URLhaus Database

You are currently viewing the URLhaus database entry for https://haqsonsgroup.com/css/LBHRIu/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2023981
URL: https://haqsonsgroup.com/css/LBHRIu/
URL Status:Offline
Host: haqsonsgroup.com
Date added:2022-02-02 10:29:06 UTC
Last online:2022-02-04 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU003896767 created on 2022-02-02 10:30:06 UTC)
Takedown time:2 days, 1 hours, 58 minutes Poor (down since 2022-02-04 12:28:15 UTC)
Tags:dll emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-02-04knlEG0f64orW3.dlldll 5afaa47110c23ef0b17ae95e7b96e05126c9f5feb26ac30c24eab5c4819c97d4Virustotal results 37.88% Heodo
2022-02-04wraixpYP.dlldll 65cb4b0f20a5ceab6d2607f30ecdb616cbf75f3b70ed9e034c42531db6fb5a8fVirustotal results 31.25% Heodo
2022-02-04yurzb6hSlC3rbk6qka.dlldll 688e65e9a6b37bcb0bee2f7e2eac4986e67b2537fc81464dc000cd9a8e7afe77n/a Heodo
2022-02-04OMiVS4o.dlldll edf377dc64b7182fc1047e781d295ac2f9e4eb114e26bdfe41ac0852d8658bean/a Heodo
2022-02-04bqApxx9mYBFY5Gu.dlldll 0f4e490fa4b371bd0c775d0a730c706ebe05b7a67f4a3c1ebcf96bf161dac868Virustotal results 32.81% Heodo
2022-02-04bUQvFYM.dlldll 342908677be1cf9a6efb08cfe19f315b9fe842fc165424da86481609ac706cfdVirustotal results 33.85% Heodo
2022-02-0456rA4ySusX5tAxS3BR.dlldll b1866aad7ce32cbff8280d289185481f3c08fa91284b7cf5c0fcefaefdbe7acfVirustotal results 30.16% Heodo
2022-02-04uq0x4g.dlldll e54ee71d9cd98bb7c0aed11c8105a22519764d023524729aabd7e500d9babf01n/a Heodo
2022-02-03Z3VDnFQ8biOUzMIz.dlldll 37cabc8002a1de2fbab610dcd5ede0702af327a6b6cb835b263108a1098e6e6en/a Heodo
2022-02-03tQBfwQAr.dlldll 424bd4d796332957747fd78ed4d46a76f355aef744cfcfcb826c11104358f485n/a Heodo
2022-02-033OFJ1LN9pZDk1t5R.dlldll 0e429620d673478e8b0590a7a350180c4d35c041730d3f33cf956c06b50a0e86n/a Heodo
2022-02-03qA0H8gwFddXtsTf60.dlldll 8712021077f4e3afacd3d864d6625523f8a9d2c4bc74a76ad2cf8d1b4092c4c4Virustotal results 29.03% Heodo
2022-02-034SUz8NnJL4rbpx2x.dlldll 5bccf448454a531ce5155e332c4a562c51e4b13245b8cad7ab9711b99db95941n/a Heodo
2022-02-03p11vnz6fFxEx.dlldll aaf4ec90d19cc9da4e9880e5358bc999647c11e6d16449c8e9c105d22385dd79n/a Heodo
2022-02-03FOjzyUgfZQef3CvXaP.dlldll 7b9730bbb118fd1aff47bc643d2146383eb67820c3affad0dea097ddac5d064an/a Heodo
2022-02-03pICcfO3X0VCfNEqv.dlldll a7c17d2ffdd169301e83f5a03281a81e05c821cfd511bbb8443b70aff6551c42n/a Heodo
2022-02-039eBlq2oCb9br.dlldll 8256b250e1fe1326ef6373389148fcb1db3d58e90a41710d0b8015ff112888d6n/a Heodo
2022-02-037CQ9.dlldll bf9ad46e45ccf8ab4baa9785405e392a7afc5210ab03bbfdd16045e03ffafa47n/a Heodo
2022-02-03T38iL9W3t2pzJ9ultb.dlldll 288c25f817eff153a4cb402eacf36754f1ace877f695030df55b588ff2b2bba6n/a Heodo
2022-02-03XEs.dlldll 4ac8f717f56e1f18982e2b11debf428a1e7f208578b6785a8d42141bdee43226n/a Heodo
2022-02-03P6XtpBrg1.dlldll 38c8a190afee88106bedd77908498722cc7c4883d2125b9bc96eecf8295efcc7n/a Heodo
2022-02-031Mi4owHy.dlldll 70b18a9f902337ef037b52484a66e4605b7b1983ff0f9a2ce78edccbc04d9a44n/a Heodo
2022-02-03LsET3UQ.dlldll 384739ecf8c08353532b33293d9a53641a2925225149c88ac7dbd0eb46845eefVirustotal results 40.00% Heodo
2022-02-03ucU7Me.dlldll 528aa7bbe3b4ee10e186be42ee88bfa91f70dc879abdb76ab468a6ab10b92b16n/a Heodo
2022-02-03ZLVHz8nYBgot7Cj.dlldll 172e023a0b6654e218c20a14e82598d09c67ae1e5712a19898f0d4f78b84398dVirustotal results 38.46% Heodo
2022-02-03oNjt9A.dlldll fa2ff2c663482c7d0fd1640a8c03d6477423409c45ea91a2bb923aee64fe6505Virustotal results 38.46% 
2022-02-03RBmlwPQWkEBq6xKozan.dlldll c9ddbba88d80cc68a62a7408326ff1c619a5d684472db7c0a48e7ae8608df32dVirustotal results 36.76% Heodo
2022-02-03nmsSNmH8TCCZc2.dlldll 5a9d9df3d26babb1e737c06846588c7c324b848c40d184a0698860eb508e083fVirustotal results 37.31% Heodo
2022-02-03MoqqPqP9zHhl.dlldll a5937603335ba874d61403fe244c0f2fca3b2f4e418b4e38c384ebb7ff50aa11Virustotal results 34.33% Heodo
2022-02-03LyvaQIZo.dlldll fbd26b4046556ad00e47752ce1d2354e0480f46ffbdcac2fcc818017e02dee39Virustotal results 31.34% Heodo
2022-02-030ZbVzP.dlldll e897d0ad435b3873677891bad9404373f4e660f4eb1b90fb150186994c466538n/a Heodo
2022-02-03kuZNpxc1Z.dlldll 0c1c5dcb32f967c1ba813df7cfcf524e24b4e2a942b8bfaee17af22cd54e7addn/a Heodo
2022-02-033zfpuue7S07QmtUvTV2.dlldll 34c46874b8323f6e42d9286740dfd1b11d1aeea6a9c71ac33b29530891de00c0n/a Heodo
2022-02-03065HZkyIvN9.dlldll e7cd6af41299ea7f557eeb84309ac5ff33c2184f1ba09a6db290162ba5aad90eVirustotal results 27.69% Heodo
2022-02-03gHPOu.dlldll eeeb9c2b871989d8ba6bd1631b85e0e458d3ca8366387ac33eb824d822612099Virustotal results 27.54% Heodo
2022-02-03HBQ9.dlldll c5aa8cd5d848ba03d86ff65a9e8c043898bce6073ed4020bd0a2f9c9b507c58eVirustotal results 27.94% Heodo
2022-02-03LLZ6RO9SrArB7k.dlldll e33c247535a887e24008e4b4d7556ed977fcd6f4fbcceafaffdc75de21758814n/a Heodo
2022-02-03VILOUju52Du.dlldll bca614b3fc2f4e33aab6b8498d4dd4a2c0ea41cdb31c101dd5e72079013cd4d0n/a Heodo
2022-02-03KSd63w6Azei2c3Ep1tI.dlldll c2355d8841cf7c70610fa614c81fa9c02ba90f19ea0b3efc93db3979e40bf76eVirustotal results 29.85% Heodo
2022-02-02ZAHmd7YPaEEuPxrIeFT.dlldll f03649b18ff325493df250e13dd23b27ff12f44214f1737855739a4690a94ed8Virustotal results 27.94% Heodo
2022-02-02UO7hbyw3M3.dlldll e22c4d5c2c9fa67e753c01553b2480bd55a63391a296f927625d35b17869afbcn/a Heodo
2022-02-021nUmlc0t7AA.dlldll 28151c41dce29b4e745f799196853f99b6a33256d9925f042d4a15d1699a0a94n/a Heodo
2022-02-02sWtB0Z.dlldll 44cf81c168a5296c8af7f2849e1ae67863445fd1831ddd2c501b71dbda07b1acVirustotal results 20.34% Heodo
2022-02-02KzoCEMhmlyTo7O77d.dlldll 8adcaf1203f3860b4000aa2921a2e50063b2812c0a3e3a3a03fa09dc1f06cb2bVirustotal results 47.69% Heodo
2022-02-02rGtonxL6b7FwG.dlldll 36d97bfadf4b2ae9d73d507a3a275a229b46ec6e17268a5c18e085d157f00da6Virustotal results 45.59% Heodo
2022-02-023zhHi.dlldll 785df9e62e73016f7d4b13b3c2b9ea462b9e8a53f830970a524f18388172ec0cn/a Heodo
2022-02-02R8N.dlldll fd0292ef759611f8ee903e0c68bdc2b633d9faf07ec1fac66f9235148d5c6454n/a Heodo
2022-02-02To9xUtCqnxMGP.dlldll 7f4aca286f085fcb77e4db36288f059873fdb41d6284da759ba8102af97795ceVirustotal results 44.93% Heodo
2022-02-02YA0.dlldll c32074c2999cd8e5dae7bf238dcddca596d9c9fc446818e4062a615739b640e1n/a Heodo
2022-02-02wEKDewRfpnoqMdk1jv.dlldll 3855deb2e284464cabf6c6fcd762f0ae9a2e68a4e6c0bc68cbd938a90c56806aVirustotal results 41.54% Heodo
2022-02-02XxdmQRE8uLfR.dlldll c16e0c0e908c0fb0d075789b886e0ca211336da53861b4dd0f5a0f44d6ba5ed9n/a Heodo
2022-02-02LhwpF.dlldll 35d0a1f1ebe8c6dac5e9f3bf400eac5ca22c18265902340c79af8de36a7ae95cn/aHeodo
2022-02-02JHmJklhkjLQSl.dlldll cd516ad118ca8eb1f286dea31ff5455d534b7af41280eac02276d34923e9e953n/a Heodo
2022-02-02CwQXCQ.dlldll 04ec222a8d432f42ebba74dbb131817e25c2bdd941cd3dd64a15c23bafe648bdn/a Heodo