URLhaus Database

You are currently viewing the URLhaus database entry for http://jejakdesa.com/VLHgib2Jc/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:122087
URL:http://jejakdesa.com/VLHgib2Jc/
URL Status:Offline
Host:jejakdesa.com
Date added:2019-02-11 22:34:06 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Malware domain
SURBL:Not listed
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-02-11 22:36:02 UTC to noc{at}apik[dot]co[dot]id)
Takedown time:14 hours, 22 minutes Good
Tags:emotet epoch1 exe heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-12ce2iv474.exeexe82fa35d4f8552c453b7ae2603738478cc22a266e687e481d02473ace810c7e1aVirustotal results 12 / 71 (16.90)
2019-02-12cl3dTpOY.exeexe650a8a0cc93ceda516f5c606c24ca5ac813d9ad6ac2d119923ce8cc4ac6ddb73Virustotal results 13 / 68 (19.12)
2019-02-12RYFa24iQ.exeexe175d198b087d786de68346c7e5d52f6ba82e4c4402215b810712c413bc197bdaVirustotal results 14 / 70 (20.00)Heodo
2019-02-12ELCcjj2onHW.exeexe270b96b10c2063d59527b1c205b08958dfaa0ad4a705513efdc8632ef4789e8aVirustotal results 14 / 70 (20.00)Heodo
2019-02-12e0G6RetU.exeexed8b837038a8d5cae6ddf9eb6ebbb0e9df7e4a3205aea06d6137c89bbec0b25d9Virustotal results 13 / 70 (18.57)Heodo
2019-02-12pg8w6PI4Y.exeexe6c9767df14e250159bea02cd28aa269e4c26856e99813aa84d7879277fcd833cVirustotal results 11 / 68 (16.18)
2019-02-12s0ARlRxgI2.exeexeac72a3e93b5ce35b4c756c2fadcf404c857cfbbfcf58e44673ffb07ff615574aVirustotal results 13 / 71 (18.31)
2019-02-12IP7Tejru.exeexe6c26634fe9fb17a09cba226175856cd5a6b6c75e595defe4b923c11941ed383fn/aHeodo
2019-02-12BOUVPfXQE.exeexe6504992aaa318be60ce362b05ec7938a020936f850edf9ea6b1b06cce7ea1a23n/aHeodo
2019-02-12R5yMvT3tTXoL.exeexe480a280fce534929d8ef4dd01c062ed394debd3ca261d69399a8efd4d06df755n/aHeodo
2019-02-1205BpZz2QdSfs.exeexeb9edd830ae324a87bc2317129a6103fa815c1085db1e88bd9813c881e678c864n/aHeodo
2019-02-12D3m6ttfTXYGa.exeexec8a306e1bad8c3d7dd20b9f4c2d33cf8959680688964f59fb353af25917c342cVirustotal results 13 / 70 (18.57)
2019-02-12RNhsju0HIri.exeexea226f16c1cac5c6939d9ff9086881577e1956b6328e195dea5b9503a921c8004Virustotal results 11 / 60 (18.33)
2019-02-11NwpRf0Onb.exeexe4b6054d74f509ab06e8f8cdae79d8928ffd1d8228e7ea3bd3a4ba801ec5d2b8eVirustotal results 11 / 62 (17.74)Heodo
2019-02-11Ezx1x5It2Zf.exeexeb218b43a9046b765fbe0595809f483d3b1537c7d353da93bf0a746af020d92fcn/aHeodo
2019-02-11vpsWC8vBt4.exeexea39ec1243e8010301a27e424cf0a1d7347f5c101cbc7752bcafe6999315439abn/aHeodo