URLhaus Database

You are currently viewing the URLhaus database entry for http://malw.esalesin.com/ldms/9dd06d870941.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3221837
URL: http://malw.esalesin.com/ldms/9dd06d870941.exe
URL Status:Offline
Host: malw.esalesin.com
Date added:2024-10-07 18:46:49 UTC
Last online:2024-10-12 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: abus3reports
Abuse complaint sent (?): Yes (2024-10-07 18:47:10 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:4 days, 23 hours, 37 minutes Bad (down since 2024-10-12 18:24:10 UTC)
Tags:LummaStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-10-09n/aexe 743066ea0e49b30514250a6cf9a6b948448bfbcd33736f86a9ce5bfca5742dfen/a 
2024-10-09n/aexe d24beb0a542fd346792c418e4335421e928c4b758627d7afc61cbea53a24efc6n/a 
2024-10-09n/aexe eac4a4c26502159bb5547be88595ed2cb526cf8af62b91c59d420698253919bfn/a 
2024-10-08n/aexe 5b891de147033f98344b601a4316a905469c042d531e2b1dcc6600baeb955756n/a 
2024-10-08n/aexe 2c7e4233bf6b94bf8b04616a983f491a252134040927a4c56674cdd22f1f894bn/a 
2024-10-08n/aexe b4d9d5fef234772a724f297d5d755857ea7494e9c954f86b9a77d1847b7d0f48n/a 
2024-10-08n/aexe c8f2f4bcdeb1bd613a6232e5009132af4f25c6b893be091274117a0497a777b0n/a 
2024-10-08n/aexe 59f93df8c5a2db88950e25d1c201fd30491e7340f7bcc0e791cfe157352a0383n/a LummaStealer
2024-10-08n/aexe 4ac4adc2a79ccde058c44394503f22683fa23b0da813e1241a2650e3036bd48cVirustotal results 50.68% LummaStealer
2024-10-08n/aexe 486312413e95144ce8ad664387fbe664d5a02f627a18ce0f35cb6de1c834452an/a LummaStealer
2024-10-08n/aexe 652e3aa6257d354fc3f8093a65757557941ee488b6b7e4a3ac85662208f6d465n/a LummaStealer
2024-10-08n/aexe 700d28c943cd4e2e6e11f350964a4bf954c7fb32e31c829cda3b726bb24ab471n/a LummaStealer
2024-10-07n/aexe 454cc1022d742608516bc98da91be893556f594efcf036b837b4e214b40fdbc2Virustotal results 43.06% LummaStealer
2024-10-07n/aexe fa38ff2ff75e86f0c854fa7a6f24b8b76fd4252bd7e19e8f3ab810481dec0b7fn/a LummaStealer