URLhaus Database

You are currently viewing the URLhaus database entry for https://cr.almalunatural.com/b/GbQllyWCCy4bJWG2PW/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1984587
URL:	https://cr.almalunatural.com/b/GbQllyWCCy4bJWG2PW/
URL Status:	Offline
Host:	cr.almalunatural.com
Date added:	2022-01-17 21:19:14 UTC
Last online:	2022-01-18 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-01-17 21:20:32 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	1 day, 1 hours, 13 minutes (down since 2022-01-18 22:33:53 UTC)
Tags:	emotet epoch5 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-18	OUmCtS.dll	dll	042d5c0920137657f5cbba1c09ad8b2209bc044534062ac4ea4d161813997000	n/a	Heodo
2022-01-18	pzKtgkn.dll	dll	cc225e4c1df5376cedf7845b244a1eddc6c3ccd00d4edb3d1a1f0cd38c681c1a	n/a	Heodo
2022-01-18	slFXDdlJJlpBfe.dll	dll	eb2c15c01ff1aa3e173301385ae875380788139ce88555ca14fd2053940bf53c	n/a	Heodo
2022-01-18	LXTfLKEzCE6luLK.dll	dll	7040b3c7172726355e43be72c076d84dc677f4beb15108bed2ec11bba0fd792d	n/a	Heodo
2022-01-18	7L4fgRhPm3O.dll	dll	74a43c4061d17d50f311c28a7fe8e7c9271de2f10edbe5f028681e716b8889db	n/a	Heodo
2022-01-18	UOljOgVv.dll	dll	2cfc6a9e4ceb4340a18a35bc7ec359c296eca88aaaedfa27fab5423547ad4bcb	n/a	Heodo
2022-01-18	Q1odJk6NwkZ8Vas.dll	dll	5bf8c4ab9059d190e203c7af480753659b4b40acefd7c8d50bfb717a41919074	n/a	Heodo
2022-01-18	F0mmGDb.dll	dll	92bf51ed04c7270d642dfd3a083075c214bea6022cf39b26e93ccc56161f6c17	n/a	Heodo
2022-01-18	3ip.dll	dll	e9d82db5d854851cd5622703507a34dc54e480ad2d8128cab4699914751ebfc2	n/a	Heodo
2022-01-18	P3OjILRgGA96G8W5N.dll	dll	05dfa7e0a03c99c2b73d7b28a43b8af308be70dff4ee675e79d545399c23a2ec	n/a	Heodo
2022-01-18	dIoDDMWrR15K9t.dll	dll	c1d24d9fa4e99913f43e9c12c0addc71ac736b58755d92eebe2db71114f929fa	n/a	Heodo
2022-01-18	7x1.dll	dll	eb4391a3be5b7a62c7c361aaeada3ea0e9bb1803b6d35e44e46cb2a31aa479b9	n/a	Heodo
2022-01-18	fMVm5AHm2.dll	dll	fb5810149497092a525437467e2e76cd9b87663820bf5a8d54768b6df97a29ca	n/a	Heodo
2022-01-18	Dlz5U2j.dll	dll	5667b490e012b79121985ab9d566e5aacaf956195d1b441315b45e66b0d0047d	n/a	Heodo
2022-01-18	AZiqz21oodvdX.dll	dll	0606d7854057d8c5917d768c5a3d7e0d47410dca93e7de3aef15c2a5853ba9f1	n/a	Heodo
2022-01-18	XgrHa9PB4gUTg.dll	dll	1529d6fe0011c837aa95d6ec0bfcb27d9576ba47e566e78c70c5a4456aa3ae8c	n/a	Heodo
2022-01-18	31NymWw53sUlWNCfYI.dll	dll	744a30fd26f44e8308760179e5e9aad1fa1dd2b039057e2d126c0d45f930b384	n/a	Heodo
2022-01-18	E8dTWi.dll	dll	f41ec42f9d71511f9e3f2399dba8431649bd4297e5e908cb236a9f9c7fc8d340	n/a	Heodo
2022-01-18	z2FWPqbMR7h42x6Z.dll	dll	b0b74e8a6ada00100510f28a9384fdb65b68ac835bda21902ac08688b879e52c	n/a	Heodo
2022-01-18	sbwwVkRoOdEE.dll	dll	40b58d2826b15b6cf77b6c02419484f1bfdbf6f708837d8d62ef9d84eff036ae	n/a	Heodo
2022-01-18	aGpU.dll	dll	fc46ffa12de393767e49a05abb6f026ca3e124e2cce67526fd1bc6c5a21615fc	n/a	Heodo
2022-01-18	EkP6nJ3LNU2hAy.dll	dll	011c72b594d748835165bd9b8510905bb2c96cc52ff0d13fcbcaa461d1c89fa5	n/a	Heodo
2022-01-18	WoLY5wXdkjm.dll	dll	44f2b1a0f35b2aa29271e3c1d8b280ef17a8690db5986493682713f25d8cf575	n/a	Heodo
2022-01-18	C1TvZ.dll	dll	e8f4c493bdf1546f89ffaa3928622a5d543568302b3f4b7ec72cc6a9b3c708c8	n/a	Heodo
2022-01-18	8PhQcZAn0Xj8LHCjH.dll	dll	e23c90552bd38e248738ea0386e3b30e16d5081fac77885b4d73fe5492566de1	n/a	Heodo
2022-01-18	BMUEGEIjTmrI.dll	dll	a5b6c858e37ca2c4765374a61bfc87bfe5c46ea17e7b1a41284e6f217399fca2	n/a	Heodo
2022-01-17	ZFtMx6Zlq2y5D.dll	dll	2c50e4dc5113e4d1eddbad34193fcc26afc03cbc0f1325b698091b541a92b592	n/a	Heodo
2022-01-17	ba650lEl2qX0pza8fw.dll	dll	b597f3e1ee06ff25698bb1e283a9054761ca79cc9d6643ecc949fe57e046b64f	18.18%	Heodo
2022-01-17	29I80mKwa.dll	dll	e88431f32189892952f8d72ee6a4193831ab955116d25236a6d28313b5ec1a14	n/a	Heodo
2022-01-17	f2eXyHpEFvRSAU1NU.dll	dll	901c0feb39cc33ac4330cd83011491bba97fde519d442612329242d2c095a571	n/a	Heodo
2022-01-17	6LKRlE5.dll	dll	ad1d52cd259a0396bc7409c4c0f62a640141dd8021533e70a62ae115d8e1f6f1	n/a	Heodo
2022-01-17	3awaIpfPLWKradCuV0.dll	dll	3492d0fba6ccf22e0d3a5ffda4338b2bf940bb9eba669c856f30c778909a2335	n/a	Heodo
2022-01-17	Kfu6h.dll	dll	d68ba7cbcd23e36965762832ca38729dc1aab3a41127b572364c2f93b13b1e47	n/a	Heodo
2022-01-17	sC0z8A1HXkIlYv.dll	dll	3b18fce744196756bfaa1d3c4f489e7a3b4bc8491ada43085b28eca13ba4ccfe	23.53%	Heodo
2022-01-17	HttJvMerM2q4qXp.dll	dll	97fb5457ef219ca5d121575b21ad4a0da4c8bef18bd0177a32295c047260bfe7	23.88%	Heodo
2022-01-17	OjqwEo.dll	dll	13d023358e26d261d1fb9bc211be517000c99dd13d76cab4ac4437c37cf28609	n/a	Heodo
2022-01-17	ybf51.dll	dll	3d3309bad325a5f58716d7939a8629cae954dbf06c346e9e4d51e282d4351468	n/a	Heodo
2022-01-17	W.dll	dll	7ce6e0db25ff34a964f79d49d27e6bb197b750266b6f5bdfb4ac0d2c66fedba4	n/a	Heodo