URLhaus Database

You are currently viewing the URLhaus database entry for http://wujingwei.com/yis24.com/NH0/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:159786
URL:http://wujingwei.com/yis24.com/NH0/
URL Status: Online
Host:wujingwei.com
Date added:2019-03-15 05:23:07 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Abused domain (malware)
SURBL:Blacklisted
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-03-15 05:24:02 UTC to admin{at}pangintl[dot]com)
Tags:emotet epoch2 heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-03-16QTkQ.exeexe45492e45d3eaaa819247ebc8a32c105e3d4ea20e2e1c8b8ee41bc89f2754dc69Virustotal results 23 / 66 (34.85)Heodo
2019-03-16OceJ.exeexe2555a65a48cf7677481cbca5cdf8f9b72d8c10b5a41b55a4f3441bc8417ff8fdVirustotal results 23 / 65 (35.38)Heodo
2019-03-16PExF.exeexe4fb593f049c6d0b98c024c90d551cb35c6b57076a46c44d52de089f4d0d3a244Virustotal results 21 / 65 (32.31)
2019-03-16qN9.exeexeb46bc9d558c8d4fd167b76140f5c693ecbadb2e64a5dfdf0293687fb76132f43Virustotal results 23 / 64 (35.94)Heodo
2019-03-16DQF.exeexe5854bbacbaaa3d283a65f41f994419d17de1ec771787d532d4dc1171ef66a127Virustotal results 27 / 65 (41.54)
2019-03-16hq8SQv.exeexe8eabdeeb94baad11dc67a520677abd7469f7b02656152c50e89f456362c5964cn/aHeodo
2019-03-16KAj.exeexef8514b465842b9251e0ccd0a0e6f15f088862a3d78ff8d4d660119e7b266ef99Virustotal results 24 / 66 (36.36)Heodo
2019-03-16nkRg.exeexeca13c2bd710600f84cd80d7dae41ab11dc12cb2c1f20ecb3f097c5460d8410b7n/aHeodo
2019-03-16330E.exeexeff3b32b1768c2340e15d4a4589f34bbb99b364b8e1e6e95b19a2c5815c59c65fVirustotal results 25 / 70 (35.71)Heodo
2019-03-16wly.exeexe0739b26d42c1687b6963289a4df4fc920d01975b13b12f24b324a1b04ebbec9aVirustotal results 22 / 67 (32.84)Heodo
2019-03-16jv.exeexe30caff02685f18650c76826e2ba9ab28cacff51cadb0d244050ebce84650c2c1n/aHeodo
2019-03-16h8TDg.exeexe62dbe5f71cf88ded61fdc41d6ca2f20201b73ae78d414adde9995c4a982a8499Virustotal results 23 / 65 (35.38)Heodo
2019-03-16Bj6.exeexe0b696dfc24ed6b347df510f6a2933d02a00153442359b761884847fbcbaf6f47Virustotal results 22 / 64 (34.38)Heodo
2019-03-16tbZ.exeexefd32601a79a23919b16818d89934b9d0ffedf5596f702d94f23d2b3cc8064754Virustotal results 23 / 67 (34.33)Heodo
2019-03-16zGhC.exeexe520688507b249d9c1929226a354faf7b121fcead8f895b04495f6f3c9d2501e1Virustotal results 24 / 69 (34.78)Heodo
2019-03-16ZdLIm.exeexe161423a3d89191bcb67f81250296a7499d78c0696696ac8e0ff0945444bd344fn/aHeodo
2019-03-16fDcA.exeexefc11176d420a0f3fe83328f4c24b01911666b50032261e67a97a74ee2e4bc5f0Virustotal results 20 / 65 (30.77)Heodo
2019-03-164yttI.exeexe8ae665b2d4f947a8e5a8ae8f31a0608a66e838bf0aef087d9b31c993756e7b3eVirustotal results 17 / 65 (26.15)
2019-03-16wTwQ.exeexea795a35308d70b68b34fe770123484a914edaa2c0eaea7ee29e2b33cd5748ad9n/aHeodo
2019-03-16Q3.exeexe08a463d16339eeedfdef4ae3cb79ad16610559d5389820c992e749b13675cca0n/aHeodo
2019-03-168Q.exeexea58d9ac07bbcda3dc394331956d35de5beb57ec109fa7c0244e559b1c5916532Virustotal results 16 / 64 (25.00)
2019-03-16sXprZ.exeexe5e927106cb0f27d91ce14d27cba852c30ac896e3f367ab50e58c95c2f1d91335Virustotal results 16 / 65 (24.62)Heodo
2019-03-16on7Roh.exeexed66111630573d06ce239332b9411d6f21bd9138e34cd12f3eb92c997e12770b7Virustotal results 17 / 71 (23.94)Heodo
2019-03-1612L.exeexea48cc7788a6665bd563f8cd4db6efa3d95e7fda851b39398a6410d9a2174c591Virustotal results 16 / 64 (25.00)Heodo
2019-03-164ow.exeexe306d9f03e324389034a676f1212105028dbf9b34a8161aa669706817fe9b3026Virustotal results 15 / 65 (23.08)Heodo
2019-03-16ze.exeexeed04e0f13dd75967b0b74189db124f02d0f3b4d2479669244f8ce9ea09852669n/aHeodo
2019-03-15ggK.exeexe2515d55d101e1460de0e836cc1d542259a3eea3780071b4e3ca088e2d09e7f80Virustotal results 15 / 70 (21.43)Heodo
2019-03-15Xxb83.exeexefc0840b8acad1e8f687c53d71ac71daf2dcf06b98cd440c76498ea3a3fb5d0e6Virustotal results 17 / 66 (25.76)Heodo
2019-03-15yZWN.exeexe2571a3c1f143865678b6be2730801faf498359b7c99de5891ba6a4acbb87b6a5Virustotal results 18 / 67 (26.87)Heodo
2019-03-15Zv1.exeexe0de581742fbc62477cab52f61cf6259a56acc2df9b51e43e73909d46abf08674Virustotal results 16 / 64 (25.00)Heodo
2019-03-15PHz0ce.exeexed633c61a125d19fe33cf434f6940f5b8bf567b43ced14d4ac13f6fcd20514d9dVirustotal results 16 / 66 (24.24)Heodo
2019-03-154pVyq.exeexed918ede95aa70f551eb5236a4b712878306e9cd6338183a1662ef83aa29f8581Virustotal results 19 / 70 (27.14)Heodo
2019-03-15EXGgR.exeexe01fb6493407a301200a25616820eba3a392b09da1a1511f90cc03ed4ac7dddacVirustotal results 18 / 65 (27.69)
2019-03-15iKdoP.exeexef71e2ca75c31ea4a76fead23171c76978727c7e3c2904443299d4d135d46498fVirustotal results 16 / 65 (24.62)Heodo
2019-03-15cl7YV.exeexe31c91644656e4f4856ce9ca1c0cbd45c620b5b5b13846f1e334bde0aa00651c9Virustotal results 13 / 64 (20.31)Heodo
2019-03-15Ff.exeexeaaf356d6973d26431167239fa14eeb4786c630e379dfdd232fac262d007868e0Virustotal results 18 / 69 (26.09)Heodo
2019-03-159rHQ.exeexe670468abf4fca2e0d35112da8394390f23438b7974e899a8ddef17bfe43f5466n/aHeodo
2019-03-15xDX.exeexe454c19b83a3de3eb7e3ede5e76234d92027badf0391c0b5293ab210389cc3f43n/aHeodo
2019-03-15dxk6.exeexeed2bee24b9d35b9c9def654948eeafee3f0f79d625da557d5a088263fc1c999bVirustotal results 17 / 68 (25.00)Heodo
2019-03-15i0ww.exeexec2e7a5a1b0be9196842bb14b6c2d516c6f3d0a5c122a705b12b482e0be05c29bVirustotal results 16 / 63 (25.40)Heodo
2019-03-15yZfs.exeexec4985c5f2f4e196a9694999a4ec0b240fa8a7de199176242bd4343003cef6c0bVirustotal results 14 / 66 (21.21)Heodo
2019-03-15Gkga.exeexe26f9735876b30b8383f194c120d8271e717d2fe6f737c930d04973dffcd95fadVirustotal results 14 / 65 (21.54)Heodo
2019-03-15x824.exeexe03349df77ae0138feb0eb38582392d0b7543565eaa2a815862da6486baa99e15n/aHeodo
2019-03-15ky5bFm.exeexe944cc7acbdd10985a5c53c9dcce0631894b196987c88c0d05b75114e385d4964Virustotal results 12 / 67 (17.91)Heodo
2019-03-15Z0GdYz.exeexecdb1ab40d9d133a4809785d1eae877f098f339d488eb4d37093d46f4cc691173n/aHeodo
2019-03-15sut.exeexe5be8ab7916a8071b57b74fa1dcb578cf5af04f48452f3a88890309a4cefc7b4bVirustotal results 13 / 66 (19.70)Heodo
2019-03-15Z73.exeexe13983c276ced2ef61cb66177f2d40d970e2a7688a67c5a69e2686486e3f5b8deVirustotal results 12 / 65 (18.46)Heodo
2019-03-15vGFr.exeexe13ee57d92ba734e26e98d2a3baaf0f56169e1899b6833e3d9ad8ae38aea9b150Virustotal results 15 / 68 (22.06)Heodo
2019-03-15e6d8.exeexe65a60352271ce7ee4934967173ab68896726fe8e922e39fd2a399d468657d2a5n/aHeodo
2019-03-15SWd.exeexefac37e0e63ecb99bb1d267a14593edf59520fd743be4f7a72eadad08784b0991Virustotal results 14 / 68 (20.59)Heodo
2019-03-15kQc.exeexe3176ff05972f9d88ea6084fcfd9d8dd1a116b4feaf323f7dad84122d4f0bce05Virustotal results 12 / 65 (18.46)Heodo
2019-03-151balEc.exeexecd38a2925675abfedcf34ccee437c54e327711dfd2489250277ae9c71e7da4d1n/a
2019-03-15Bu2Y.exeexee4891bdac699267cecb2f39f57eba3acd6205e1a2d382da696c8522050952adaVirustotal results 13 / 65 (20.00)Heodo
2019-03-15sR8Sc.exeexe1c1124a73311db421519fdacaafdacbbb65f504c876edd4bd9030be86337f041Virustotal results 25 / 69 (36.23)Heodo
2019-03-15m0LYXl.exeexe33d96b8d7411af78eb453372e1167f9a16f034f4ec686bf56e0058ca099a4661n/aHeodo
2019-03-15KVEE0L.exeexe357ae58a4848b1d8f210453bfd0289b15a8f06fa5e21ea5634d8d7b9a22ca3baVirustotal results 19 / 66 (28.79)Heodo
2019-03-15hP.exeexe59697821c5ef906bb937c1e8bb5c913f2ff4eeface3a8ab866301e0303a4e9a4n/aHeodo
2019-03-15nCd.exeexe3b38f2b24219abcf2fba7a0cb351d607aabe53b13f85ef5409f1d035da2679c6n/aHeodo
2019-03-15r5iWEM.exeexe802d089589d14e050e38af80c7b3e9bf56c51d5e6a7c9c4f0411945d129136e5n/aHeodo
2019-03-15F43L.exeexefbfb80665c3100d11f5ecad102436e235fc5d38ca1119a3554e14dc30329484eVirustotal results 17 / 64 (26.56)Heodo
2019-03-15SusESi.exeexee288d0f717eabc33ac977092a75c4a6453de4e0a9a15a51086c9e6dc36c7a380n/aHeodo
2019-03-15xwEbql.exeexe790fa433e7b1d46f46c7938a88a052e2afc25ad5808ca537d414df20535815e6Virustotal results 18 / 69 (26.09)Heodo
2019-03-15QAb.exeexefe84ead38b15f56355213751f5350681b28be0310a1bd6039c355401b197b5e1Virustotal results 17 / 63 (26.98)Heodo
2019-03-15hE4T.exeexe88f54013db739b6e601821986a5c6cb2f0b4c36eec7259642f50a55b966fe646Virustotal results 17 / 66 (25.76)Heodo
2019-03-15wUVW.exeexe2884899ca06a447b6998f9bbf1798e768376f8c8816fe1aaeb9a3d435c6a46b0Virustotal results 18 / 66 (27.27)Heodo
2019-03-15NrSO.exeexef5a4db3915899085c0b167214b4db2155db1a7a7829b95865dbfc8f62acaeb19Virustotal results 18 / 64 (28.12)Heodo
2019-03-15cLOA3z.exeexefc797d1a2418425467e658a6cc509b90e209e522a159cf06c0a1d746c70c0077Virustotal results 18 / 67 (26.87)Heodo