URLhaus Database

You are currently viewing the URLhaus database entry for http://gn52.cn/css/8kudyg-a5e5aps-yadlu/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:187104
URL: http://gn52.cn/css/8kudyg-a5e5aps-yadlu/
URL Status:Offline
Host: gn52.cn
Date added:2019-04-29 12:02:04 UTC
Last online:2019-05-16 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2019-04-29 12:02:06 UTC to abuse{at}tencent[dot]com,abuse{at}qq[dot]com,jsquare{at}tencent[dot]com,dreamsruan{at}tencent[dot]com)
Takedown time:16 days, 22 hours, 11 minutes Bad (down since 2019-05-16 10:13:19 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2019-05-01Rechnung_744112221824DE_Mai_01_2019.docdoc 4b37aca0d46401d67a57677fc4189ef354ec63afa9c3312cd076fbe0391b9c6dn/a 
2019-05-01Rechnung_180201686019DE_Mai_01_2019.docdoc 9c8a8c93bd7627958c439fcb2f59df0236b1103da10b38c95498eafabd99887bn/a Heodo
2019-04-309987917558DE_Mai_01_2019.docdoc 94397c78f519602f1024a0a38a34669756d80c052bfeb917d909c34bd4c6f8e0n/a Heodo
2019-04-30Rechnung_61836243270DE_Mai_01_2019.docdoc f22f5ac0cf5f554876886a08b3907a0f55c7355a09c57877d50158504970c637n/a 
2019-04-30Scan_20831297784DE_Mai_01_2019.docdoc de78f4dc145a2403817e0b72432b009a47cded50743f58368c8c973da06e49d2Virustotal results 50.85% Heodo
2019-04-30Rechnung_0638531756DE_Mai_01_2019.docdoc 2b1810f68974145fa51514b11e17499ff46e0d2eee96976a51ffa446424d1da3n/a Heodo
2019-04-30Scan_9019273684DE_Mai_01_2019.docdoc c654d69862242df1d006165cd8d0a60f683ab0eae1cb1cd5f374f831e4374606Virustotal results 48.33% 
2019-04-30Rechnungs_Details_8659637373DE_April_30_2019.docdoc 189f8b4193229be15eb769285f0aca5510dc9c4e85348403ec9be3f19a853f29n/a Heodo
2019-04-30Rech_3577491126DE_April_30_2019.docdoc ae9aff9f74e7ad8ed8d61afd4f3796861ed3f08eb4ac310f3acfe9228d637b4an/a Heodo
2019-04-304585536431DE_April_30_2019.docdoc 8430c4680ac5779d052836f9fbdbdb6a9809d1eb8c62246036e89c5c919312dbVirustotal results 48.33% Heodo
2019-04-30Rechnungs_Details_525783845442DE_April_30_2019.docdoc 034d793e2d7928a31f3a2d405552c9288aa51d9fb212759573cb300f5538e92eVirustotal results 48.33% 
2019-04-30Dokument_8536899549DE_April_30_2019.docdoc b1cdd9d5deee35391445ab89e7432f560d42d2ff54a7e463ba09be2cce87ad01Virustotal results 48.33% Heodo
2019-04-30Rech_896092063358DE_April_30_2019.docdoc 42a04a35e214a16dcf1a928a99faa2648c7a34562eead18fa516512fcfa784baVirustotal results 47.54% Heodo
2019-04-309070662525DE_April_30_2019.docdoc a68abf4c2b97d243d84969b61f10219e0eb42263822a18fd10a9575dc3371c02Virustotal results 49.15% Heodo
2019-04-30Rech_902233584155DE_April_30_2019.docdoc f5e1fe9adece633f63a665f277cd8bf19bde62423b747cdcc4cb0c291ac2d7d8Virustotal results 46.55% Heodo
2019-04-30Scan_968981202414DE_April_30_2019.docdoc 14c0357b63d11dbadf73949bed4a57e9928d2843282d71f3111eb17711fc9dcbVirustotal results 41.94% Heodo
2019-04-30Rechnung_54184756244DE_April_30_2019.docdoc 4ea21ebe4deb18442e48c50e5df59871fe759b0bc7d77d9e642fb4c2d8d075c3Virustotal results 40.98% Heodo
2019-04-30Scan_51300977011DE_April_30_2019.docdoc da796c5520890b04964c30a0b56730e0069dd1682b69a3fc52a4cf0b8ee40412Virustotal results 38.98% Heodo
2019-04-30Rech_141835500961DE_April_30_2019.docdoc f399fb7c51afe772dfeaeb3bcd6e3d314556b9823612e79fabc1526b9c388efdVirustotal results 38.60% Heodo
2019-04-30Rechnungs_Details_045473164643DE_April_30_2019.docdoc 7428a72a1ea5094d15204e0137e42bc86333490aa07ff18637f9b6a8e3ca17e9Virustotal results 36.67% 
2019-04-30Rechnungs_Details_27751700176DE_April_30_2019.docdoc 17b7ee868deb1727ad76e550adc36d7961fc7680118038ab2911427184306a48Virustotal results 37.10% Heodo
2019-04-30Rechnungs_Details_43543628049DE_April_30_2019.docdoc b163bc3e39ed7287802c713d220de7f1c51f9b6b4d1cd8e0cbfc68a5455efc85Virustotal results 31.67% Heodo
2019-04-30Dokument_3300367425DE_April_30_2019.docdoc 76a48e5e3287a65d34eb3bfe7ea2564644136e567a65f25b9cae2a9a2569cdaeVirustotal results 32.79% Heodo
2019-04-30Rech_745596744899DE_April_30_2019.zipzip f73cb142c858467fe44ec28a0e86e969ecc5ddca2c17b7bc4599c6a5aaa151e8n/a 
2019-04-30Rech_33650003653DE_April_30_2019.zipzip 3f2f0474d97f3c2f16d404712d76c23a14dd517b28b90aaf0eb016e63917e4b2n/a 
2019-04-30Scan_92626561911DE_April_30_2019.zipzip 6c2acb680cc193f12a97249095339a09b995d8d88e7a767c39f14df9e8fa4c23n/a 
2019-04-30Scan_36781784120DE_April_30_2019.zipzip 2f3b5ed47ffc55c377fa6287b1b052852e7c8f20c08bcdf4a2911f3ae3e37d28n/a 
2019-04-30Rech_986262459760DE_April_30_2019.zipzip 8f48243918010395f68545f781af6a0c5ddae9522b7bb283b628377e4275dec2n/a 
2019-04-30Rechnung_76337046700DE_April_30_2019.zipzip bb4742195eff7c29d1f6030bff1ba0a64a7c41a4e84f9cf45cd62e658adaec1bn/a 
2019-04-30Rechnung_076855638388DE_April_30_2019.zipzip 7d7347399aeafe0ea093400d144440b09784ed8e5a5bfc144a06c9bc8309aacen/a 
2019-04-30965627806195DE_April_30_2019.zipzip 426688f08562722fb1f71a050707c32a1556380a2299a2c994025e502d27852cn/a 
2019-04-30Rech_4488920351DE_April_30_2019.zipzip 3963cf55c716840d0054429970ba37a54b1e0f72ed415ed8b752cdcf0c5e3dc0n/a 
2019-04-30Rechnung_80849005158DE_April_30_2019.zipzip ce08aaaa69af9d1e08c74ca352eec41619936c675753ef7b9a25b8e615ad2228n/a 
2019-04-3035962523158DE_April_30_2019.zipzip edee4b691857325759dd275e43f24c013f4c13f7d785bc1a532a437f7f3bc151n/a 
2019-04-30Dokument_071773619091DE_April_30_2019.zipzip e6208a95d3ed0afc9dddf3b94af2c610e39d4a637c85111b8f4965f88726165en/a 
2019-04-30Dokument_65401943736DE_April_30_2019.zipzip f0ad9359890d567b3599535eb1b4632bf42ea634b2f738cc7c3f446e350e55can/a 
2019-04-30144628578816DE_April_30_2019.zipzip e0cdba2e5809146336bc2bc4cca0df2462fe5e71c672d95817e0e7b770e9de68n/a 
2019-04-30Rechnung_170414435556DE_April_30_2019.zipzip 9859e3ca75066cebdf935d958a798b1d6c90f50f647e3560368bea1c9dcc906bn/a 
2019-04-29Rechnung_8660006498DE_April_30_2019.zipzip ed6d153ae9ef7102b281683a5a243ed243c6b9e2812d621409b1699bdcce7c5fn/a 
2019-04-29Dokument_63975388616DE_April_30_2019.zipzip 3b2f5ded9835719af65c9e09c5f8a5f403cc03acea551fbdfec62d4c06522a9cn/a 
2019-04-29415210153448DE_April_30_2019.zipzip 71bd861eb4d4358a3b2e40d8949fe1a38588c143582757fab993f867fa2c0d8dn/a 
2019-04-2921213347773DE_April_30_2019.zipzip 9a23f0eb17b534ae3e191ec5322c8760d91177fcbcb3cdfd7831b653ade36861n/a 
2019-04-29Scan_69874662891DE_April_29_2019.zipzip fb8620c65953480950e2ec731b9e5856c62d624a0fc24c6f05b5a0211b8e2aa0n/a 
2019-04-29Rechnungs_Details_717803898094DE_April_29_2019.zipzip 5df3113a3dccf69f8ef6e9fcced9127bc659a362c8e25358b4247137c6bec5acn/a 
2019-04-29Rech_48262754434DE_April_29_2019.zipzip 823bf8fa75895652ada69a1a0505bd6749bc6ede80a3a4afb09c8ff33363fe01n/a 
2019-04-29Dokument_692827265975DE_April_29_2019.zipzip 8aa1c687f47422660edb7d527d2a422514b7d23a508ecbe5f50678cadc2b2d38n/a 
2019-04-29Rechnung_9433768181DE_April_29_2019.zipzip ccbbd6906ea4c535104800716caef1910b796bbde6cbd7b2c09970be6e2a64cen/a 
2019-04-29Rechnung_36009329410DE_April_29_2019.zipzip 2aeb5537881e8c9c5b9bb4bd9d7853bb1359aac84c93f9092a5fa7a079d27103n/a 
2019-04-29Dokument_7075755444DE_April_29_2019.zipzip 1df243c05d77e253dcf44be34ebb0dbd6cf3785a3ade42e7f20651211a54c145n/a 
2019-04-2991030119008DE_April_29_2019.zipzip 95e44794a6eb54cbcbc7341cb84899f319c93f6dbce52320fd7f99a237344f13n/a 
2019-04-29Rech_845850273905DE_April_29_2019.zipzip 39dd2daf9ae452354025786d6cd46c53e298d875f0a180214c0ad789072ee39bn/a 
2019-04-29Rechnungs_Details_329353626202DE_April_29_2019.zipzip 6f25136bee42f6e2ef750db9c86aedcfc3914fde34fbcb2e75b872c6dc6016ffn/a 
2019-04-29Scan_33716046639DE_April_29_2019.zipzip 6be7ed3d93666baa4433d6613219ef20571c5d05e79963e1cecd74dd7974a7c9n/a 
2019-04-29Rechnungs_Details_7655291463DE_April_29_2019.zipzip e4aa89bab5df997c9e3cf03067981d01affe8b3df4a91362fe478aab0ae5db04n/a 
2019-04-29Rechnung_4709545992DE_April_29_2019.zipzip e80408255094ff644a776068c43f216551dfe9a479a23a59b2d1192da989d4acn/a 
2019-04-29623866640773DE_April_29_2019.zipzip c51f5618e1240aa8e41a06bbdc24e50f308759b607eba1040cb6ad32184b8299n/a