URLhaus Database

You are currently viewing the URLhaus database entry for http://kentuckyrversjournal.com/cgi/U/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2036183
URL:	http://kentuckyrversjournal.com/cgi/U/
URL Status:	Offline
Host:	kentuckyrversjournal.com
Date added:	2022-02-08 06:52:15 UTC
Last online:	2022-02-21 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-02-08 06:53:16 UTC to dns{at}aplus[dot]net)
Takedown time:	13 days, 8 hours, 35 minutes (down since 2022-02-21 15:29:13 UTC)
Tags:	emotet epoch4 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-02-09	XXmhyZkWB.dll	dll	18e3b0d902f95fb74affd0f0e203b5a7d6d8a9aa17967611b17377008b5f0c52	13.43%	Heodo
2022-02-09	UgcNtObz9k5q54dBfQ622kgU.dll	dll	2e1ef0f68be9b8af95cbda1a4ef99ba3743edd7ce9f7f9477f8fea3940b884ff	n/a	Heodo
2022-02-09	lxScikAFfpkjvYy.dll	dll	81ec6c1949655c276b6d0bb41971b848c300416416ee272b844cee0ae2c89a59	n/a	Heodo
2022-02-09	mwj2P2Y6Er4gRvlhEIY9YH8b.dll	dll	ae0e036c756a7c8c29056991f231bece8c9ef058a4d6cd5379310abd525ca099	n/a	Heodo
2022-02-09	HImxq4G5q484mJG5pZEUPjT5cf1ih6n7.dll	dll	4e36d0dea59956e0da43ed0cb6ee5b4380db28098f22922ad26db62a9656de58	n/a	Heodo
2022-02-09	Tn9xp6Kq1Sybcc1QaTQz.dll	dll	88cd57adf5732257043b201cafa05648b707f7c69678c39d3b99a0096198437b	29.41%	Heodo
2022-02-09	8SyhCErR8C.dll	dll	45c1ef7f8b97cd4a13d071652dfcc42d955c0e67bf590386acbc9dade8234b78	n/a	Heodo
2022-02-09	AHd49DDyaUfuKFpfjRtx6wosZht.dll	dll	4c9d15f3c7b13f4e4ba83f1187f50541c59bf9d2831f3ca8dbef7488c966216d	n/a	Heodo
2022-02-08	anlGeFUobHf.dll	dll	92f663aea5572c957ff3a06ae7482a3ecd7c6a3467ace3d3fe49fc4d92f2db6c	n/a	Heodo
2022-02-08	jFh6TcvidoNPvhL.dll	dll	aaa0f7b4ed3ed06023c12b1d5aada488e8c466634e5d866ba02685c475ecb82b	n/a	Heodo
2022-02-08	6GeGKWbd.dll	dll	6d6700eb41e83916e7ebab8765b949f6fc43fbdb92d93169b1252587dee507c2	n/a	Heodo
2022-02-08	BIhFnkqVH3IarLTi.dll	dll	a70a0e0b4e4a4bfbc0b370666128d391e5bddb74b980118665c0c10c804f84fa	27.69%	Heodo
2022-02-08	rId3noyWyfrv74rUJ4w9nmfdOvxWavA1w.dll	dll	64e3a3541c47a297484086685a571d8838a8feefc3cb8e7395af9b129745efaa	n/a	Heodo
2022-02-08	fX57giFHw.dll	dll	880779fba95a447f59d5b13166da3cfb085ae22d6abb029d1bb8943f048c8911	n/a	Heodo
2022-02-08	w6huwD0FaK220ldmD8.dll	dll	20bc2001f5c349463e9971ab4ece95671f093e9694cac5d27b969bc9d1121561	n/a	Heodo
2022-02-08	M6u3ietjya.dll	dll	cc1509a564cb02e94e3b77cdd1be748ea961f0acfe2989add160249966681843	n/a	Heodo
2022-02-08	D7MDOSOTQrHTr39M0r7PiHM.dll	dll	19fdcba09a1c5305c42de7d14c23e93a89ba20710b9279463081a2caa5c0b478	n/a	Heodo
2022-02-08	5Z84QL.dll	dll	26ff3be5dbdefd82562f06e7ff925b8cfa3f1eccc6ab907c69f9c1ee75c777cf	n/a	Heodo
2022-02-08	8cxaIGyACoaaQhm.dll	dll	8731e463db8728bc89f7430c80222fdaf63211c75f076846f874d23bb98a66f1	n/a	Heodo
2022-02-08	2VtALs4nzgj9ldLvg3SK1J58BiRu3OM1.dll	dll	3e99a015da3eac903b9cf92a8db82ea82bd5c230ec556d259d28bdffe562f7a6	n/a	Heodo
2022-02-08	IUTmFvCpzQN1NtBTVQcDdxOcdCY.dll	dll	4a1dc60d2f831f516adc56785e7b5fe29e0a88342517f568ae5ed9c59e3bb0c1	n/a	Heodo
2022-02-08	t3UcxKElqQuSzauCT5uTQd9.dll	dll	51be72797cfc8fd6edc14b7d17294bc75bb78a6da80e5ebf3692c9ea2014fd80	n/a	Heodo
2022-02-08	YkrXKnKnGteINYYsPLECeO.dll	dll	bab2047f13e84a07de00073081830333e7273f4e4ea02475cf45a5608299fc20	n/a	Heodo
2022-02-08	izzdFIhUD5Ip8x4.dll	dll	653909dfe4a8c57ce6d5c5edcbc21cb287bb442fe81d34088b2641a9a27b82a3	n/a	Heodo
2022-02-08	X0BWQkd2iS7iTYo3abop.dll	dll	9633d3b22558f68d99395631897d2e7d61fe1aed830f251055d9c2d3651f4749	n/a	Heodo
2022-02-08	24uMG1O1hDvIHW.dll	dll	80cbdd7b7c56ce2f23b786744eb2d7467a84deacc9aa8ea5e2be59f6fc5b7bda	n/a	Heodo
2022-02-08	ceBU47Fg59IW6zf.dll	dll	93ac1e357a42bf14f0f15aa8fa611ca028cd8991f71112cd0b54dab58c4c7e13	n/a	Heodo