n/aexe a9573fc6aee8c95f0972bb4f600cc694f762cbef2fe95abadfbb174abe341d9an/a LummaStealer
2024-10-08n/aexe 57598666df142334ce5ddb79d6de4ced11415488a07159c53e600b36a3130a99n/a LummaStealer
2024-10-08n/aexe d4fe85acd8e33f62dccbe9967d0572baf282e86af5af56a07913a2414f13aa2fn/a LummaStealer
2024-10-08n/aexe c1825014c69aa430f2c108e0ab1ed9e13225230e0ab52a435dd578991a901a5bVirustotal results 43.66% LummaStealer
2024-10-07n/aexe 96e031c2c24a0754ffaefb8f8c8dfba14e7a2185c79aff2fd745d01a56ea9886n/a LummaStealer
2024-10-07n/aexe dffda48740b0625c2f9b24f5019590608b7dbe67cc4903431023b406ecf924c4n/a LummaStealer