URLhaus Database

You are currently viewing the URLhaus database entry for http://malw.esalesin.com/lopsa/66dc99a997229_VirtualLibrary.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3221550
URL: http://malw.esalesin.com/lopsa/66dc99a997229_VirtualLibrary.exe
URL Status:Offline
Host: malw.esalesin.com
Date added:2024-10-07 18:43:48 UTC
Last online:2024-10-22 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: abus3reports
Abuse complaint sent (?): Yes (2024-10-07 18:46:10 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:14 days, 23 hours, 43 minutes Bad (down since 2024-10-22 18:29:47 UTC)
Tags:LummaStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-10-22n/aexe 730737a95159a7a336670f66a5163ca757b5696349d9c38282022dcf84fef2aan/a 
2024-10-20n/aexe b9a630d8b0354cddb72a1159b5086bb0d0616c196140a51ab9b304ee9a94f398n/a 
2024-10-17n/aexe 787368d528c0359804e95a038dc5951960842e5af94703e7339aa496a8874bb2n/a 
2024-10-16n/aexe 26f3bd0d943801b8e5aa2ca169a997455fa4a9f47570c6995fb0785ecc1e02e2n/a 
2024-10-15n/aexe 58585ac1edb39046f47b4a06f5c6bf206b00c91944d7eb5eab7f11c7fa97f3dfn/a 
2024-10-13n/aexe 990fe2faadf86d233c7ce570d0c8cfe7d5046663b61c195b09c04a6ab4453bc4n/a 
2024-10-13n/aexe fe4b548e786cb3e83608cf861e370b31e8040313222b9208246f2ae6af50a878n/a 
2024-10-11n/aexe b66617eadca3c4ac30e0588153fe51196d4cdea40f27aef938a953dadaf47273n/a 
2024-10-10n/aexe d9828a06b608406bb14d63e7cc9acc57e003c79d380fcb88744c47225f04c1can/a 
2024-10-09n/aexe 8733a8f40e53603a6b7c889f1dcaadbcddc035634a2816098bbd9f1f3a58854an/a 
2024-10-07n/aexe d93fbc1550c46af5b5828fa362e36f7ffe36421ac1bb336533e29559f28cfe74Virustotal results 78.87%LummaStealer