URLhaus Database

You are currently viewing the URLhaus database entry for http://ctohelpsu.com/wp-config/cyDw-pP0YLjdxIiG8Qe_GaERIzhUJ-h5/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	177928
URL:	http://ctohelpsu.com/wp-config/cyDw-pP0YLjdxIiG8Qe_GaERIzhUJ-h5/
URL Status:	Offline
Host:	ctohelpsu.com
Date added:	2019-04-15 15:40:05 UTC
Last online:	2019-04-22 17:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU001239522 created on 2019-04-15 15:42:03 UTC)
Takedown time:	7 days, 2 hours, 8 minutes (down since 2019-04-22 17:50:11 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-04-17	11316415747_Apr_17_2019.zip	zip	10542791c0782e4b8caa41389ac7124248d0f0bb6c18e9fb33a1bd886b2c2736	n/a
2019-04-17	3844858750_Apr_17_2019.zip	zip	826386b8b1bad7b6c6d21a0707b341eaebb91c2dd2ab4bc918c11de9f72357fb	n/a
2019-04-17	382575843187_Apr_17_2019.zip	zip	89ce8ac710d9701f4f93a42ba923ac889f6e0126cb0773a7b338e14ed61e1e08	n/a
2019-04-17	287661146841_Apr_17_2019.zip	zip	144435d121e061a23ec807d4e6874798be792f9e8384f814687b73fca8c942ae	n/a
2019-04-17	578424651346_Apr_17_2019.zip	zip	69f172b53b632d8a4d91509bc5773d01f44e0fa004ffc8bdbf4d25151e7825db	n/a
2019-04-17	6924416266_Apr_17_2019.zip	zip	2ed79091c20060893d00ae913c22119222b972fa99a62ea414c93fabfdd6ba6c	n/a
2019-04-17	8109311384_Apr_17_2019.zip	zip	e002caf921bf0d450022bd4a7c281af0c55e0391ec8b0c47b0032b45043c8f2d	n/a
2019-04-17	8136633334_Apr_17_2019.zip	zip	d67aa6f3be618cdfe06634a83f75654b8c05bb3531d8451895359944b9c9d142	n/a
2019-04-17	1072622169_Apr_17_2019.zip	zip	9027195f2b9dc074d16b5d55fc383eb0e361edd0bc9e6d836e3db087bb015499	n/a
2019-04-17	9476957661_Apr_17_2019.zip	zip	ed24ccbb896efeac6b3a009487759f761f3f745b60d9fab72080bc2738bf6f43	n/a
2019-04-17	377740562249_Apr_17_2019.zip	zip	9a218da1f42b5616e08b55a1a275faf43d63a3e0b0d46801a357cbbefd339449	n/a
2019-04-17	6773836271_Apr_17_2019.zip	zip	eaf131f086bddc01de2c381b6b5556c528650c96de66cbd91bc17ba40d0e0ac6	n/a
2019-04-17	8663127674_Apr_17_2019.zip	zip	bb11a646215d96cd1ecedd41603a3ae2176825e47b617662c6855c12d72fdd40	n/a
2019-04-17	7648511158_Apr_17_2019.zip	zip	465aee3e83a56e695d5399aa6144c35b1978e62ca16f55fe10aa890faa0f4628	n/a
2019-04-17	68914106892_Apr_17_2019.zip	zip	21025553ba7383ea213987f81350c0058f5d77c9f489558d8745559d389091ee	n/a
2019-04-17	4655514579_Apr_17_2019.zip	zip	ce510d912840b9c996551105542a914d485167504c01e2975f8c99615c98d54e	n/a
2019-04-17	12029528573_Apr_17_2019.zip	zip	b113e77f7d2894829e3aa6959e6a67683e44b03d4602f7d77f839e4df08c325f	n/a
2019-04-16	831722121258_Apr_17_2019.zip	zip	790e6cf6a684cfc6cc3be7cac4a3955373122c239fd95a869d13eabb2ce568b7	n/a
2019-04-16	121377045444_Apr_17_2019.doc	doc	3828b5d43c9a954b999a9aec7777e8a36b97d8a00de5ac023fbcd09b210cb543	25.42%	Heodo
2019-04-16	090762928093_Apr_17_2019.doc	doc	f4057cf66759a43716d9fa6733db73448df6fc66303df5616dcce6496b83b167	25.42%	Heodo
2019-04-16	1678000499_Apr_17_2019.doc	doc	4b1ccb75644b61d0f3c1df18a238066171bf3f3b8ffbdce21a963a032676bb61	24.14%	Heodo
2019-04-16	4416183133_Apr_16_2019.doc	doc	3824b2db3b14d88a11d155d0894a6af22bedb3bc12a029f9563344208354aff6	35.09%	Heodo
2019-04-16	722480567425_Apr_16_2019.doc	doc	4f9800723d9da1abd4a9270d2ca1608a8540cbc15ddaa67f2b8a18aa2d75620a	31.03%	Heodo
2019-04-16	2933446986_Apr_16_2019.doc	doc	141e277b2165595334f404edd83397057b2a4ef8a52eb8edba79203f0aba44d9	30.51%	Heodo
2019-04-16	889570107502_Apr_16_2019.doc	doc	33eb8eed7c8660a54e9b99e8b8719fa1a83484d5ba41805f1767cd8605d28fa4	31.03%	Heodo
2019-04-16	9607774612_Apr_16_2019.doc	doc	033fa72fe48a853b99e41ed7467c1ccc488d5abe69dff887b8a6b7b2c5a5452f	31.03%	Heodo
2019-04-16	333247727879_Apr_16_2019.doc	doc	7fae139edf9512b5788f271e05878e6d556721b4eddd8f556096824c3b9bec69	31.03%	Heodo
2019-04-16	55195947389_Apr_16_2019.doc	doc	7147bcbc0854554068d051c589da76772d019dd8f1d56ee17b6ef90ba54c2706	31.58%	Heodo
2019-04-16	14773664593_Apr_16_2019.doc	doc	f9bb8d6760e5b9e15af4b87800fe6ad34fc9e22160b4110fb383021494316bff	30.51%	Heodo
2019-04-16	0982348872_Apr_16_2019.doc	doc	ebbd8471022a4d525eb5bd3537e6a1688980bcd861300807f5c4a14ec7ea777f	30.51%	Heodo
2019-04-16	598208414742_Apr_16_2019.doc	doc	cd9387ca69fa3aa30380f5e513313980b26805181f235dea5596a7d9b6c21c41	n/a	Heodo
2019-04-16	461531753335_Apr_16_2019.doc	doc	6280cad89edea53c8bd3f428396c3a736f6d67e6f8279026effbbc8f27c35035	26.32%	Heodo
2019-04-16	51878726881_Apr_16_2019.doc	doc	05e9d6de0d75faf602a7666ff6287e1e9ee367d57d2abaeac780e14325833dca	28.33%	Heodo
2019-04-16	2548833942_Apr_16_2019.doc	doc	eaebef573b834cac77673e625c36f4e363a94a294e37a18e68547a3b19308fdb	27.12%	Heodo
2019-04-16	690487695738_Apr_16_2019.doc	doc	90c260b2469174d1c60fca12bc1a31728a1219a71c5f27a5b1cf21db2271f123	28.81%	Heodo
2019-04-16	899322840373_Apr_16_2019.doc	doc	de95a51d1056dab1f56d407447c1028fd989fd0aa4ff8aab109f93117bc7c258	28.33%	Heodo
2019-04-16	04596145357_Apr_16_2019.doc	doc	0c42ff307f9831e057e019051253081abc1001fd290feb13f5467ce2c4ad435a	26.32%	Heodo
2019-04-16	44612060350_Apr_16_2019.doc	doc	1073385d94089c725063ce1a488c157293e6aa8cd6574597042ad5d5f9f6004c	n/a	Heodo
2019-04-16	3713135297_Apr_16_2019.doc	doc	a98f3b7c60b12dd81f190b67c0b42dfc7ab23d10a4ef3cdceb43625dd9ff6133	n/a	Heodo
2019-04-16	8110809164_Apr_16_2019.js	js	e328f1a48cce3e9220c38d847ccea9f81b6135d120bd76b224c4be21405f700e	7.27%	Heodo
2019-04-15	20356928406_Apr_16_2019.doc	doc	8cd4e36661364ce87f1ab5d766e5dc204b3087c58acb95765dbfeafcf5f43534	44.26%	Heodo
2019-04-15	88266427443_Apr_16_2019.doc	doc	da956cc8f7e31477de3ad6df05f775b0ed58912dcf2f4c427d629e39d4f77394	32.76%	Heodo
2019-04-15	529489823055_Apr_16_2019.doc	doc	1e26565545390a2adf648fc1763031f5397c21b3b1233ec899adfdcbbe920969	32.76%	Heodo
2019-04-15	3979967088_Apr_15_2019.doc	doc	f8def05c21bfefe7089645b558a8275aac14deab1359003dcf4abdad48613efa	29.82%	Heodo
2019-04-15	192100741315_Apr_15_2019.doc	doc	d21e54044bead3a0db93cac41fd446fb19d90d1d0baf604d5f6134c710a8b2fb	30.00%	Heodo
2019-04-15	630564877560_Apr_15_2019.doc	doc	3bb7d4f4f6f53b750781940dc8f6adf33b45648cb1259764eadd56000bb19f43	30.00%	Heodo
2019-04-15	604365841199_Apr_15_2019.doc	doc	2e92446f9fc4fc8d20782d305950898b3f6d8013c72882877b44de5102881cfe	29.09%	Heodo
2019-04-15	6425713964_Apr_15_2019.doc	doc	52311fc42e22948e6a22196e3e60e3a2f005856e18d757ec5929a5bf6b077542	29.82%	Heodo
2019-04-15	320730397348_Apr_15_2019.doc	doc	a939d607fb3fc8105a326e9fe057f223f54a03c87b821b4416154aa7d4a51979	26.32%	Heodo
2019-04-15	844560829117_Apr_15_2019.doc	doc	7cc81aa64dba6d64b62609c294a549c483a0d2bc901a34c9600dd652b03d9b8f	26.32%	Heodo
2019-04-15	28204968150_Apr_15_2019.doc	doc	b26c1f29197a9294415ea196f2920c8daba2c2dfc026079fbed61962ecdc6626	26.67%	Heodo