URLhaus Database

You are currently viewing the URLhaus database entry for https://ongthanhnam.com/ugnbest/2iVHb5sJGvLLqC7Bj/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1868666
URL: https://ongthanhnam.com/ugnbest/2iVHb5sJGvLLqC7Bj/
URL Status:Offline
Host: ongthanhnam.com
Date added:2021-12-09 11:41:09 UTC
Last online:2021-12-10 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: waga_tw
Abuse complaint sent (?): Yes (2021-12-09 11:44:11 UTC to abuse{at}ip-only[dot]net)
Takedown time:22 hours, 7 minutes Good (down since 2021-12-10 09:51:25 UTC)
Tags:dll emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-12-10ylMxW694gTMvWW.dlldll 6100f4a7603dec0d082f6c893a52f78f0f26bd81cbde62e5a8647dc5db4c8fe0Virustotal results 50.00% Heodo
2021-12-09IRyEppr2EXNRraACCr3.dlldll 8638ba951ee7fb8190c3eb3eb652f5be54e1aade46317d166f31cca004db0be6n/a Heodo
2021-12-09GtMu.dlldll f49bc4d1d34868ae3774aae0bee9c5436e27dce4b4023bbd590ed5f87dca434fn/a Heodo
2021-12-09paMEgD.dlldll 9d6305eff3b7c440a86ebba99db57a9b9b89c4fa3e68704150733d9234748a57Virustotal results 50.00% Heodo
2021-12-09k6MC1dBGy.dlldll da9b28ef7a3b580ec473a7b56aa168f0d37d771e97614d454821eca2869b7eban/a Heodo
2021-12-09L70SuvehLZIN5iLTHKxmM.dlldll 64bc34bded6b90ac1be429c399ef58da48c06ce82f3436d2c2f8601b5f19454fn/a Heodo
2021-12-09p12qitgqHqfKC7zUZukJl.dlldll 898f2dc5d0e08f198af1b1fb98fe558423fc4a1f59c5f9c64a105f50e6b48fc7n/a Heodo
2021-12-09h6USv.dlldll 3c4d6392b7f5d0b04102a8ed5e844f95a03b04bc6f1d30a6f7dbf7e8ac08e1efVirustotal results 37.70% Heodo
2021-12-09Zzx9Ns5.dlldll 29c59c62689ad97da6da985d85820159cd2ff82c1f21db4d77c64e700f75d366Virustotal results 49.25% Heodo
2021-12-09MCvp5MoSTOEr97bk6adoc.dlldll 81848e14602ed038dcfdeaf8c83e44ad9884e48a23381f84c0d5c5bc75f5ce4en/a Heodo
2021-12-09CeIRdNNuP0EM1S4E.dlldll 3f4a3ae8eb59d93156c7997ced082811aa59bf421bb88d1b7fddda11269e1db9n/a Heodo
2021-12-09MFgn5hm.dlldll d34aac87412ae8003b3f31f114324e8c8e8816c02ca1a5f25d9e6cb3414f1aa4Virustotal results 49.25% Heodo
2021-12-098fDSG8eRY.dlldll c6dd54ce0de1bafb7f799399d2eb01c0e892fa51a3c2c30450606211b5760dden/a Heodo
2021-12-09UMBJ.dlldll 56977c00f07680a926bd16e22aff662e340de694472c89256821c911eaf7b09eVirustotal results 47.62% Heodo
2021-12-09mjYXPbq60JAXooeyoOO.dlldll ebcccc190d59a58e73adff672566550fef7120cfea4faf43c5fb4dedf7ae8628Virustotal results 49.25% Heodo
2021-12-09A81Wr24.dlldll 1d41dbb16ec52f8cc74db10fa65ff652c5044820f62b31429dbfa347b073363dn/a Heodo
2021-12-09JNCCWvVDq3aiCnwfvnGV.dlldll b961c1c72fc5ed1152652c699015bbba197229f74b6f8b82da56bb3a8743a08fVirustotal results 49.25% Heodo
2021-12-0997VSIAbXHDg1V.dlldll 40534495202d37b7588a659451b0b95c27a3ed7fc9be21f73422e12b70bb5087n/a Heodo
2021-12-09x4h1AWD8cOl8JY.dlldll 8fc0719d4a9228a46b9f7efbb89cfb86f45b4b0a257ff23d0f7edd7cfba530b6Virustotal results 48.44% Heodo
2021-12-098NVG6g0eQxZSBuU88o.dlldll 6c749e580076f05d154c50b4a49e90f40328d838708ec6b9bba73cd370970fd4n/a Heodo
2021-12-09UQ8yI4r9P.dlldll 99b4680f9ae669d74ecf688abe4af7b8db63335861970017bde4f9b553523989Virustotal results 45.45% Heodo
2021-12-096NHeIDspA.dlldll 083b9bb225db0138b05c79dae5d2acef50ed62f679efb63926121a845639bca5Virustotal results 51.52% Heodo
2021-12-09qFpSxS5dX3Xq11H.dlldll 7b3bb5320be442800f3729b80e6260d6dde674350623a560d06e21367063fe45n/a Heodo
2021-12-09Cexn.dlldll 71c112a4bafcbe588ff46edaaa47df72dfeca1bfad0b6a54083d2bb895238cbfn/a Heodo
2021-12-09ozsJHqG.dlldll de2e9ab1dbf71bde10c7151ed54cf57016b09e0217295e535c75a9af66cf2f47n/a Heodo
2021-12-09LiL9Dw7k7UcCkZAAHlEU8.dlldll e4dc01ab8951e1985c4bba52f41273778021090f02511a50c72143a3befcad22Virustotal results 50.00%Heodo
2021-12-091VAb.dlldll 24b3eea6ae9683d14f353da8c436502b967dbab3c38ed5a507e25eb79d837e59n/a Heodo
2021-12-09LGlrE.dlldll 3c3397fd6cf30a47de4885728d4d967e83b5c03a695ac18a01ef539f4b614326Virustotal results 46.97% Heodo
2021-12-09AaUtWJ.dlldll d3fcb0e5be1df3e0fa7871c2ebf4b01cd93f063668a185e6b5b794626bff7a95n/a Heodo