URLhaus Database

You are currently viewing the URLhaus database entry for http://mojtabasedighi.tk/wp-admin/CuxC2wfrmfivh5_Yk5DvCs/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:122192
URL:http://mojtabasedighi.tk/wp-admin/CuxC2wfrmfivh5_Yk5DvCs/
URL Status:Offline
Host:mojtabasedighi.tk
Date added:2019-02-12 07:30:08 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-02-12 07:32:03 UTC to abuse{at}greenweb[dot]ir)
Takedown time:1 day, 0 hours, 16 minutes Poor
Tags:emotet epoch2 exe heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-121BQVvf1wR6Z.exeexe0c27d6dd7abfa118ce6876e0291c967572f6eed7d80f531fb3aec774f3336febVirustotal results 12 / 69 (17.39)Heodo
2019-02-12BBmO262tyXO.exeexe916df741bdcc5ca3959ca80bd5fac2e641fa90fc9e3d143cb9bee21d44ebfb6cn/aHeodo
2019-02-127q3WNDCt.exeexef6ab445b28b62c857a595c2cc6df9e6e2bcf549745fb7bb860033c024ea5f516Virustotal results 12 / 69 (17.39)Heodo
2019-02-12ivcCAEI6aSV_T.exeexeca00129519130310b12f3edfaaa6252f26e7a38f37a22358348302e07d7d9a88Virustotal results 11 / 70 (15.71)Heodo
2019-02-12KRW0XRrAPTS_E7stCNb.exeexee66098188f963fe9dbd7388f8c215d534dd228f27c3047d2f26f56f2a0d28378Virustotal results 16 / 69 (23.19)Heodo
2019-02-12hRwswj1U7eZ_q.exeexe51db1d1c67546f22fc8e9c8c7c681496b0b2ddde964003fe68ffdb5d67a44eaen/a
2019-02-128caWnX.exeexe8e6ca08bb52bc257f646cee309edea4c870fb0080cb130327da16534bcf21cf4Virustotal results 15 / 67 (22.39)Heodo
2019-02-12386LLP1H8.exeexee419d4d94fcb56e38d772654e67d5c1ed1effd51fca56cedb81f05de3c941fe6Virustotal results 15 / 69 (21.74)Heodo
2019-02-12SDw7BU8_A.exeexea5a59ec3fc730ac703320698429e14a283255ec7d9ba81b05025ac4028ad16b8Virustotal results 13 / 69 (18.84)
2019-02-12saim00.exeexe8de5cd7ee4f1a660c0abd3575ca99a0ecb4e1300b87b95827743484a8e59c371Virustotal results 13 / 70 (18.57)Heodo
2019-02-127wcbf00j2qX.exeexe508c6c02dbd2b09dc61754420a04a84ba3e32e73d0432fffda79f514b06a0779Virustotal results 11 / 71 (15.49)Heodo
2019-02-120rg_A.exeexe0f00d75d1510b18f008dc4ecac39024b6a870cf924043dec8c93f1d881efff97Virustotal results 12 / 71 (16.90)
2019-02-12PpamxtqiGaDx7ZF.exeexea2e5b159a953065203b07ed191875191fe16d9f165003dd958c912254b5210f0Virustotal results 14 / 71 (19.72)Heodo
2019-02-12rH9hrATb_eJLj.exeexeb776832237dd43103f27ee97370d26517f19b16e1ea332bf6f541cac0858f1f1Virustotal results 13 / 71 (18.31)Heodo
2019-02-12UxyQy7vfjRp_ET0KanLh.exeexeb6311f8c2fb752edf193cfc0121421d9a6c10589508b293fec2298ad1d82c4c4Virustotal results 13 / 68 (19.12)