URLhaus Database

You are currently viewing the URLhaus database entry for http://goyaluat.vmesh.in/0v6kcny/CG/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2026611
URL:	http://goyaluat.vmesh.in/0v6kcny/CG/
URL Status:	Offline
Host:	goyaluat.vmesh.in
Date added:	2022-02-03 15:17:15 UTC
Last online:	2022-02-08 08:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-02-03 15:18:23 UTC to noc{at}psychz[dot]net)
Takedown time:	4 days, 16 hours, 50 minutes (down since 2022-02-08 08:08:36 UTC)
Tags:	dll emotet epoch4 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-02-06	yNqNe4O8Uc.dll	dll	257de8bd0f933badece38d47bf6eb103f87a2ecf93f531537a7c800e06e419c1	58.06%	Heodo
2022-02-05	wHblzpF0UQVH.dll	dll	6409e46d1b3396571a59dcb0c13f843e92efaae5a362b162aa1a581373b74e7a	n/a	Heodo
2022-02-05	Klp3dEbtZp.dll	dll	349de4b9aa9ea87d0ba9ee1f04c67ef90699b70656f69cb2266856f2a5ff5659	n/a	Heodo
2022-02-05	GyA.dll	dll	ecfc1044eff501992d67f905bd0678ba727aa16e80e6ea23083cb421d654d9ca	48.44%	Heodo
2022-02-05	OnSm.dll	dll	a23f6a60654ee79dc8b11b211370bf30bf6e1e257dcf37c0557c9fba1ea63a34	n/a	Heodo
2022-02-05	tni7nSfl.dll	dll	32601ab7967ec176d83c6f91a3c58fdc4b41d73b4b5567312d9d6875d2956feb	n/a	Heodo
2022-02-05	we8B.dll	dll	2ceac5c07ae20b42a1a62f6795538181eb5501f8504b37804b466f1112ac2439	n/a	Heodo
2022-02-05	7kInUNesSRsj99.dll	dll	3ea063334ec75aa8617c247e186ea47acc9b4e4ad0600e3fd4d5f95e83866dd6	n/a	Heodo
2022-02-04	JQ.dll	dll	ddf1d0d0c285e293e385ec6a95e1caa5d9100636715c6a796e6aeebaa7246ae1	n/a	Heodo
2022-02-04	rGZh7ynJGKFugoG.dll	dll	a4c565718fa916850c21b952f050a1794d6579a788dad3898ed2092a0ebc99df	n/a	Heodo
2022-02-04	gxxNsByplf.dll	dll	5cb14ebe6513de98461d5ded5696305e0d45f4b016b4ab12e3ed6db1653afbf7	n/a	Heodo
2022-02-04	DL1Jx6lbGUwU2af9aO.dll	dll	16e7903de778b309224358cca355954de427102b99b6da4ed0b9497c9a66bcb4	n/a	Heodo
2022-02-04	E8a3SOwE2fMkH.dll	dll	161784d39f88ce4fc7f3a19e3927ca68169173fce6cb21e986142a3d9c9d0a4a	n/a	Heodo
2022-02-04	JC.dll	dll	ec1a89ef8dce25fbe85ca51076282ae73dd6fe272160804f78a6b8822d5945f4	n/a	Heodo
2022-02-04	tEsk65Cx65oYjv.dll	dll	d5726d52ce741984dbeb904f36bbc0f3b5f74113e8a42465a17bab7496019d43	n/a	Heodo
2022-02-04	3.dll	dll	61b474a8c03daade297fb02c73c06d4302004ec0b90f3f7652d860484c7dc7ac	36.92%	Heodo
2022-02-04	xtvMjqoCOB1jb58FqF.dll	dll	d09a02151b5035eb831d2a9ce479499610df96973e056cee48549064ec5d79ec	35.38%	Heodo
2022-02-04	QYffoBCCNHKvQAz.dll	dll	ea62bbdde6a782ca557bd37e8b02fe39ce4dfe3e6c1ff8a3cdf1bc704fe618ef	n/a	Heodo
2022-02-04	XztV9aDe.dll	dll	edb3171a1873e5c0099b2588e0ce54520bb8a4daf8d9a45ee455806dd5fcce13	36.92%	Heodo
2022-02-04	WrJCYmLybCw5x.dll	dll	3615d4c5c7203188bd1bf6b5df930453908aeaf25905e359d08dcd345493ad56	32.31%	Heodo
2022-02-04	3G7pdr.dll	dll	dc9c4580084ffe92b8f3d6da691e219e78e1cac6d71246850c5afbb0d5d6507b	n/a	Heodo
2022-02-04	daT.dll	dll	0da9250c2d2012ef1613e322190d92e1cc99b49c20cb3f6c4dd223f63fb15ab0	28.12%	Heodo
2022-02-03	fzLiMB3VO7.dll	dll	016bdd639bf866bee0421c7225b2897c75e5af0f919e671cd7d581682d7e0664	32.81%	Heodo
2022-02-03	TcEj8wAkHLILbMz.dll	dll	91d2af3dabe9ffbd76927fe56032f594f35409a7b508903153b772c6791797bc	n/a	Heodo
2022-02-03	sn7.dll	dll	728f3caaad46039d5ad633c653757583172c46e7750b2cc1aea091cf6ce0a89c	n/a	Heodo
2022-02-03	Zw.dll	dll	4d235efd5314461b057673d37bd1d13f421671a418a1a8d456297de282265a9d	n/a	Heodo
2022-02-03	UQBPfkKBuOK2ufte.dll	dll	a16b682cab931611b282de23dc8b3ca59b116c410af9c4c60c776a586c910f12	n/a	Heodo
2022-02-03	0K8exVNZstWx.dll	dll	f1aaa76260c7eebe776d82078f3b32870496cc4d2ef7ced8ba4a063d8bd7654e	n/a	Heodo
2022-02-03	gDxOkqodhw.dll	dll	cb2c4e29f78d189196fef700170d9c4a536757a3b4e1b565237620329a3520d7	n/a	Heodo
2022-02-03	G2vjotONKphNK.dll	dll	88722ae3368d6476bdc748c6fd0ebba80aadc5d033967f92b9570b637084d4b9	n/a	Heodo
2022-02-03	tF9DtQGfj.dll	dll	00e4bca042c0a5e59e5c7e9e9c051ce8b841e712b3bef9363ad3ea16b5b0617c	n/a	Heodo
2022-02-03	3mh.dll	dll	db368341f8e122e1da022e7bc948b56bc32bda299a4ac33d457c75805bda35a8	n/a	Heodo