URLhaus Database

You are currently viewing the URLhaus database entry for http://proxy.amazonscouts.com/yuop/66bf6d1018bb1_deskman.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3223680
URL: http://proxy.amazonscouts.com/yuop/66bf6d1018bb1_deskman.exe
URL Status:Offline
Host: proxy.amazonscouts.com
Date added:2024-10-07 19:14:54 UTC
Last online:2024-10-22 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: abus3reports
Abuse complaint sent (?): Yes (2024-10-07 19:15:16 UTC to karina-rashkovska{at}ukr[dot]net)
Takedown time:14 days, 23 hours, 5 minutes Bad (down since 2024-10-22 18:20:16 UTC)
Tags:GoInjector LummaStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-10-21n/aexe aa3ef3eb653f63ed49c8da60ec5d75130bdf1550e9e5344967e8e08f2328b428n/a 
2024-10-20n/aexe 8770b9e571b5acf3d7234c2f3bf7f534be7bfa34955d1c3a33d4c7e4a59ce6bbn/a 
2024-10-18n/aexe 3152036ce6411545e784eb312c8698b4a81b48401dec8208e0f18e0dd248eb60n/a 
2024-10-17n/aexe 9fccab7cd7fc04c7c8990342aa352ceea86408486be8298335d9d279505d959dn/a 
2024-10-16n/aexe 501fb91bf6cf4b76d61ce6547de1c4ce25555421ef62b5ba03c659df7806523fn/a GoInjector
2024-10-15n/aexe fbe499604a87fd96db9a5a95a08132fd0cb4715d3c8a0c955fb9bef50f9a9933n/a 
2024-10-14n/aexe 3540d2c87975a101d1c2e71f8ad18d1421af63aa72385d2f1d21a3373039132fn/a 
2024-10-10n/aexe 6ee12e6c510416999f63beb460043d0fafb3608c756e5392e44bd850c1fa4821n/a 
2024-10-10n/aexe 5a7ddfa699a8b76895a4ef08260a4fec71ce6d15cab5342c1c07955725e11263n/a 
2024-10-08n/aexe 556a5378c92a24ab3767605cee61ee52a4c3c146db87c971d8c879913ce81fd6n/a 
2024-10-07n/aexe bcad9c21500bf00e52eba9d790a68507d4027eb31a16d40ff41b99de11d7cd54Virustotal results 60.56%LummaStealer