URLhaus Database

You are currently viewing the URLhaus database entry for https://dragontranscriptions.com/wp-admin/kvzgg3SXC1/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2007767
URL: https://dragontranscriptions.com/wp-admin/kvzgg3SXC1/
URL Status:Offline
Host: dragontranscriptions.com
Date added:2022-01-26 19:55:10 UTC
Last online:2022-01-27 06:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-01-26 19:55:52 UTC to abuse{at}cloudflare[dot]com)
Takedown time:10 hours, 32 minutes Good (down since 2022-01-27 06:28:30 UTC)
Tags:dll emotet link epoch4 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-01-27fhDi1IWp.dlldll dbde73043618968c24a9f7fb888175d88d234e3aabfd13e0ab06f46188065e52n/a Heodo
2022-01-27VrJd27JPO7UvDF.dlldll 5f5bbda9def64d64fa89d788b7c30809667cd29391c469550ec8cd1dffb45e3en/a Heodo
2022-01-27bdBvtfI76Z.dlldll 34471964c9998e4de0326dc9c3b671147b61ad52cde30b4b7e8746a2d0f2c3e3n/a Heodo
2022-01-27HRbBrxaaDwO8b.dlldll 609254a5ad7c7eec21a6974858f6663f488eef2b63d56eb4446f6727f737de9an/a Heodo
2022-01-27OuZ8bA.dlldll b50abee61cff3501cfec8788bda21f924f8fcce09ed44b4dd9b92fb4b19adc12n/a Heodo
2022-01-27pbbL.dlldll fe2599d9fedc9e9176bddd3b4ae6582e3a8a620f7a523126c67f4c426db09ecan/a Heodo
2022-01-27ITzWpH2.dlldll f11311e2c34bd9bb90f20c2b5208022cf6e072dd9dc89c65c504ec176d18b7e2n/a Heodo
2022-01-27VKY9SpUZq.dlldll f754265700ac7b4e40dabe7ad6fc48542f0c08789725981f198e343ef5fb949aVirustotal results 14.93% Heodo
2022-01-27PH1ZbzaJI.dlldll ae976f5967213e27c40a32babc97b496a5b28e9114c78bf517f30efced63c1bdVirustotal results 14.71% Heodo
2022-01-27EkgEAnN7kb.dlldll 2490ebdc00bb8116821e5f9eca19f5bf9d574f43324b04fe9d69692365726852Virustotal results 16.18% Heodo
2022-01-270bosdp2EPL4kSk.dlldll e966451ad46edadbe6ef6577ef87617a6b86ada971c7ebc15d9601f94ddf3bb1Virustotal results 19.40% Heodo
2022-01-27BNb8XZR.dlldll fea77e202f6ed9cc87758783849878dbbd696482f252175231a039f24860b8b4Virustotal results 14.93% Heodo
2022-01-27CRCuilMCfgKKqq7.dlldll aad52b726597d4a0e8c3d5b708577f1e00d9dbf6279c3111b43a051d8df5a40fVirustotal results 16.18% Heodo
2022-01-27HnRRh2FK48rBo.dlldll 7b855af01bd35cfb202af84fa9bbb7d0ea3c9b0600380a793a96701f9f28d597n/a Heodo
2022-01-27AhsWzPAXXi1BB.dlldll e271a9c20d9b7c2f4cb8b228750d11fa4342ee4eb80bc0a8e4b508f6a7bc75ecn/a Heodo
2022-01-27TtaxPdAPZpjkxl.dlldll f73a1911d075d16e00af3a85ce1e070f37f39a1907d67c22b12f70871e7b1d3dn/a Heodo
2022-01-27qM93t97gRN8GSZ.dlldll 99c35e8ae3b4bb14c43805d4261ffce64e95466493ab0ab0902057b8976b472fVirustotal results 15.15% Heodo
2022-01-27u.dlldll df7cc0ec08330c4b40856a69ef7250c4e45781a0cb6b0dcd2dcd975a0a357d3bVirustotal results 14.71% Heodo
2022-01-27fvZZYhx8HvmWZd.dlldll bc081fdfde5ff01365c2046131f0d18b9063ebbb5df634fcf9f71d96d4728728n/a Heodo
2022-01-27Xz9.dlldll 76fc9c4090729c76a9a7c9839de8abc06e0682e25836d48004cf952153dae035Virustotal results 14.93% Heodo
2022-01-27GlC.dlldll 1a8c468df335edd0f51edf6638244755878a0c3a337accdc4636d1c4c5290137Virustotal results 13.85% Heodo
2022-01-26AJKw2kdnf93QWTMh.dlldll 43d47102b64f315825c5a3a9b99c9843d08d5bf5fb3afc243f6abaa290870fcan/a Heodo
2022-01-26K7gud2j4vtiyIC4.dlldll cbe5fe692d657f8d77d599d8b9604a5f46060908f35283347f63d47e42dc68dcn/a Heodo
2022-01-26CO9.dlldll 2c3efeebae6024844425d4c1b3ddeb55d6073785983876d05e0567114246c34fVirustotal results 10.61% Heodo
2022-01-26YO0JEcZKYh3.dlldll f733e95e24c56a0bf2c6fb4be0ac2de985d6249a9674df4640af824b2ca397d3n/a Heodo
2022-01-26LWIXzJJJ1TB2sY6cDR.dlldll 8616cebe67fa3e2a3c7f922eddd6e24b4788e2ed600b72495942c4586f1d49b6n/a Heodo
2022-01-26CgnoTBL.dlldll 24b08de0b5f134c5204e2802e941b12e3db6772cffcfd85a484f4ceb898bdd28n/a Heodo
2022-01-26OiHnaDY2.dlldll 858fc75ee17bfd598aa70cc3b684f24822ca84dfa7f1358511a5b95abd5d54dbVirustotal results 10.61%Heodo
2022-01-26l7pJ.dlldll 913db79f1814b82001d838585c0f5d41635508dc91a17e0241c36e3116c9ed67n/a Heodo
2022-01-26VQG.dlldll 22c3abe86ca36c4eaf15b534c13866106b8fd1c6f7a72de4ad90d9661b473036n/a Heodo
2022-01-26F.dlldll d7f43c184a0a27ef34a76be23870fc7c02bb9201b279e8bc4404678aa24f5d46n/a Heodo
2022-01-26DwFJBRE.dlldll 86a048e2104985d48d1da75519059c698d2b33b2fb3466638f689a812544c87an/a Heodo
2022-01-26HiIP5tve2Gbj3lA2Nj.dlldll 69da64ff11a9de54f65423093b4893f85347f6c79e433746bdcfd37ae0234610n/a Heodo
2022-01-26rp4UEaTAgbY.dlldll 03c4d120c8ff6032f4c86bac4152a4c43e2c4455f7f04800edf65e39db4b812dn/a Heodo
2022-01-26zc.dlldll 96bb66a69b4bb5a2ec3c9bc994c8ac5a04c25757e2e1961f02336847195d3f9dn/a Heodo
2022-01-26JQp5o0pj2ebCeeZgK.dlldll 683d06279f28259b87e2c13a7ebcd601ccb20526e4d616be9a6bca5ae5c891cen/a Heodo