URLhaus Database

You are currently viewing the URLhaus database entry for http://proxy.amazonscouts.com/ldms/a43486128347.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3223276
URL:	http://proxy.amazonscouts.com/ldms/a43486128347.exe
URL Status:	Offline
Host:	proxy.amazonscouts.com
Date added:	2024-10-07 19:09:30 UTC
Last online:	2024-10-14 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	abus3reports
Abuse complaint sent (?):	Yes (2024-10-07 19:10:16 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:	7 days, 1 hours, 1 minutes (down since 2024-10-14 20:11:58 UTC)
Tags:	LummaStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-10-09	n/a	exe	6ad1c9a514dd9a2e2213d52f6c943451c9eb8f2a074913fa98c68d644fd3466b	n/a
2024-10-09	n/a	exe	1a068d24b243557ed75d71e6d5866ca1a1d6a63fadcd672ddec9e836b83444d2	n/a
2024-10-09	n/a	exe	f5378f0beb792d72f752ad36b3e9432f3303cd849fade3f68c811d761d23756a	n/a
2024-10-08	n/a	exe	ac6ca269ea1fa448c794248051a1473e90208df3f290bfde8371f8f23fea600f	n/a
2024-10-08	n/a	exe	d6303a71ac1f6fd6ddeab804764cbcd46fd53f8ec8f258238dd60c0c1f2fca4c	n/a
2024-10-08	n/a	exe	3133ec7f157cc16c4096df439faceb6995e1e0b5ede3668eadb8cfc24fed98ce	n/a
2024-10-08	n/a	exe	3ed0b5c68e92806325c5fe1813b96938d7666f1d2ad86e28b6a0d1beb0c57ed3	n/a
2024-10-08	n/a	exe	fa7883fae6e8a981551d097bd4f6c8cf0d9bba25e9189b422baf6531a5e970be	n/a
2024-10-08	n/a	exe	cdbbbbf877458ce603599fb9f9f445eac37a00dc67d065f141485a8d9f1df644	46.30%	LummaStealer
2024-10-08	n/a	exe	1fc5ef14137ea4754c446e675127bc1bb5f903e527b74b357f574bf47150a75c	46.58%	LummaStealer
2024-10-08	n/a	exe	f44d05e3b61f4690782ce7e72ff24209abeea31013e50dd8233ef9c2e5f3a6a4	n/a	LummaStealer
2024-10-08	n/a	exe	93bd0a8b49c37ae06b2f371f4fd1be25228033121411ee4b19bdf932396e94ec	n/a	LummaStealer
2024-10-07	n/a	exe	ab39cac07069e4508158087ad82cee09b55d9bebe56ed1b9670863d90f1e1edf	n/a	LummaStealer
2024-10-07	n/a	exe	5639a11bef6a2b25409cbdb97cd1f36601a334a1aa80b7009043cd88af0913a4	n/a	LummaStealer
2024-10-07	n/a	exe	4492e82e8950e3def87a5de4668300eb7cad9daf3c4eb2c85d9c98afb4f931a8	37.50%	LummaStealer