URLhaus Database

You are currently viewing the URLhaus database entry for http://ceshidizhi.xyz/wp-content/Gs4yhEwmUamQky9H9rSy/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1798795
URL:	http://ceshidizhi.xyz/wp-content/Gs4yhEwmUamQky9H9rSy/
URL Status:	Offline
Host:	ceshidizhi.xyz
Date added:	2021-11-18 01:56:05 UTC
Last online:	2021-11-19 02:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	waga_tw
Abuse complaint sent (?):	Yes (2021-11-18 01:57:06 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:	1 day, 0 hours, 56 minutes (down since 2021-11-19 02:53:11 UTC)
Tags:	emotet epoch5 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-11-19	cteDY134U.dll	dll	54e3f6d86267d16907cf10c2077da54e06a1b6ed63633f3332cbf598f3bba940	n/a	Heodo
2021-11-19	o3qkEl6ayqDgNJNaJ5fFx.dll	dll	a87aa3c0240567ba7c68a3c1317d522f3af6a9cb7647ab47293f5ee1564b74b9	24.14%	Heodo
2021-11-19	DkuNuCPjcqQTf.dll	dll	fe5619a89b417c7220217f996e488aca182e61cf441516a910509e50e4546a09	24.62%	Heodo
2021-11-19	seQz4GS1MZyrZ5co.dll	dll	061216d65ccfe9a9abeec2f8988f7525b27a17806b4fb75274bab04137957a25	22.73%	Heodo
2021-11-19	uIaieFQhoyYFw4t.dll	dll	bd6a88fd73e9ca70a279806c207d383b6bfce950f874e8b42fece5f2b8951f43	26.98%	Heodo
2021-11-19	PMY49h5L5swViu2Grai.dll	dll	1e63c4bcde2486717c7af227db0d5d1f4c6c109f1b02eb53a09cf105b72356a7	27.27%	Heodo
2021-11-19	P2xlg7J.dll	dll	78e72563ab7a48da4bac3e41411a2c8f202cb0c54784eb53b85143e011f0c57a	23.08%	Heodo
2021-11-19	4q6YIKLJs9a31ueJbs.dll	dll	418a29603a16660b95cd5df852614ff9c854af0b4e02fa475367db7016e02f73	n/a	Heodo
2021-11-19	6yNC138iZOUgpSK4goM.dll	dll	b4b5f3d25de28358d3880b069a6b1420cb0981853464146af7243394b92bec88	24.24%	Heodo
2021-11-19	G8WHDJLDPG.dll	dll	a0a3233b32c72c4093899860288caf14dc78a896937732edea11c1183280c5c2	23.08%	Heodo
2021-11-19	nnSOg.dll	dll	2827e078e8337833e3d41da985844d34b2c2ddaeb9c48b99eec580e3941d7f1c	n/a	Heodo
2021-11-19	RFk1hMapvFA2e.dll	dll	66fd0eb549d1cdf3db4e4df1b3c3e3a0ceb2f846e4baf569f7e1e28d83994284	24.62%	Heodo
2021-11-18	ATwwiRDiUvACj0sKT.dll	dll	aa8679d9b1a16d8c5d2e4484a71182ff8df23b4263b67f17f6e375f1da6ec9f1	21.21%	Heodo
2021-11-18	4iuFHgrRovvf6rQFOFRMD.dll	dll	3c238fb10585fbee4ba71f115b1f1eb5796f2d9c9666d85473a7ab569d41a5d4	18.18%	Heodo
2021-11-18	oGcQdArAv17qAw.dll	dll	170dcaee63db8e747b92553ef31e552588af68c7312e8ccf7a93e76075edea2d	n/a	Heodo
2021-11-18	4lVbqg.dll	dll	39723b33e79c3da195164790cdb15ead62a18f97c2938cf3a060802ed185e329	n/a	Heodo
2021-11-18	6ALMkcA8a7UvLDVcElb.dll	dll	0703a49dd5a930fa0d0b52f1eaf659e80830e3c096d83f14531d2787fe237085	15.15%	Heodo
2021-11-18	zVa796atnC4QuEMxS.dll	dll	a456a101181885804633ea45242e5667a73f58b74b9d363d92f73c8d25fd9319	n/a	Heodo
2021-11-18	pLhbnJQu2.dll	dll	d6092a66fdfcdbcb58a4d7e69f9ed3c1156cfd931036edf7c9474605eb07de6e	n/a	Heodo
2021-11-18	tTWccYa.dll	dll	433baf5ff5297e2fc61aab4870393e01b83e73ddb46c1f4649e317721df7776f	13.64%	Heodo
2021-11-18	QPr4Fvw9.dll	dll	4de72da4b2147522072eaef3baad77b9b0a6c5703c993b475b904450d3bbc26f	12.12%	Heodo
2021-11-18	5Ta0foX96MP1.dll	dll	36a1668cae34c2c73cda4c0ac776ab977b4629a8ae46cc40629908f295fdd8e0	n/a	Heodo
2021-11-18	eo9J8IGAErBByfJQwCGDQ.dll	dll	436969649c275f8947f4c73044d92cdf96704238377219d0d214e477aeedfb54	n/a	Heodo
2021-11-18	IwSSjcWK620RUTW.dll	dll	e75b859458447850d3aeb8c47c6adf7ead2426aeed63fdf46d5a879a9c74c458	12.12%	Heodo
2021-11-18	P550F09Wp954BWE.dll	dll	0abe278229f8362004a615c5acb5f38727a8acd38db0c953d39d29a3ec72542c	13.85%	Heodo
2021-11-18	G36SRvaX.dll	dll	4bc6c7cd96777daf588afd84f301cac6be376f916c7253278d9760530f9c1043	n/a	Heodo
2021-11-18	04KCcnTTeB.dll	dll	8511f80ba13c75f46bc25c14a693dd46f1621f2289f8bb44a048288814258aec	n/a	Heodo
2021-11-18	BVP1abNL.dll	dll	c3fb8f9a4bc7f032da93bc639e205640c9fabb81ad4b57598e19cb6d806d017d	n/a	Heodo
2021-11-18	pjOJMcHWdiaXP22IPC8I.dll	dll	fc10f3b9997f3202c9cc5715d4a9e1a25b7825b683f0c3d912a84d2ae7da5b83	n/a	Heodo
2021-11-18	ItwrncuUXkG5DXEvii.dll	dll	a613066c907baebe8951b5024a740633e68c2069284a42b3b051a932053d05eb	10.61%	Heodo
2021-11-18	xRC8P3GcxNbU44xsf7.dll	dll	31a8cb0e2fd405474aa2d7fa210e4b1053687c896b8b028588d9b82e9a06c491	10.61%	Heodo
2021-11-18	XaeAqnpKqIMoy.dll	dll	4c1bc6ecd38fdf07cbf8594a2da2e914cd343436768bf54b5bf39f7199b6a3be	10.61%	Heodo
2021-11-18	iK9IC8aqnGgs.dll	dll	a1275287107b3b181fea238f4768be15687921c263babdecb045d17e978db627	11.11%	Heodo
2021-11-18	xcuSCYRKg4NPsRB.dll	dll	1bb6d97cf1d6b1363fec91875202ab2130ed7d62a2615f53c2a3d337a6ba3e83	n/a	Heodo
2021-11-18	sG5R.dll	dll	a496e9ace082d36e5b1041adcae5adac29e74db36b69f26fd107ccd15722873f	10.77%	Heodo
2021-11-18	557cH.dll	dll	4b5fffd19ad81956dd48ac451853d7595d9b99d8c035a91cc0ec9aea81a36b2d	n/a	Heodo
2021-11-18	o1enuGAU6DNuUxj.dll	dll	26e935ef0d969ccce353d7978849a1631c6ffc35546904fbe28542bee6990c8f	9.23%	Heodo
2021-11-18	pLsM.dll	dll	4096f74c28fce5cfeb76ad20946b881fbe9a3ffd40756be209955eb021c77c43	9.09%	Heodo
2021-11-18	JJTOn4PHMhlB.dll	dll	10d6669e0bb45a33e45ced5632f0e67e34fa1e71d452b1b7ce46cede879e6f38	10.17%	Heodo
2021-11-18	AANTl.dll	dll	c11705669d6b481baa1abf93459ae4097aa3054c8d3854df64f33232bd621673	9.09%	Heodo
2021-11-18	tjgwAYv.dll	dll	d879e3ba9b0fe1e23af23dada08a5e1a3446956c4695e657d8c26df23a721e90	9.09%	Heodo
2021-11-18	CbVFJsO.dll	dll	c26af251da207f8c57cc39ceb23feeebea340f0bce15e636d7d07498ed51d668	7.58%	Heodo
2021-11-18	hxsPxunLHplD.dll	dll	e6b2d69e4f118cc8e2e3813f59235857129746c75ad11ea2237d8511ce1f1e66	n/a	Heodo
2021-11-18	lrlhqJxGT.dll	dll	64f42b87bc15d9c4f6998204e85d14394b6327294fc4684b1efa50566ab1c3c2	7.58%	Heodo
2021-11-18	heXWLuqSl4.dll	dll	3104dbd2770541959739c4befdb00ca75050154508b515b745f30de7012eaeea	n/a	Heodo
2021-11-18	97yyK2wbLlObs2IsFqzc.dll	dll	4cba413bb358648f59998a65dee5d2a17e554cbba22a045d58cf82f9831d8571	7.69%	Heodo
2021-11-18	5iAAhFc1wtLtBz.dll	dll	50cda8eab8853acdb53363b57f551500214034681e0766cbcb139281b06921bc	n/a	Heodo
2021-11-18	LsR7mO.dll	dll	b8d2e3390a83a9f5f46c3fb6611e71410dc6de855bf91423a2406a34ba1d8cf2	n/a	Heodo
2021-11-18	sq0qglrKIoIkkS7.dll	dll	22b05fec500f539abe8be32fa954854d80f434243052a89f8bd3251ec907e7b1	n/a	Heodo
2021-11-18	kU8iTz4oRq4YXX.dll	dll	3627ee37f95956d41566fc73186cd0a8920b5b50fa54a12ea29e28bec76a789f	7.58%	Heodo
2021-11-18	EXMdDzTlGqSzebdMTb.dll	dll	d856e60951b2a9ce632e24e36685e1171162b530d8aaac8c6f72eb41cc8895a0	n/a	Heodo
2021-11-18	rTFkdNc8C8fn.dll	dll	9f4d0d5ef788ff773f700918e1d446062955be8d44952a86ad3d98bc45ba83ce	7.58%	Heodo
2021-11-18	8it1jJTGaSKWxAMjIGg.dll	dll	1526ed57ca8d6dc9afb4b955361c59895cb42263545fe736d6861884610d53de	7.58%	Heodo
2021-11-18	GhenlN9mHPKzZ.dll	dll	18ec9911fe81405a3c05900a059e4040a012a1f242109d8285679b4a082ba5d2	n/a	Heodo
2021-11-18	njCKDINxMA52AJr3D.dll	dll	8951ac93405d8e5b7297251ac5fd9695f2312b5e3073ea62cd85a0affd29541f	n/a	Heodo
2021-11-18	5Cc5U4OLMsjV3Q.dll	dll	d1fabbeaa4b67948b8085d806c3ca2d87d806e1397f24fb1ec135ede3694b273	9.09%	Heodo
2021-11-18	54COv.dll	dll	11f4b0fabb3218920f0b7df5d76248576ffcb213f0d41dbdf90c18bcf1e2ce29	n/a	Heodo
2021-11-18	AOKaaNpLbcSRdtkNK1v.dll	dll	4e66dd895c7cfeec81c2d7dc8bedd16bce18af24d7933a58990479c4142a3655	12.31%	Heodo
2021-11-18	3qdvlZ3J.dll	dll	fd303bbe7cb76b6b1f2302bbe53a33c1ecf206fef10c6317ec0f2c544e1415a4	13.64%	Heodo
2021-11-18	ap3MV0UyW5xY3LIJ3H.dll	dll	12ed31ae55ac66459ed6f6a1a37ed30adb96802d72b7aa77242955fb3420b32d	13.64%	Heodo
2021-11-18	k9spJB1.dll	dll	0682adadc364a3ca552b113648ca59a588a040c29ced8e43d6bc9ab2ee0aefd7	13.64%	Heodo
2021-11-18	8PnUsFcaTxjisEdwRt.dll	dll	3275704fcc05d8d0e18160590291e01636ad98b6a302c15443d7b9b90f5a54bc	13.64%	Heodo
2021-11-18	nuIqULxEis5tRz.dll	dll	3fba6f8433015c12f486d30a70a537ecf46cde622eed0d252d3b672627c129fe	13.64%	Heodo
2021-11-18	JdSqW2cHdyMlld.dll	dll	4ff743dd5cfa6b5241a2f5563fc4be0a452162151db09220773c1b9505688d85	12.50%	Heodo
2021-11-18	GdD9xzh8.dll	dll	646427df566465fb7abc2f6dde83c47861ae1fd02858359cca3a98068c1c8034	12.50%	Heodo
2021-11-18	tcmhea.dll	dll	bb9d98a198b5c2c2f05dbabb10248d3bcd76cc7188ac3377e72cd67ff403815c	10.94%	Heodo
2021-11-18	kXvMWZm9NwEwVoHTOz5Mn.dll	dll	5cc8dbabae3480b3738ee05fc5dc56c333d14122330dff35611981b3c2fa8a6c	12.31%	Heodo
2021-11-18	H9L2W.dll	dll	a2f270c6090772a4bc3b44379a8ad468c4c88a82e862804f53a3aec43ada81c1	n/a	Heodo
2021-11-18	GYBK7Dtu52EGTeUP.dll	dll	f3c68a0c97b4509cde6424d1ff5da0128a6ee889caa00351d9a6227f20b6ff23	n/a	Heodo
2021-11-18	bEOFxT.dll	dll	b6cc3c23b111f40c30edc5d65fe3e52569b35ea536b0b4c1d7c74ba1c9b397ae	49.25%	Heodo
2021-11-18	t8tt.dll	dll	f17a38d2ba44715cbfb4148f4ead04c40bc05511a321faa80bf0bf9820529ef7	49.25%	Heodo
2021-11-18	mcgiiA.dll	dll	5129cd55380ae38a7f9b4d533fe4844f2710b379daa962e6821abd6c52379ef7	50.75%	Heodo
2021-11-18	xb5OKzp2EVZE.dll	dll	589bf44a8735ed554fd78a7f55b63d7cb245b34ede51b32df2e93a7cbf78f1d6	50.75%	Heodo
2021-11-18	JJk2TfIrwS4TWWWIU.dll	dll	ba57be9be3a3924ccfbff81aa1c1cfcf35edcac977112ea89194e6b534517895	n/a	Heodo
2021-11-18	vpeTnSG8e6Sia.dll	dll	45a70998e8e8bc73e7aecc09debfd548e0e593f15a7d68aa801600c5a867222d	48.39%	Heodo
2021-11-18	CxEGjznlj6dDX4DIM.dll	dll	2c40b7a4e07c9b23e36bf19ca2cac951c3675c7947111587eecc55ca7b1d44a7	46.15%	Heodo
2021-11-18	EB8FT.dll	dll	1d92093c506f885e77c8b7eb471ea81b1afa1fd414ed8190196c7437fdb5f47e	46.15%	Heodo
2021-11-18	0T0qyXcb3HS2RHbk.dll	dll	34703719b57b529af42d28644c7bf8fb831e1b73d81a0231cf92522e66971734	n/a	Heodo
2021-11-18	v8h2bNCHx5KV.dll	dll	4b0ee0f423827d5b85014c4f7f650076c96f8c319642442f605124fe020c0904	46.15%	Heodo
2021-11-18	HlqCNLq6fXhM.dll	dll	bb3e1623fe9e6fdb028aff04c3219b07f7007a9ace6207e0af6d309039c7cae4	46.15%	Heodo
2021-11-18	NiLMAAthfkOJixEi9q7.dll	dll	e75eb30cd25080df9094d6491030a209f08cf1556733a889aff7bbb0f01cf0e6	47.76%	Heodo
2021-11-18	aF3yzQu5H.dll	dll	40a4449f3811ae81a7f0cb93f7a9928e07e63f46ce4c0c8eb5e4d3519e2b3d8c	46.27%	Heodo
2021-11-18	UkV1EcF5y.dll	dll	91e6d7170e588dff4578ca77040024e68b06182b5364e558f8d4a13e3ada4d74	n/a	Heodo
2021-11-18	Yf8vTPNy3DtqrcPs2FnH.dll	dll	74efec33e85391538b5e4a510d818f046f62ec6765a9136d021eef4552e6183f	44.62%	Heodo
2021-11-18	oWId0IpqeeIppuvJsaI.dll	dll	444fa48896299f7ff742793cf75a7f6d5a917744a06e16496f8c349bfd81c59a	46.15%	Heodo
2021-11-18	2ZMU9VGFKtqKILLICe1.dll	dll	1ad0d97f4f8e41c32be676c7024676f08c277c8d2847e5635e66516c485549b2	n/a	Heodo
2021-11-18	4xEPn.dll	dll	93ef520f6046eaa237a9a8bf3a5a66599d9ec5c314d08c81c729206504175e72	43.08%	Heodo
2021-11-18	TP418bK90UxmM1brjx.dll	dll	764a4f0e6c60a08b22414ec21af31f7a5aa3996dd907b71039bbe8e2ec1a4fda	46.88%	Heodo
2021-11-18	Ccp1Y5G02l05.dll	dll	92fd22eba0d39ed18290a819a3481951a77a182c3126f420b5699a1eafeea645	46.15%	Heodo
2021-11-18	vtTRLLLciLB.dll	dll	53c34ba1ff4fe75cbfed44d9e786f19697904f2c45d26b00428be35b680fa4d8	n/a	Heodo
2021-11-18	MXyQv8Z7niQ9lDa1.dll	dll	5e7e9d1adebd060d5b704b5e23fc0b99a526c8955e23983d9892d38d78369d11	n/a	Heodo
2021-11-18	NRo4pf13TWyJwim.dll	dll	3c978f1eeb197eb98d442e05fba04b62a35d5a1095cf05843a330e329114f38d	n/a	Heodo
2021-11-18	JZOsxHoRMR1SbiUN37.dll	dll	282cc8eb0eba9e9c38a9388bbdf17110df8fef4d27a454ef473497a56c5756ca	n/a	Heodo
2021-11-18	2U9duFlYEw99W3l71KX.dll	dll	87f9daf9a5fef0fe0122a8cd15bfef5d7032121c798a49452d9b5ec0768f06b8	n/a	Heodo
2021-11-18	jq3OFW.dll	dll	85a8329c7e6a49b18693604c3c1f673985752d966e543338164836ea080467e3	n/a	Heodo
2021-11-18	5lkmZCLOQ.dll	dll	392868fc15c55e6eb1397b0fdbfd9c3ea0974894a9b2b1fb0919f342b195a204	n/a	Heodo
2021-11-18	Y2MW45.dll	dll	7f0d12ed8c099d96d916a130a3b961a6a5471acc0eef09d5db8eb2710e12cd11	n/a	Heodo
2021-11-18	6dewON1Nm.dll	dll	8172067b543e9f6cfd4d64edc00c86448650e035536f3b42c35e9200e9fe096d	n/a	Heodo
2021-11-18	v7kL5Ind9nvX3bypXBoE.dll	dll	7a6c85734252ecbde924cc61543176523b84f35db210ef85ab9ccaaf441e1277	40.00%	Heodo
2021-11-18	sU9kVOoa.dll	dll	0e0f841282e5104b8876505960641a9f26831b53c3c7b998a79a6ccf8b1c9ac1	40.91%	Heodo
2021-11-18	BRaPmj.dll	dll	9ddce555ca5be6d979a8e0e2eba17a5fcc9de8357fbc62dc23dc0e02c96b0560	n/a	Heodo
2021-11-18	a8DXWk.dll	dll	9ddbaaadc04b10134cfbb9ef70004bcf34a653d288c3853ae6cd25005febde81	41.27%	Heodo
2021-11-18	fQoOTRb0SoFlh.dll	dll	33bd20e25f9cf537319d004003ea42d035ef32ff6342a44a268f9561e8807e86	n/a	Heodo
2021-11-18	AC6FnEeFGDvgmSGUAaiNI.dll	dll	7bae10e838ea83c346ed09aaaea56706b7e7e6fd68527d44f3171ac6b2cf85f0	43.94%	Heodo
2021-11-18	a3mVx.dll	dll	3faf5683a3563d08b8538bc631a53d8bccbfb7ef0d6fdf87674247ecbc38635e	n/a	Heodo
2021-11-18	jqgLD.dll	dll	4e928b83e0c4a0083ad583c2480949b6db2abcdff4a2274e333efb89cd40f3af	n/a	Heodo
2021-11-18	Tf26Y6ZqfZTt8Nfh.dll	dll	cd0134954f9b23fe562d7a32bb583f50646a05e7c7227f8e9b75c488a860ef1a	n/a	Heodo
2021-11-18	54az8A2vzZ.dll	dll	1084b11af4508ad64a527b8ff28d42c4f40ed522fd91d855a12eb599684da1ee	n/a	Heodo
2021-11-18	p6cX.dll	dll	bc319bb8e9c8b40bc31c5deeecfbcaf8e025327c29be4f3c46b0f9837b0ddfd0	n/a	Heodo
2021-11-18	IykZwmmvB0akLQ.dll	dll	c08c7e17cfec0ce0d82be65de4c3e3e071c754f5646a0657ea0d02ff7f8df3da	n/a	Heodo
2021-11-18	jF20.dll	dll	946e8ae8007cc24979ae49e7fbee11e3d36bef89cf0db1b7c54b9a9edeb6cbcb	42.42%	Heodo
2021-11-18	Pt21v0.dll	dll	0733828b830cb9dcf56d25b5fce2276b89190e73554b5b9ba89b3c0a3e2edd11	n/a	Heodo
2021-11-18	5M9GsMgq6Ixj.dll	dll	615b27287358d97891ffd14806f69b2af62a104702f89d0d5f37c71987f6e7fb	n/a	Heodo
2021-11-18	PbZiW6Y0txidivltL.dll	dll	b85142ab33cb033c530dd654b322a86fcd5d747f609594da48e1d5c8057e9401	n/a	Heodo
2021-11-18	dTWkqT17N3bmylNaLU8QY.dll	dll	dba9fb36abc584edf4059852559b8767a15d84e7853ca4c9b4f33a36749d9034	n/a	Heodo