URLhaus Database

You are currently viewing the URLhaus database entry for http://keyesforsteuben.com/cgi/vnBHCHIlWZx/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2036349
URL:	http://keyesforsteuben.com/cgi/vnBHCHIlWZx/
URL Status:	Offline
Host:	keyesforsteuben.com
Date added:	2022-02-08 08:32:13 UTC
Last online:	2023-04-29 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-02-08 08:33:15 UTC to dns{at}aplus[dot]net)
Takedown time:	1 year, 2 month, 25 days, 4 hours, 5 minutes (down since 2023-04-29 12:39:14 UTC)
Tags:	dll emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-04-28	k5GxtWqXgf2RffGaP4L.dll	dll	32afd17f24ddf4841d9502362811ea5b664da4f4ffbafe5f2eb8f101d798cc01	n/a
2023-03-29	k5GxtWqXgf2RffGaP4L.dll	dll	b6cd94d77dc2e952ba4721487719db4a7567be70a4f64f17df5ae5feb3d1d24c	n/a	Heodo
2023-03-28	k5GxtWqXgf2RffGaP4L.dll	dll	b4cdf3daf355a8c0e16e015f68eeeb9552431cf701bf4ae6dd7fcd895c2e59ba	n/a	Heodo
2023-03-25	k5GxtWqXgf2RffGaP4L.dll	dll	60c244f1cf0acd0623adececf34b1d66b85e62b2b71f7f424bea027a862ecbba	n/a	Heodo
2023-03-18	k5GxtWqXgf2RffGaP4L.dll	dll	a8927c1faa52f62cede891461ba03ad74fd1302646515f4554955de814ba3075	n/a	Heodo
2023-02-15	k5GxtWqXgf2RffGaP4L.dll	dll	c8b00a2ab34aa140086f1c4ab3b602db62440dae54bf011c19d8f71b4bce6793	n/a	Heodo
2022-12-05	k5GxtWqXgf2RffGaP4L.dll	dll	f18e0f6c14fe35e76a9cb501aa4ebd69b77a57e39652c583b46bb02180f461bd	n/a	Heodo
2022-12-03	k5GxtWqXgf2RffGaP4L.dll	dll	0b5d4743ecec241acc53358d860654829905a87ad0ae3b04c251b1916dfd7456	n/a	Heodo
2022-12-01	k5GxtWqXgf2RffGaP4L.dll	dll	7d9f9736a9822ddede6c07275a9a7da60764dd253f41e847a31160589c224b94	n/a	Heodo
2022-05-17	k5GxtWqXgf2RffGaP4L.dll	dll	37919b89b435fca20e1c88cb20404fe87f4db0d6a1d4915506b650147b040719	n/a
2022-02-23	k5GxtWqXgf2RffGaP4L.dll	dll	200a209ccfffe1d83a671b2fd64a581098e0c63e191945d32ffaec276b83c716	n/a	Heodo
2022-02-10	k5GxtWqXgf2RffGaP4L.dll	dll	62b4e33474fa6ef9e22b8f22b1918315e6ecb6d18066d3b1e7a29181d29323f6	16.42%	Heodo
2022-02-10	syok26.dll	dll	17ed30cd8dc5abed631786ce423b1f3dfce0104355c086eeed82a180e1648074	n/a	Heodo
2022-02-10	FYGgMAa.dll	dll	a4da0a6c784d3f500a853b38f7295cfd1853fbd6194092569e84f0de28eef30d	n/a	Heodo
2022-02-10	KFf3F6QLeqsbBS6Iu.dll	dll	405aebb038e86eda891f51f7a10c61b11aff3d8e2249dd0c298801bc1b3e52a5	n/a	Heodo
2022-02-10	HfOUh.dll	dll	d376864ffd6c1d1681e9a054732912ee9f9d4d61c9c4ba4c7a61ffddc2a9a486	n/a	Heodo
2022-02-10	pEnvucyzg9.dll	dll	aff0a91408fdfeaf99154348ef247e206755f5b7737fd71c19ecfbbc97704af8	n/a	Heodo
2022-02-09	UffmwZd6SvaoGZFhP.dll	dll	f9a00797028eed6b254f1baeb890fecfebf5d95dcce6b4517efba6eaa571f40e	10.45%	Heodo
2022-02-09	SprPy6JySwNdVZaDVqE.dll	dll	059788b7acb28ae93326ab8a149ea57f7a4ff306ab98d1109de267cd2090a937	n/a	Heodo
2022-02-09	47x4DRubC2l8Q4s2sX4.dll	dll	1c8ccf1ebbc69f8c2a271961b0c2f1c59551171961bc087332fe58a8eb0c001b	n/a	Heodo
2022-02-09	0CyVAE9q3d3HKt9Yg5S.dll	dll	3486b2c85f7a0f66d2939738ba6b0e041c8856ba6ad314f2e8822699d4427b84	10.61%	Heodo
2022-02-09	JUJWTcZy.dll	dll	421ac3d2ae58e94d3f43c9839372b22f93f43422c1038aa10c1f09ce8401dc29	26.87%	Heodo
2022-02-08	Zf6lifkW7b0G.dll	dll	1258b93bcd35c0ea8050d947751e3b29b099635faf401676415556996e85ee97	23.88%	Heodo
2022-02-08	KImWTLn6O4clQBVYo.dll	dll	dd9f4854e39b39df5aa32b626e00080518f48026a18d724d19fd5c7fb07e7a92	22.39%	Heodo
2022-02-08	ZN07x.dll	dll	723b722b0240e11a0dc96853c7f4e4e7ad3095b126c72262e9f4fe3aed02a28a	n/a	Heodo
2022-02-08	K131d3v6VPR.dll	dll	c958f2e8b5b9961e6bdf22c6834ac4c4d2593d1e573866c251d9d69bcb2dd251	n/a	Heodo
2022-02-08	7GUj39ItMuoTFIDoO.dll	dll	d720ba0547a932fcde40f0f82ae124e12ad8794602f34f7b810290bd34caa18c	23.53%	Heodo
2022-02-08	A9WcHp6tk6D3q.dll	dll	d8e2a3415a01e3318735afbdd2c35be0031116f24f8dd1108e95c2ce91ce4e04	n/a	Heodo
2022-02-08	SkIFQI2fco7cg9.dll	dll	3532917cc3239605955f1bd006de5513496765bb59d4382c2db6ffe08f171fc4	19.40%	Heodo
2022-02-08	fhQhtiAw5Dfs.dll	dll	028506b275ac94ac5bec0b3f841ed22e3c7e2f6dda3964518778184e424a936f	n/a	Heodo
2022-02-08	xdL3jpvl.dll	dll	3d2b59c3ef20568ca423453710aa636f3cbbe94771f74698f861265a493489aa	n/a	Heodo
2022-02-08	GbowwAcHcpuk5yD.dll	dll	b0d442a975f73a80270060d51ab074da72000ee5c649ef12c1f34a61f3a81634	n/a	Heodo
2022-02-08	PDjqRy6k7bL.dll	dll	76a6a5aef297f77a12d834e902ad670deacfcaf6b838f7bb6885762605dfafb3	n/a	Heodo
2022-02-08	vTTXlMNgk.dll	dll	d7cb55c242fdd2b7afd350d2d714e4d71c63f2418779f464dc1b101282da1d47	n/a	Heodo