URLhaus Database

You are currently viewing the URLhaus database entry for http://3-fasen.com/wp-content/3Bl0hBbW/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2010295
URL:	http://3-fasen.com/wp-content/3Bl0hBbW/
URL Status:	Offline
Host:	3-fasen.com
Date added:	2022-01-27 21:44:05 UTC
Last online:	2022-01-28 08:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-01-27 21:45:30 UTC to abuse{at}diginl[dot]nl)
Takedown time:	10 hours, 27 minutes (down since 2022-01-28 08:12:59 UTC)
Tags:	emotet epoch5 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-28	tZdY.dll	dll	788ab9ebb38d70473fff125dea9813d84a0cdfbfd181959a2db65611880a2f82	n/a	Heodo
2022-01-28	eFFVq.dll	dll	320dede8b69fd0518703d4765bacef7b8fb914ed101023941da34eac0b33f543	n/a	Heodo
2022-01-28	ArcQqIIt0tKyqxUc.dll	dll	2ef13851bd235084325db0cbf95ae0120dbbf55449e32edcae79dd2d7e994c88	36.76%	Heodo
2022-01-28	scYW9vloIScEI.dll	dll	1f0b1bc042ab1aca81d47e794377057d2bfb31812c7d6ee490cce0a49d0e74ac	39.13%	Heodo
2022-01-28	LXeyD.dll	dll	c2ef2157342e3dc7d05303af42474606a5ea5296a48f1ec702b415ebd40a9eb6	37.31%	Heodo
2022-01-28	TwLO.dll	dll	871d891b4ba22512dd5788c0eb11553c495949b437ee70be7770652363f7ce4a	n/a	Heodo
2022-01-28	c12NgWHKP9vEWu.dll	dll	e3ba3c4e8d7142273e1cd079e132df07daa636c932ec4488cc09f38b0b74a838	n/a	Heodo
2022-01-28	QM1f2odmzeUI.dll	dll	d9047bacb49a676eb192dcf38acf313c6d722a78dc33dd41d3f6d6d32eb35718	36.23%	Heodo
2022-01-28	XrXFqX.dll	dll	0b5c001178c03826f43170cb082ded3c388f8ab390b54e6bd20c86a75ac0dc70	36.76%	Heodo
2022-01-28	EaxqV.dll	dll	6e46d7d76cfef5c7fdcd488f372f9491645a2e4a42239517de2efb8d7e2cd994	36.92%	Heodo
2022-01-28	WFa8ZPSvE3Ewhf0.dll	dll	3be652a3c8cd5ad1cae48cc3be8c89405fc343ee1493fc0248190271a9e2b403	n/a	Heodo
2022-01-28	qhPISp1dkcn0dp.dll	dll	055dc21763486a80a0190ffe2ea8041497ba93b10f3345b466a1273e0a1d388d	37.31%	Heodo
2022-01-28	2bJAhY9rYrRp.dll	dll	ea233b55e2382cbc32578c12d85d0842f49558422a0ba91961befacb173956aa	40.98%	Heodo
2022-01-28	2wTphOzD82psCzqgCLc.dll	dll	2517c1f028a81262c0588e23e7ac2281f8391ffdbe493a3cf0e9e42ba64d1868	n/a	Heodo
2022-01-28	VVaSfPznxzYTD.dll	dll	ade507cb8966596763bd741992e108b8da91fe0e24a850595d557d597155bddb	n/a	Heodo
2022-01-28	Q7GwGWvRBJe.dll	dll	0e2aff0de14fce2fac8cf7e1c6f7ac88b5184ebd21d539422637c87e11f35215	31.34%	Heodo
2022-01-28	v7EINeqgpNVXB0RyCK.dll	dll	58689bbd4c82fecfaeb4b4c627dc6cad7322e4fcd9b8c1174011c0e83e4eab84	n/a	Heodo
2022-01-28	bvQaduAiUcz.dll	dll	308fd8d7145aab419153de5e54e6a8e1b9946f801f524e49e0edcf5e0b027e13	27.54%	Heodo
2022-01-28	sbn90I.dll	dll	64d0896b1d8f3b5a5b202f8163018d07a574fef6c082722d3afa38ae1c946260	29.41%	Heodo
2022-01-28	XVzzJT1Rs6J.dll	dll	e56071555bb8d26e53bde2ba6498d8c25f067b573f4a4d726684804159353c41	28.99%	Heodo
2022-01-28	foEtjp24v7dS7CLvJ.dll	dll	4f458153e0c8af2023e8da5cf35d8643e6f92fa35800c94f8e3ee37dc8606460	29.41%	Heodo
2022-01-28	9XtOT2eRc96MBU.dll	dll	6c9cc53c7065b7d157fd94c5a1fc4b3b7149e2ee7ca5088cabbaa0c54b051191	26.47%	Heodo
2022-01-28	jKhyVJJko.dll	dll	cbc659dec0278565930a55fd06d9e6b5bccf650a21e0e08025ff2f24fc619ce4	29.41%	Heodo
2022-01-28	ywBUhsKjx.dll	dll	5d2d6eb9e02c07b8bcddc58abec381a2948724be694a2fae6a31f117eb33cf84	n/a	Heodo
2022-01-28	150.dll	dll	9c8587829905208931705192ce63c63dda56a9cde27a659c18c5fb94529b24cb	25.00%	Heodo
2022-01-28	MqccngI.dll	dll	fca82b03bea550fbdce40d219c9751d8b17c68e3fb02c6075d5919f401272bc6	27.94%	Heodo
2022-01-28	XEHXMtOO9TRz.dll	dll	0295b3ce948115999b43901f8de29f74957373cabd5ed03889d12e87b02b6833	25.00%	Heodo
2022-01-28	CFUZy3eOUBJd.dll	dll	02174304f719d27d788c41a6546839f9ed54768a601131cf4fbf7b9732061b15	25.00%	Heodo
2022-01-28	OKZBk.dll	dll	06d2d286ade4dfc3aa4f99ca8183944d83642794b77f17ba07f277c142c0dc29	25.76%	Heodo
2022-01-28	FrgqFNY.dll	dll	68f596016babdc2059eb74c778d8983626e7102a0c78a5caf084f76c97316ecf	n/a	Heodo
2022-01-27	IGcPs8WxFCc9N2Un7i8.dll	dll	96e27e166a6d5ae69232e0ae852311ed5a553760123318c71b41db6a8ae4c3c8	n/a	Heodo
2022-01-27	jLPqxuc.dll	dll	88cbd3b0b20226db0d7c7bffc5916cbe785ae99d8eeca6e658f1ec9b591d2f88	29.85%	Heodo
2022-01-27	kGTk.dll	dll	b4a0602bb4249a667fb280917e74e6afebf5555c59d3a6d1b5f946870404704a	n/a	Heodo
2022-01-27	kdfKH4Rq2bj4D5YI.dll	dll	3cb3f0b58dc6cd6e7d777f9da888d393503e0df2fc26052885e7f54c4946d0d8	n/a	Heodo
2022-01-27	wVvkedM.dll	dll	716249a72b5e1d1712c6a00c019405d007183d7766f8c13c247eedfa6a9cfe29	n/a	Heodo
2022-01-27	YyavXZv9e5H.dll	dll	ebb17d748ac4a58c1c190beba9f28cd8078d21396db28f89ca24878955837b51	n/a	Heodo
2022-01-27	9V7QFmJ06x9aNJ7h0vV.dll	dll	6468a8bb776ff32743e11880d97f50366375117dceeb2d8318d2d8be3a902f5f	25.37%	Heodo
2022-01-27	ZfLPaB.dll	dll	278d8aabf33394375e9e1c88354c53c38f49cae56f05c0c2f734e988ea7a18e5	n/a	Heodo