URLhaus Database

You are currently viewing the URLhaus database entry for http://journal.tgeeks.co.tz/cxGnVivqulUU/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:116873
URL: http://journal.tgeeks.co.tz/cxGnVivqulUU/
URL Status:Offline
Host: journal.tgeeks.co.tz
Date added:2019-02-04 15:01:08 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL :Not listed
SURBL :Not listed
Quad9 :Status unknown
AdGuard :Blocked link
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-02-04 15:02:03 UTC to noc{at}eonix[dot]net,poc{at}eonix[dot]net)
Takedown time:3 days, 23 hours, 12 minutes Bad (down since 2019-02-08 14:14:18 UTC)
Tags:emotet link epoch2 exe heodo link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-06i87HlPy_rBwj.exeexe 9eea440707c5034315540957c9aea610c17c189da2c6263d5c6205915ed34942Virustotal results 23.19%Heodo
2019-02-066IHP8w_2.exeexe c0bd5b630ec8d863d92f6f2770c78289342749b2e2ceb0e8712ed70fa0b91c77Virustotal results 42.65%Heodo
2019-02-06BiY9RRVbGQvI_vws.exeexe dd4d9984ad521b7d31faf04ab1c2e9dd1a4cff14caa802632ced139854d23e5fVirustotal results 28.57%Heodo
2019-02-0610Otf.exeexe 7ecb275d7bdda39c719d5b721749c4ec6d96669bf3d977914fa4f108e530ae07Virustotal results 28.17%Heodo
2019-02-06Rg9XRNIk_oAAed0.exeexe 1eb4fc2a04de65d1fb77e0ea61c60e1779aea6aebaea1d463823c1ff554b63beVirustotal results 28.57%Heodo
2019-02-05E2A44Abdezuf.exeexe 32af9592767d5c76f87bfde4474659234bd883d368abc65d45f25ddb9d815e08Virustotal results 20.29%Heodo
2019-02-05gAkF1kyoVOqARtO.exeexe 1d82468a72fa8b17e2b20f0766c507b1b5ca5522ffb350d4af149359830df5a9n/a
2019-02-05tzx2.exeexe d6cbdafc1b42169f01874d24a4e626d515ab876f0107ae731659c74db44f599bVirustotal results 26.76%Heodo
2019-02-05fpx4XjmYlWTVT7Cl_F.exeexe 0151854c4ccd1ed49a5a9701b21c7b3c878528b2f046a51dcb55e2aafda1d8aeVirustotal results 30.99%Heodo
2019-02-05zgnEW9.exeexe f7270c450f6fc019c5111c1a539c71a91408e52cef9745ed4bce7688e2feb30cVirustotal results 22.86%Heodo
2019-02-05ZCQ9OTxmnn2I_Cf6NLh8y.exeexe d0b3317ebe1711f6fa1b5a95b753e80208af2d98d940c12db006a135119968e7Virustotal results 26.09%Heodo
2019-02-053BqN_sopwCyABa.exeexe 82bf7043addac1ecaa6592ef6c9e74f6dc999fb16a1a2b34848c32ab29258148Virustotal results 27.54%Heodo
2019-02-05Of.exeexe cc94a24bc6333dc777c1956d0976c4bf1da2ecec5473df4ff1de297761a3a524Virustotal results 22.54%Heodo
2019-02-052gcDBC4spqO.exeexe 3b113249a97b7136177996bf27a310e7a6439ecc122e1054d3e996154413e959Virustotal results 19.72%Heodo
2019-02-05vG1B7k.exeexe 409bda60dd3dbefcd5d916f39fc23bbc194ac441f1a474cb41874e953f5b94aaVirustotal results 20.00%Heodo
2019-02-05ai9oa7hmIp_tNHHU3RWa.exeexe e507cc96e5117f024c40b4b8c06bd670f3386591fe628d9cc7fffc67bd7be61dVirustotal results 21.43%Heodo
2019-02-05IlkcRpXsLf.exeexe e1ddf0f1ae608d04ca9ffc25d611bb084bf2aee3422241c30b8ef438adb84a5cVirustotal results 25.71%Heodo
2019-02-055HBOb8CMTtV_9a5bvsekG.exeexe 21c98ec242d970726ba611f17c1510d604341fe944aa18f94ebaedc2c9fc99e8Virustotal results 18.57%Heodo
2019-02-05TtTUWJCelgqOD_d.exeexe a12e6a57bafb85c0d8eeb15d71697b09be4a0222ed897fc05b573d57a2593ac2Virustotal results 21.43%Heodo
2019-02-04OLZhN.exeexe b5c1dbf4547368a5b7f63f3cb51e9e757757bf64a11b350ad5a9bded1a825619Virustotal results 20.00%Heodo
2019-02-043RnbLyAvsPagWqy22.exeexe 1721cdd392d1793d7bb04f1853c05c00ddfbeb1c912e3987df328dfe0cba86dcVirustotal results 21.43%Heodo
2019-02-04OgSwZfTL2uZDQhz.exeexe fa9026b3a747776918319e6a4905bd98d860ed0b91ef6a8dde1ccf71c7ab9c70Virustotal results 21.43%Heodo
2019-02-048jQIC9V6MPj.exeexe 667d33ae21ef57c08c9cde2371802fe32d63e789e84db21c179bc91a35351582Virustotal results 24.29%
2019-02-04TS5RNz0cILw.exeexe 0eb81b6c78fa28a89e6922fd0bced8cbaf5947b2232f8aea2c2716af91044c8bVirustotal results 21.74%Heodo
2019-02-04wY8bJ9dCKN_oMD.exeexe dccf5da600c88d5b8a814e6a85db626299174cc06f6b5cbc28f66d07e945ade2Virustotal results 17.14%Heodo
2019-02-04SJX3fUSwWbC.exeexe 53715b8ac1f2eefc6eb77c977f565c6add931584d67f3ef3f00b0c469c96cf5aVirustotal results 16.90%Heodo