URLhaus Database

You are currently viewing the URLhaus database entry for https://megabyte-xtnegocios.com/ys3v1clw/AKm6Q9/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1995367
URL: https://megabyte-xtnegocios.com/ys3v1clw/AKm6Q9/
URL Status:Offline
Host: megabyte-xtnegocios.com
Date added:2022-01-21 10:25:09 UTC
Last online:2022-01-21 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-01-21 10:27:37 UTC to abuse{at}cloudflare[dot]com)
Takedown time:6 hours, 51 minutes Good (down since 2022-01-21 17:19:01 UTC)
Tags:dll emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-01-217ba305xWzuhf.dlldll e8649b8cff5387b9544f06f05c533db0f53879fce4be293e932d6f0542ffb6c3n/a Heodo
2022-01-21LrGLvFPHnG1uF.dlldll 0a584128aaaeb8bdeb0a1ebfcb200a8a3fa6687874e9a6e64db9a3d432b5376an/a Heodo
2022-01-215ggt.dlldll 9c4d3b7f76e9b0496f5f176c44f71ebfb68ab99eb29ded16131d3f9109f953cbn/a Heodo
2022-01-21qu2Fi8hYvYym67bGjAK.dlldll c49375c645715fe47dd033d217aaef0dc1bdd4a496ebabc7bb194f441587cbf0n/a Heodo
2022-01-21PXV2lljRx.dlldll a1cdcc6b7cc0d09f4fa4fcb745c709bd9caf92a13a59fc0f6acb8c3a7ab14bbfn/a Heodo
2022-01-21ZrY5xFi2tS1.dlldll e705fe3466c9fa1223853491634a61e2f85ba9c2449bd8877bc16dc10e83ca3en/a Heodo
2022-01-210r4jTYQnSb.dlldll 4cc0bdeaf766d39f1ff4f721368cbf1ae089cca9c01e147844008f8b40cadaban/a Heodo
2022-01-218b1c.dlldll 480bdd6c20ec41a73f9e4327d6f2f5abddcf5acec88fa1bbe205368134b05b6dn/a Heodo
2022-01-21rOkujYbW3.dlldll 074d50bba6be32d71973718b27adbfc112eafb01088d54181c8fdaff78b9d17dn/a Heodo
2022-01-21DcpyRWoekqyVF3g.dlldll 28ad85cc01e07342d258c7f610c45e23c6d32cd0b216bf28a2c37d499bc4b9f6n/a Heodo
2022-01-21EpT0PPKqVUEiKOp.dlldll d6b3da3748926e5c593a1db38b066e4cd1cf9cd164f48a498be151746cbebaa7n/a Heodo
2022-01-21PwU.dlldll a18c4fa356c2d5d98332fc9ea45f576a87f8bb02b652cd1c3928da38d41b8d64n/a Heodo
2022-01-21Slc7.dlldll b5ec8e2b96dbc04df7f30236b8ce381776a866527da26075e4b746c1923fc7acn/a Heodo
2022-01-21c77CtzO31z.dlldll 1552c734612be959602a1947109f49e243081cdc529981285eab9440a4ed0aa0n/a Heodo
2022-01-21hpxCH0N8vijUGPr.dlldll 7943ddb412f53a10598523eaf7cd54a06f97519db0ddbcb28ddcebe0b87680bdn/a Heodo
2022-01-21x9SEKVAFtZ2aItiF.dlldll 77fee0ccbe80ae203007b028c778594eb581ec84e6f354fe56657016806e9ae1Virustotal results 13.64% Heodo
2022-01-21GYP11yke09h.dlldll 82d0f00320bfa2727f9e2719f24e5442d68a9678182fa04b469ad799714b27ean/a Heodo
2022-01-21JXxJPIas5Ch1wB.dlldll face5ac08365ec937133e9de9f55750376d678202b31fcfce374eba7e60119e4n/a Heodo
2022-01-21ozdm2q1YjPQGYW9p.dlldll 96e856dd88c3ab4e836cf90ded99d69c0b5c6b2feb85e8e5d50a0f1d3cbb8348n/a Heodo
2022-01-21QSE9sUnsZDIfZH.dlldll 50a06c01443f351063fed9b371b5b4017864d47ae7253c084a42c357c7431648n/a Heodo
2022-01-21Xr2W8bhTW5.dlldll 989822a6da3559c42c3dc1ed2195aa07d07cafc4dcc1e4dbceff2306cacd1587n/a Heodo
2022-01-21LGHtIDUCG0lYin.dlldll ec2343285a8e12a63e4af4cd102b29df3b8badc1d1ab28eaf8dc2ea26de91c03n/aHeodo
2022-01-21sNwqzrjHvDn1wM.dlldll 30f38cf46f48b3f53902820631aec64188c02f44d7f3c5a33d0c6172419443b9n/a Heodo
2022-01-21r1zSPpcD7i8b.dlldll f6267d38c7edf1eb9a99371d3b7c84f937dc17a048050f4c1a81b572ae8bc83bn/a Heodo
2022-01-21AWo68kUDmquHhkE.dlldll 991505e7fb6acf9f3fa8a3bcbea2c151c8d596c4b5d019a0ff7946187e87724en/a Heodo
2022-01-21hW36kwBqWT.dlldll f2081354af1e3d3f08c15259bac7a629a579fd2ec08b0e24a9a1ddb5e7c14324n/a Heodo