URLhaus Database

You are currently viewing the URLhaus database entry for http://mawroyalmedia.com.ng/l1o2x/mAgab05/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1984600
URL: http://mawroyalmedia.com.ng/l1o2x/mAgab05/
URL Status:Offline
Host: mawroyalmedia.com.ng
Date added:2022-01-17 21:19:17 UTC
Last online:2022-01-19 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-01-17 21:20:43 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:1 day, 16 hours, 5 minutes Poor (down since 2022-01-19 13:25:43 UTC)
Tags:emotet link epoch4 exe heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-01-18DrH46zddH2DxCJruUr.dlldll dd6706f2146b13567427b517d6ba3f73496185c4a5e8206c383fb2065e8342e9Virustotal results 22.73% Heodo
2022-01-18C75fSizRmLONkfpcI.dlldll c5cfb69bfa44ccee0feb018e2eb5d32caa8d9fb2044dcf321e53ee61994ec2b2Virustotal results 21.21% Heodo
2022-01-18aocsYFBBm2.dlldll 749af1171c7bfe18a230c02f2c82f1f3964b04a039cedc10e0d4cf634dae31aen/a Heodo
2022-01-18zBVEQbn6uN6.dlldll 1fecc8e8591e5b5946896e34228ff4ac3ed05e7c1a3ee7dd523aa05ad5fd2bean/a Heodo
2022-01-187.dlldll 6cbcb27009d3a76725e7d8d0261fd13ead3cbb800b321de62fee776829511e32n/a Heodo
2022-01-18Z1wVFdqVl9CCO6Jo.dlldll 400878b3c47856f5fb3fdf1316f9fe0202a451f5b725bfbb5115ebcfd1129691n/a Heodo
2022-01-18WZLlM8lM.dlldll 5b9532066f265eab0554577542b5ba9b4a26dee1fa0ef5b15bf14bb7e4f5cf20Virustotal results 19.70% Heodo
2022-01-18yFCypTkYn.dlldll bc5c64453505c5e93627e37749d6f4d666e843d2ec596f269bdb4e6e2cb38296n/a Heodo
2022-01-18sk.dlldll 7aa4f89a9bcec05fd4493cb896c30969732d1c34bc295d4cd0d9b8d6e649d129Virustotal results 19.40% Heodo
2022-01-18Xvwj0qfpa.dlldll a78fbee83030c9a7f08cd3048450e6d1af94ca236579e2c881638a2b7888d531n/a Heodo
2022-01-18qZsV5d.dlldll c075bd46198d1d8a8d8645c99ed242267f6c547d521db5d31c687e63418463d4Virustotal results 18.46% Heodo
2022-01-180REBC95Tut9pS01eK.dlldll e13e1de8699360c4faa2ae93f040b6303b9b6be307248045b08aba4194158c5bn/a Heodo
2022-01-18izkuPyZNzS9l.dlldll 76fad33f1589997d06cdc84106f1edaa00afb3980efd4866531f180589eb44aen/a Heodo
2022-01-18f5uJfzaFJ2.dlldll 55994553bb7ef5d37f804ea9081809e3f46495dcff0458ee18bc0267670d3be4n/a Heodo
2022-01-18S042hJXRq.dlldll 8d7fb6719d4b29e345ad5179220a6685e08d790c994881eeec5daad0ac863055n/a Heodo
2022-01-18LpAxrEELRX7zfzhXxD.dlldll 5a120340fcb82195dbf4a5b277251d08c1faf16d17c0e424c003606952dceca2n/a Heodo
2022-01-187LYJr1Vkxw18qxiAhr.dlldll aa418ca5e34c39e5ae4933e6ae52488e01897b0095bbab4f672704aa025d1acfn/a Heodo
2022-01-18CUHzO.dlldll 2b79df4d5ab83430c1bd70369de0ca62c64871d14326430c83c04da3707f39cbn/a Heodo
2022-01-18LWZLY.dlldll 2d8a5ff463fae9e25d9afc169d75ec130d69baf1c7544749abc8c14ad317f9a0n/a Heodo
2022-01-18VgmX.dlldll d4a3378bf749adbd6c3d630530fdce8f0f508fa6ca38d98c57fee32d31339383n/a Heodo
2022-01-18cC7yhZosuokP.dlldll 31fcccb514838ca4af581fc4048e2cc088e4284122bca17dccddf8818738ab7an/a Heodo
2022-01-18VSMj3wZB.dlldll 660ed66cd21d8c470d9e7a2904d675d4524864d417e82dfdb4912fc024c066f5n/a Heodo
2022-01-18NXSwj9hjjKPJdesmrz.dlldll 15b56aaceca0f7f3ab909a17fa53a86ce6c18481497aa7958ab8ae081a7e049cVirustotal results 18.46% Heodo
2022-01-18MZW.dlldll a136c57494da8055c9fa1fa9f6b7e1a520263ce07249f08257e97c5a23513983Virustotal results 17.91% Heodo
2022-01-18M0G0fCd4L.dlldll be1793c027b0598e3e22fd6a79c9e887f400c7124d6a42080d62b45cb2d15110n/a Heodo
2022-01-18Jt681mQpXEu9Tz.dlldll b227eed95ad29c690fc159c067b864f973b1dd5ee7ccb17787c001eb019397ddn/a Heodo
2022-01-18StpSq.dlldll 9b3fb63dea4b772cd36e83ccc98201008c2fe670cf74e3341066a77eb2d565c8n/aHeodo
2022-01-17zPF.dlldll 96476950d46f0cb4801c627c7c07f91d3eb40123368e306a74fb5351f86c9dcbn/a Heodo
2022-01-170f7ro0O.dlldll 13afa857cad7f89d9eab26d325785fe7d64e4daa38d225bb1a0c6264f5c9a7afn/a Heodo
2022-01-17Bbhi32jq6y9S.dlldll 56d5fafae661e22b65b79ae84c2ce7fc8e6e2432e7c434ecb57dd74bc2c4df8dn/a Heodo
2022-01-17Xcfxt0JB9HqNtTN.dlldll 32798007514bf64f424f6b9ba1b820f39a8229af140eacade9c37b2f3337f686n/a Heodo
2022-01-17uEHoASb.dlldll 11bf45738c2924fb0e8229ee98c3d3de55542126be7f8834621dfd48d43af62cn/a Heodo
2022-01-17vCJ.dlldll 2d6dbb41ff32992a85560a5b7cd745f0edec822690c08ed0c610164abf991278n/a Heodo
2022-01-17goXPA9dK2KXiXVMxM.dlldll 95756e60e5d22c6fe931c65134c11d4dda4cfd837532f342eec28990638a67b4n/a Heodo
2022-01-17kggXMbL9lc.dlldll 0eb8b53883dbf1a25bfcbb8e85b0f895f009c83bb568286c654ea9cabe31413cn/aHeodo
2022-01-17KAb9g36qWnga42kb.dlldll b725fb434fedfc3bbf860c4310d765c2140d9ec0b0ed3b6b383aa90ac829fffbn/a Heodo
2022-01-17lqCOhCM6hreP.dlldll f59191b773085c5305471a506efef147c56c99d241522308be641089a3b07f6en/a Heodo
2022-01-17cLubLsUk.dlldll 2d788c2f07329161523dc71b94d6dd81af39e08bbf68cefd7ecfe9f317985c24n/a Heodo