URLhaus Database

You are currently viewing the URLhaus database entry for http://catower.com/cgi/iC2/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2036939
URL:	http://catower.com/cgi/iC2/
URL Status:	Offline
Host:	catower.com
Date added:	2022-02-08 14:43:10 UTC
Last online:	2022-02-15 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-02-08 14:44:17 UTC to dns{at}aplus[dot]net)
Takedown time:	7 days, 1 hours, 52 minutes (down since 2022-02-15 16:36:35 UTC)
Tags:	dll emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-02-10	i3PIA.dll	dll	a9f516fff9630a7f0bc16a557bd7312c8c20808e53a6253b97d5f8eabeff485b	n/a	Heodo
2022-02-10	YMGsjR3XbU4NPnT.dll	dll	fe3e00b4ec6d4f4772d9a03c980d98af8a575f9e06987564f04ad230523da0ed	n/a	Heodo
2022-02-10	LIlNcc6R.dll	dll	0e4991926b09144877e54bdeb2ad88425ae2a6e1e906d5eeafa90c280e2ccd5d	n/a	Heodo
2022-02-10	znNPMBd.dll	dll	1900fa14b22ec1d9fe54b2c84a672110e02d5cd074daaad63fc34fb4d21e3950	n/a	Heodo
2022-02-10	x7q3RPPoQlPCoBe.dll	dll	97ef2976bd9f0f75ca05fa1d46cb18b3265247664d969b41cdb83aae2c573cb9	n/a	Heodo
2022-02-10	6WPDyCCuCxWuILsFT.dll	dll	518bcd897c4e3184931405e60efcd67d9f866f9bfd30fd3f3c0efa4b78817586	n/a	Heodo
2022-02-09	lXV9medbUvXdBA7.dll	dll	51de6868ca04a918d49667c76694b6e82e611252a0634ad94846d45f5c1e0055	n/a	Heodo
2022-02-09	akp6dH.dll	dll	2b157471de436efbd34c0c69ba93211f538a2b5da6abf222886b399fc77547b2	n/a	Heodo
2022-02-09	e02.dll	dll	9889bfe3ed6179d5943e2f5a63677a1cea9d2b61172f1de954119f23d7a6acf1	n/a	Heodo
2022-02-09	TPsu.dll	dll	50fab9dbe128097df5f790698e425875a5a578a634108b61995e8a27f0545a56	n/a	Heodo
2022-02-09	5Cu.dll	dll	ca30e9d6f4ca772a49cafa6dc089bafb27e42695f250351d32016e7d8b604a13	n/a	Heodo
2022-02-09	PKdesiIXFZw0.dll	dll	3486b2c85f7a0f66d2939738ba6b0e041c8856ba6ad314f2e8822699d4427b84	8.82%	Heodo
2022-02-09	5Dkg9I.dll	dll	5fa4a3705e77af68f53616e9795b4dcb40ae723eb3998fc5f3dda20f3ee92295	n/a	Heodo
2022-02-09	6y3hyO7tjVvO.dll	dll	58588d24d33f478002046dc8d56915a8da169b6bdf4397dea53d396661bd7695	n/a	Heodo
2022-02-09	xJ3pKmLkDh3.dll	dll	28a7bf18e03ebba154f27a1166aa77f5433a9d27ee61c6bc98f9838bbba68157	n/a	Heodo
2022-02-09	QEzGEzT9IRO4.dll	dll	103b2b80197a93f20cb1f06a2621be56346b96a2920e3b08a63673c112a6de13	19.40%	Heodo
2022-02-09	lxbHFOtZQ2tAPTETP7.dll	dll	71db075cd555043e349292eee97d7f510413d8932ea9464eeac99a0644512c9c	n/a	Heodo
2022-02-08	LEm1PeDTV.dll	dll	15783de3b16e3649ca5105dd656424e66837f3c7b35d6d62bd1397a8c4f998ea	n/a	Heodo
2022-02-08	rdOMSArcO.dll	dll	0ed741d5a7bb4c3b92b84ee1418bc8f8c1034db7384a23d449227362c40a3619	n/a	Heodo
2022-02-08	MkjZRDk3LtiwMku.dll	dll	e436e18c087f88e3d5508e845e5c6af8d56f9d5e023c4a1de5480f31f50e3be0	n/a	Heodo
2022-02-08	G7Mjkcx.dll	dll	cac25416a7b32994d5ffbb9bb3ee67ffab897c0db9b2c8fa1a218b52b8969e10	n/a	Heodo
2022-02-08	Hw8WQCeD0Tb210.dll	dll	f0d53b216e9a7280f6d1d70eb01a107c6dc4f427490b43e0a32def9f098ac0ad	n/a	Heodo
2022-02-08	x0TczdYlxaxam9y6ald.dll	dll	1b229b5c78a5b66dc78ebfb4696f65e58694bd1bede40cdfebeb8952bf49fd21	n/a	Heodo
2022-02-08	pKeWVoPg04tiKp2g.dll	dll	a63a46b1d17f264b4698e860e7b7d61e8b0ace8e3855cb098f04d2e1d2aafdee	n/a	Heodo
2022-02-08	t1ZYmhhy4.dll	dll	86bd05603bbb76a0cf8e8906c81099afbb27f379dd92eb52be89a479b38de5d2	n/a	Heodo
2022-02-08	pLIVhDhhar.dll	dll	791fabdcb71505e5d5b9686f0754620ed3e1e614bc0b6fdf6aa18038b5ad7df7	n/a	Heodo
2022-02-08	O5rrK3.dll	dll	5ea35dd792b59a3d2297f8d6508010bd601117ac84d89ad57fbfd74e18067c1d	n/a	Heodo
2022-02-08	pVzBM5F4gXMlEl8.dll	dll	8dc742569894f3a6ee82e706346174547d7a4a7f52df2c8daa48a77c7b6e8bca	n/a	Heodo