URLhaus Database

You are currently viewing the URLhaus database entry for https://katrin-meinrenken.de/wp-content/plugins/wp-roilbask/includes/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1974663
URL: https://katrin-meinrenken.de/wp-content/plugins/wp-roilbask/includes/
URL Status:Offline
Host: katrin-meinrenken.de
Date added:2022-01-13 18:59:05 UTC
Last online:2022-01-19 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-01-13 19:00:16 UTC to abuse{at}oneandone[dot]net)
Takedown time:5 days, 17 hours, 37 minutes Bad (down since 2022-01-19 12:37:56 UTC)
Tags:bazaloader link IcedID link xll

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-01-19DH-1642593322.xlldll ad5f4db4dad54f1c69a36a826311d782671ab5e16af827e17920c8180ec28a2eVirustotal results 20.00% BazaLoader
2022-01-19DH-1642591748.xlldll a19a61482e4b0b342546fdc14c13f206569e47b6c6ae310136cfd54bdc5b32d8Virustotal results 20.00% BazaLoader
2022-01-19DH-1642591628.xlldll cde9da874805fce066203681f88254cb84d6be7d77b3f0794140decc1e1448eaVirustotal results 33.33%BazaLoader
2022-01-19DH-1642589978.xlldll 4f5fdd31a9968ef180ac139cd711f49708ee61c0959d0507d65ea29c90033606Virustotal results 19.64% BazaLoader
2022-01-19DH-1642589287.xlldll a2e85069fc46ebd9d42f5032342656337b40583c3f94f82f653e17dd5bae7f5fVirustotal results 28.79%BazaLoader
2022-01-19DH-1642588618.xlldll a134c216fa5bdd844aa6c620365776754d618280a7982aa11b81a11f0bbca307Virustotal results 34.85%BazaLoader
2022-01-19DH-1642587444.xlldll 4db56cc519b8fe92f608a30bf32477b62c1f154de183e7f075bb4cf68e918a83Virustotal results 26.87% BazaLoader
2022-01-19DH-1642586623.xlldll 3d96364b05eeca8c8e82542c15127c5c648177560e738afcd6160c22a5a4408cVirustotal results 20.00%BazaLoader
2022-01-19DH-1642585387.xlldll 488453b2c3d9e532d42bcb634b9817cb02b5fbf3bdbb4d12f24abca359e44089Virustotal results 36.36%BazaLoader
2022-01-19DH-1642585046.xlldll 9f99abf0edf0c585155192ef48ca7c3eaa1a479f594ce2ca6406c92f02e1e7feVirustotal results 24.24% BazaLoader
2022-01-19DH-1642581224.xlldll a9f6712e7cf49bddcbdef715d13768157f94252be28bd74331a9ff963401137cVirustotal results 20.00% BazaLoader
2022-01-19DH-1642580149.xlldll 4507c736a5aa8756e4ae1f5a43f16fffbf1f8536cde0f450eb2fb8e9edf68142Virustotal results 20.31% BazaLoader
2022-01-19DH-1642579280.xlldll 7e2a361d904e56e56ebdc4c4439e77f63246ae4276f573ad5b5427a0658fc5a3Virustotal results 33.82%BazaLoader
2022-01-19DH-1642578441.xlldll d6c5958b3428b877f04dbfe926d80823e014e182b2cda18c0b0e9f2fde835d44Virustotal results 23.44%BazaLoader
2022-01-19DH-1642576594.xlldll 56d8a969497fe0cf90aa6e71c8f7c1a2e76b621d0b18876db8e3ca198a7b4350Virustotal results 23.33% BazaLoader
2022-01-19DH-1642575491.xlldll 75cdb51337ba20c2f53bc8dac34e55678cc01b7698550ba91aaa3ce667af32c0Virustotal results 20.00%BazaLoader
2022-01-19DH-1642573778.xlldll b9161245a81bdee1f12e09a4a66abb8ec219f10a4fbfa2023dcf2ca4a2ab7114Virustotal results 20.00% BazaLoader
2022-01-19DH-1642573640.xlldll 564ff55dbe619258820e95835d623e037c2daa146c81eb257f7c88ef28f76578Virustotal results 21.31%BazaLoader
2022-01-19DH-1642572580.xlldll a9040dea33ad6d284d1302e069d31c3b08c3d83de3681dd0557ced13781ca391Virustotal results 24.62% BazaLoader
2022-01-19DH-1642570681.xlldll d3dbd89bf43c2ade8f0c590ab831f5a3b200bb5bf370a13450523ef9f094437fVirustotal results 21.88%BazaLoader
2022-01-19DH-1642568464.xlldll 113fa9ae34480ab1f6b091d8928b9716a4e7dffeb3c9c47129ed249af762b47aVirustotal results 21.54% BazaLoader
2022-01-19DH-1642567586.xlldll 74111ea2672178a41bb598c8d4239790c37ce0be77ae2f38106f258fd89a38c0Virustotal results 37.31%BazaLoader
2022-01-19DH-1642566799.xlldll 03396b2ed677c8afc58f2ce403417e56df85027468621f42ac416a38baa7bc63Virustotal results 20.00% BazaLoader
2022-01-19DH-1642565731.xlldll 2a44ed0a9fda586147fb82a9927090f745e68887712a29d34e4bb1c52a83fba3Virustotal results 25.00%BazaLoader
2022-01-19DH-1642564944.xlldll 9bfe3e664dea6ec4c143d6beb35b7cef737163ee64f78e06e4d779859c046138Virustotal results 19.70%BazaLoader
2022-01-14DH-1642160808.xlldll a7d8021fc936f12b656c03b768cb00c53888073cd548b179a81529b9e36892f0Virustotal results 24.62% IcedID
2022-01-14DH-1642157651.xlldll 105047a088c424564285c660467e7d848743d0d932918d060b937e85e9f7ddd0Virustotal results 30.77% IcedID
2022-01-14DH-1642156373.xlldll 386a6b2542e3d43404d66edb56283b4bbb8b54f0c67812ac8ae272601774e676Virustotal results 23.53% IcedID
2022-01-14DH-1642150319.xlldll f65fc4fa3431e6e93d85cd91fb1fed68f46db285032c40e0b87df9614e4349ebVirustotal results 21.54% IcedID
2022-01-14DH-1642142482.xlldll 3160725ecb2e49e109db6db96cb5dd7c537fe5ef8198bdcae2e55a9aa5de3384Virustotal results 0.00% IcedID
2022-01-14DH-1642140210.xlldll 69e2bc37da2c8a6f25fce37a024aca628f8216cb0ddcf70e1e55766eae011bf2Virustotal results 23.53% IcedID
2022-01-14DH-1642138316.xlldll 31ea2c96fb914d5d932a3176db0400ffbaac1af2d5b89d4f5bb58380d5cb7fa9Virustotal results 0.00% IcedID
2022-01-14DH-1642137579.xlldll 4590da9ffdb2984735232c83b4c73224bc6ffaf6c9f99c8d3c475e5e2fce24e9Virustotal results 20.63% IcedID
2022-01-14DH-1642133893.xlldll 88e452f7857567a9172ad966b76be4c9153224a32f22fa025daed33cef0b5d51Virustotal results 13.85% IcedID
2022-01-14DH-1642132703.xlldll 6f7dfdabd97519cfe18e64f8e7d8663c7ad6d7422ba5ed09b473ebe290848e5dVirustotal results 15.38% IcedID
2022-01-14DH-1642130391.xlldll 5cd2e18c9954e2224ffb17693487b082a41500d285e703e947a21e8d1b70f106Virustotal results 0.00% IcedID
2022-01-14DH-1642126214.xlldll 149e1550810651ae047350af9dd52f2875b483fa7cc2b5a641d68678317d5e97Virustotal results 22.06% IcedID
2022-01-14DH-1642125167.xlldll 3092b1e6b513a751a482e7f83c3e653cd2e44d91d031201c5baad111712a8e1aVirustotal results 22.06% IcedID
2022-01-14DH-1642122129.xlldll 97f67fca98471d15b171917f1b24e9bc85d4ca6e94b57985235f611c15637bbdVirustotal results 21.21% IcedID
2022-01-14DH-1642121104.xlldll 0252b28502d3816c562652cf9734146ed889233c20dabf81204fd54c3631ad54Virustotal results 23.88%IcedID
2022-01-13DH-1642118224.xlldll d1e61f9b080e3b6892df3660c346870ec62ce7627437bc666d7e369e215f5f43Virustotal results 22.06% IcedID
2022-01-13DH-1642117934.xlldll 6062599bb13ef036a42185ad9d1e2f58665f29d665626ce95571c49e0107f5dbVirustotal results 0.00% IcedID
2022-01-13DH-1642116605.xlldll 63775b5137b9d9e831bafd186f5cfafe4f7a7417a7bae5b5e15ebc99e0edb406Virustotal results 12.12% IcedID
2022-01-13DH-1642115570.xlldll 125af770735566cb3c35df290d870eb47b00c67129e84ee4e392fbe556c057d6Virustotal results 0.00% IcedID
2022-01-13DH-1642113785.xlldll 66438cb07ca0cc562bc57e0fef289ff7b284ef872afeca5bbff75be2f8360f71Virustotal results 9.09% IcedID
2022-01-13DH-1642112770.xlldll 09f61d519da2be5534a3089c1a1a9ddf53e66add5cec3812514f936301728142Virustotal results 22.06% IcedID
2022-01-13DH-1642109582.xlldll 358bc65f18ec9fd2337171e4058855d4ef5aca1f91c02894d34b099dc1ef45adVirustotal results 23.53% IcedID
2022-01-13DH-1642108143.xlldll 1dfc17329674661fef45cc7b5b81891505821f454cdec5791370ba2cca1832f3Virustotal results 22.06% IcedID
2022-01-13DH-1642103439.xlldll 718c54d1146a1d4a10fa7791295332e1bc18b906cbf5ee56e1f8a34b238b4cf0Virustotal results 2.99% IcedID
2022-01-13DH-1642103121.xlldll 61aecc39f888146216a2e12253178d8a10c68e72de71a1ecf1131be56ba4f8d9Virustotal results 16.92% IcedID
2022-01-13DH-1642100911.xlldll bd865e20e2f5900398bc876d184e0abab7d62715d91130961a6a61d3cb64315aVirustotal results 0.00% IcedID
2022-01-13DH-1642100344.xlldll 5a5bcd7586232234b26c06e0a0bce8ab5e4fcf32379c4f1529fa4f3797e4ea95Virustotal results 25.76% IcedID