URLhaus Database

You are currently viewing the URLhaus database entry for http://dqbdesign.com/wp-admin/cU_Sa/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	165648
URL:	http://dqbdesign.com/wp-admin/cU_Sa/
URL Status:	Offline
Host:	dqbdesign.com
Date added:	2019-03-25 16:42:12 UTC
Last online:	2019-05-02 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2019-03-25 16:44:05 UTC to abuse{at}deziweb[dot]com)
Takedown time:	1 month, 7 days, 14 hours, 47 minutes (down since 2019-05-02 07:31:36 UTC)
Tags:	emotet epoch2 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-03-27	2tr_I.exe	exe	19e415857d5338b09a898bbf8056e1ec2e83e7352d8b09bf22b5771d9bcbede6	n/a	Heodo
2019-03-27	cu1_tnQ.exe	exe	7d08ef83244e8e522fbb82f41bde555a30289024f217afcbc6fe539e275cf81d	n/a	Heodo
2019-03-27	6O_s.exe	exe	14feeed2c125accc752fc1e4d226970dfcc55cf179cf971cf1126d9a012c7bc8	n/a	Heodo
2019-03-27	1_J.exe	exe	895cd267bb558afa5726eb1425fa919abba011b7431564157ddc81516772ff41	n/a	Heodo
2019-03-27	VS_tv.exe	exe	ade1e0421b9241fef68571f68c4b1cb7189d4b54aac1c5e563b59a5b7a85745b	n/a	Heodo
2019-03-27	OO_7K8.exe	exe	e2b9951c7744decc4f473716c04dcff3cd5b4e2f980a0c056de55c9ddae71564	n/a	Heodo
2019-03-27	Tw_G0.exe	exe	6ad91b87955f399bbd95c804cfc2fbbc77b5b5af8c5f3aec4f264268ef3fc789	n/a	Heodo
2019-03-27	jqL_v.exe	exe	40b146085b5846ac88e181813ea5e25045a962d0bddf3674ac2416034f2b19bb	n/a	Heodo
2019-03-27	l_Z.exe	exe	af8e1c6506d6e651845c02a3ed14522b55d83704159fdc7eaf92fbc2f01b3a0b	n/a	Heodo
2019-03-27	g_hPb.exe	exe	cd27016ee10398ecfbf13a56faf3913721fb39c536c019dfee89a6384c10d4e1	22.73%	Heodo
2019-03-27	OB_0Hv.exe	exe	7e11f32f2f23beea5fc5c54f7d31881153656a2466bcc7949af88a9c7ab6e279	n/a	Heodo
2019-03-27	Ukf_UC.exe	exe	265683bb63e487ed8c0cf4a30d4bbd7c1ed55c7ba8105085d2dad4888734e6b9	n/a	Heodo
2019-03-27	Cp2_BR.exe	exe	8a51c30f9409656199fbd63991cdcb9ea300606f17c02063096f55974c162e60	36.36%	Heodo
2019-03-27	2_R.exe	exe	12c2f47e2c2dfc04c4e53c4ac45bf4724924019dfea0276c9ce89230a0ff9d2c	31.34%
2019-03-27	1L_4.exe	exe	5c2724bf44bbfdf53adad448e142987466d5a041c2778bbfa58589c6df40df9c	n/a	Heodo
2019-03-27	D_0r.exe	exe	cda786478e10a9bc5c5cd6987963406e23aec08ff55a1afd86334a494aa229a7	n/a	Heodo
2019-03-27	Z_pV3.exe	exe	f099cef9c3c472b301e7641e62838f27b1e3e2541488f493aa18355575f09171	22.39%	Heodo
2019-03-27	Oh_erP.exe	exe	b04cc9f527113ad3bc954569e6b67844956b2bb814fdf73e5173c35d0934c7ae	n/a	Heodo
2019-03-26	i_rT.exe	exe	afecda65b5a2d239cf302d9d7bf40d6463702ba77f75605b2b35911c8849c2c2	n/a	Heodo
2019-03-26	O_hm.exe	exe	ad95cdcdc29f48465aad93a63264656071d34dc4a7722382aa3a5892c0c0bf92	27.27%	Heodo
2019-03-26	9Vb_4.exe	exe	c2dad411179cba17c9d2f20d537f70c9368f4bd4dceac0928b5ae200a17a8f47	n/a	Heodo
2019-03-26	BKa_nZ.exe	exe	1db53135333d9ed38bdf8b8d64a8e1ab581813f2f1733319822d51b59e290705	26.09%	Heodo
2019-03-26	V8G_2xh.exe	exe	151326205a07238bef6a6180a199c42a457be8f3687edd8d8402666d4f57b20a	23.88%	Heodo
2019-03-26	FK_B.exe	exe	0943bedbaa1d1a0451059d9ccdd91dc53cf9c0c12d7564ffc77dea50a7308773	39.39%	Heodo
2019-03-26	fK_72F.exe	exe	dd1cc533bdae5620c0d7c7cd0d9b7b25352124b6f8e22a397ca437961ab4d4b0	n/a	Heodo
2019-03-26	j_DWp.exe	exe	18b241e73a3a68b8abeefcc337dddf476a042f0c3d1f43bbd7a22732d4281875	n/a
2019-03-26	lRq_ldS.exe	exe	657d1ca003616d233fa7bd5f1af71da084956b1f0a89d44929f13b37ab7cb79e	42.42%	Heodo
2019-03-26	V_EZ9.exe	exe	de08abbf206e7fd97b682cd31a45b087391e72b3157b7847f59e57bd24c8b6b5	n/a	Heodo
2019-03-26	Nt_Z.exe	exe	f7058417b08a50f6f2602d3c87cd6976b01ab4f7387c9cec03ff211619bd53b9	n/a	Heodo
2019-03-26	R_pj.exe	exe	866f1f7ee7a3ec6bfe25a49dd7c12f349ae498cab3a5fbe566f9a170cdb452c6	37.88%	Heodo
2019-03-26	xt_j2l.exe	exe	38ce05f33c42aeb5d753cf0a5fd48429c1bfdcb37b24e079c3af7b38ce5b9c57	n/a	Heodo
2019-03-26	e_K.exe	exe	9842e5fcd6d6ee2f22ef294128066d1e25699f06647d73cb947bab86c08a1a5a	36.36%	Heodo
2019-03-26	h_u3.exe	exe	5176b6eaaa6208c4fe4db4e435ec257a9a4fa672374e667728ff9790ce5ca6eb	36.36%	Heodo
2019-03-26	Z8O_QXT.exe	exe	57b585e5f21720edf3bc190a1a7e95f8c9038f187d66686af3e9cfff66323ee0	24.24%	Heodo
2019-03-26	5Ur_Ok.exe	exe	2ba4325ec1407b21878b971eddfd2c71488e988200a9113641dbe4691bda3400	25.76%	Heodo
2019-03-26	Ejq_KE.exe	exe	6ed0c37aca8b3b54995c19c396aa70cc8be2b85c5c1326df0691942a0e295abb	25.37%	Heodo
2019-03-26	2_V.exe	exe	4600b25374a637fb54dde2d98e782e9a39080a9993aba4fd5ef857dcc316ec6e	27.14%	Heodo
2019-03-26	1n_czZ.exe	exe	c7e2a06dec890933392bbf4ea4989505b1d72e5f408e2cbd2d90ededba13c035	n/a	Heodo
2019-03-26	9Ij_Ig.exe	exe	6bc57adee0e62d8946ea7b9ba0deb015a18de7d002b7f621e9a06ce0a6c61611	25.35%	Heodo
2019-03-26	zUp_mJx.exe	exe	9b8d610d31fb4060472037b08a7f9e82d55efed17dc4cf334e9a2ccff3cd285b	n/a	Heodo
2019-03-26	C_zS.exe	exe	fb2486e09bba004bbe827fad441c57e68948bfec63074439c8c6c676f4a8a88c	24.24%	Heodo
2019-03-26	Y_p.exe	exe	8f41847e454b6b961d826b08a4db586705167f61e171799d1983d6907988162a	23.08%	Heodo
2019-03-26	I_yDW.exe	exe	ce7f4542159b75e1da2affb55e83b0e2477f4f107b11395145faf42c94828387	23.88%	Heodo
2019-03-26	KeR_H.exe	exe	6b1f71745b725f96f72999ff5e48ad8ef65f36a2c6c8737161688e680365ab51	25.71%	Heodo
2019-03-26	Tt_XVJ.exe	exe	a82f662f129a3865d20b6362e35e968a3e5c1d86d33e9823b210e93cafd44620	31.34%	Heodo
2019-03-26	jG_8p.exe	exe	7ceb9bc2e96acfc9b602a0aac29824390c5b358e19df244146935abc1c79ada4	31.43%	Heodo
2019-03-26	6os_Nik.exe	exe	8846754cd018316c1ff52e94b60affe715dfb13eb3440c41f46283434a0753db	30.30%	Heodo
2019-03-26	Os3_Hip.exe	exe	ee3b98ab0fbccf50640b5dded626bdced81416b76c9ba7feefe4cf17d5117f64	30.30%	Heodo
2019-03-26	P_K9.exe	exe	c7dcd0f56640aa8fa01ae8e546560bad6c50975bf546971aba5105654c675bec	n/a	Heodo
2019-03-26	2y_ktA.exe	exe	0441cddea576611f232fca22378f763f53a62c9ff6dfaa1e375079116f73cafe	30.30%	Heodo
2019-03-26	62_Fc9.exe	exe	dbd7cd9074ca4aceac1d6041ca7e17c8da2aaf1ae2682af14a22717aa305c251	28.36%	Heodo
2019-03-26	X3_z.exe	exe	ab703b463d769d2ffa1248e14e642f2952a518f3fa4512ca5910eea9247c9c27	29.58%	Heodo
2019-03-26	e_L.exe	exe	1fee673f2f0886b07b0a3e1bdc660fed0b2903976613e21e39910d779ac07d82	28.36%	Heodo
2019-03-26	CdD_S.exe	exe	a91e8d916b465a14f7a6183d7a72ecb4f1f006ee1764fe4875c5808eb4c52445	27.54%	Heodo
2019-03-26	NIi_so.exe	exe	d0f505d18198e3071e4d01440befa8cf3a01e870fa4c7406b1a143a5a3373627	33.82%	Heodo
2019-03-26	qF3_ppg.exe	exe	3680c76cb301bba036e7310e5c8ee478acdb825966c6d2dcb602ddbc8eb60146	31.88%	Heodo
2019-03-26	s_X.exe	exe	c982d5a7d337ac8eff98f2beee5e52454c4923152a27c27defddbd67feac6247	29.85%	Heodo
2019-03-26	E_YJ.exe	exe	6a368c819d1d5d39df70b5497b11a5dbbd457e37d9584740cd68c868bee65739	28.79%	Heodo
2019-03-26	kL4_bZ.exe	exe	30e56670094a35d0b0610d3832ec05c4e48103080da20f40226ffc349cfad2f6	n/a	Heodo
2019-03-26	D9x_FG.exe	exe	523e92cfe5cef476de539dee0f4569599f32eaf2fabb29149bffb7017d0c00bb	32.31%	Heodo
2019-03-26	da_k.exe	exe	7d0135235e2b26c5888ce2e6767b237bf570f7897f1bd1ce64474397760be7f8	30.30%	Heodo
2019-03-26	G_NT.exe	exe	40a375cdf5439276c2a54d1ac4295594e33af240be0605a3e2b10106cd713d16	29.85%	Heodo
2019-03-26	Em_S.exe	exe	6fd127a95810b0868e568ffae54d5c7191265e694b3b22b8cac0e1e488057ac1	n/a	Heodo
2019-03-26	S_AT.exe	exe	e7097628614f828bf4e37ca47ca980a83b4858ce797071c449e96c5b22dce750	30.88%	Heodo
2019-03-26	aLj_olF.exe	exe	a228d6690a56d4707065be9cdb94158ac59244df48cb5327f6212f5d53d6c8ea	31.82%	Heodo
2019-03-26	D_Lm.exe	exe	f8417ffbef193f86a461d233da23f4ce5bd316060d92a2eddff87db95a5b8341	22.73%	Heodo
2019-03-26	N_M.exe	exe	ef9b551a019a7e330585cae49efcb71ddc2b98541b36cbc2927b9f47511dd1ac	n/a	Heodo
2019-03-26	4a_K.exe	exe	b4c9807baade79e638c04a46e9366402575188b92f7fb72873fec11403b5ee23	24.29%	Heodo
2019-03-26	AY_4x.exe	exe	8ae9a405f5df225bbb9008e7ab7e0d76e67b48514599c4d171fc9ac5003dfc91	n/a	Heodo
2019-03-26	C_elo.exe	exe	0f5c870d9dd71cd8d69d94ae0bedbc1f6d9a987819b3267e5b418448ae2d5d06	24.29%	Heodo
2019-03-26	m_xs.exe	exe	540e96097955814e76049458df11d185f75d92bc574e0d681f39a9de1ff6dbf5	22.39%	Heodo
2019-03-25	Qd_nH.exe	exe	b03e19d02087859f3c73ca415850511e1426f23b2cd3792ab5ee5d54c7664093	19.70%	Heodo
2019-03-25	B_a.exe	exe	f3c10c4258106c5c565096a1c5f3b78f36a898ce2f9fd22b5a3c3c9447ba1826	n/a	Heodo
2019-03-25	2_RXq.exe	exe	b68dfb17b5aeadba8d254e425ab53478de46e6f617f004aabd7845bb17b3572b	n/a	Heodo
2019-03-25	16_B6.exe	exe	ebf69f1b09a6e354ec3ac79bf5cad94533d607871f5ae84fd4ed11eb6c29630d	28.36%	Heodo
2019-03-25	z_8.exe	exe	d18fc9efdffe38044ee15117e096a2b13b490a497163c71895cd6be6984f8136	33.80%	Heodo
2019-03-25	m7_fCp.exe	exe	ab4115cdd874a881e5f69fc5989e71e2c169a690fea60f066afd013dde3f3bc0	n/a	Heodo
2019-03-25	w_7M.exe	exe	6abee227b835f24e895264b3734b86a58acc12863c36c71b1edeb4778b36f940	28.36%	Heodo
2019-03-25	y_W.exe	exe	f2fb625faa553579654d15c5992bfb3ce46efe1676db5072d22d08d04e8b6529	30.00%	Heodo
2019-03-25	27_4s3.exe	exe	72e21abe5eb37cf02781d4c85d0d7856ce6d1c7530d74d8b34159538e09584a1	26.47%	Heodo
2019-03-25	g_x.exe	exe	749fe8b8ea33154fb71eefb0af93bda75b6cef6dc0c681c5fe3b4b71eb9b7a92	25.37%	Heodo
2019-03-25	nk_QV1.exe	exe	35dfe71141b15dc05c697eb6107f19725bb31907b8b52358cc38cb393d9c9b15	24.24%	Heodo
2019-03-25	p_b.exe	exe	582684acf1f8c39c749ee1621ad5a39f0c6f5bed2811ccb730bcb6bc765157ed	n/a	Heodo
2019-03-25	GG_hS.exe	exe	520a4868ed8086b430a0c51327022a56166c9963e50324eb3f660fed13550551	23.88%	Heodo
2019-03-25	4Q_GjJ.exe	exe	21904ed196ad393d0529d139ab3b20f390c41651282f59f7be8a9cf406883987	24.24%	Heodo
2019-03-25	Q_U.exe	exe	c9abbd69d60cfa6422f496757685f84a27ffa2803ac7e344234f87b48797e90f	25.71%	Heodo
2019-03-25	Cri_sF.exe	exe	190efa2339e70a2b9dc9f0aa6cdaf36584cc25ae4f2f7b9f27595a249dca1caa	24.24%	Heodo
2019-03-25	pu_L.exe	exe	56d4c1d82a2727f918b86c6c212da1622d50c4f5511c6a8cedcc56eb062c3a83	24.24%	Heodo