URLhaus Database

You are currently viewing the URLhaus database entry for http://osaka.musicaldog.com/05-set/YLBOd/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2036946
URL: http://osaka.musicaldog.com/05-set/YLBOd/
URL Status:Offline
Host: osaka.musicaldog.com
Date added:2022-02-08 14:43:15 UTC
Last online:2022-02-10 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-02-08 14:44:18 UTC to abuse{at}sakura[dot]ad[dot]jp)
Takedown time:1 day, 16 hours, 22 minutes Poor (down since 2022-02-10 07:06:24 UTC)
Tags:dll emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-02-10A4FF8.dlldll b0b391f98a356c477f47e68a0c09e9250ebc6bb0edda9de47796383927497115Virustotal results 10.45% Heodo
2022-02-09cFT0UNQenACkoE.dlldll 01da17b7f9467d1139f04197c6b81cfa67b6381827c239ababa9774d28c2bd84n/a Heodo
2022-02-09sSYVBhMMJASw.dlldll 5f8858f719453da8b31d27f8d6380c49a796b663504eef17dff7af510124e4a3n/a Heodo
2022-02-09MHief7.dlldll 33eac6eb94ed0c0a581b1656bf4e1b69ae7cb4dab701211976a7a2335302e855Virustotal results 10.45% Heodo
2022-02-09g49nqU22.dlldll 97820b6f790bde1ae0d60c5ae9767b2d35f34dde5730cfda432e794c0f089016n/a Heodo
2022-02-09Dl1U19v1TP.dlldll 123b57ec7be67a3867300f9b73e6d4577854d2a8012ed756d68f6c5497117841n/a Heodo
2022-02-092wfycilvKx2QVQFl.dlldll 3486b2c85f7a0f66d2939738ba6b0e041c8856ba6ad314f2e8822699d4427b84Virustotal results 10.61%Heodo
2022-02-09itwoVoUSGPj.dlldll 99ed2ec45e9fbfc8903306e342f26fd7acd2b365329a8132e19d479164f669a3Virustotal results 22.39% Heodo
2022-02-090x1JQF2.dlldll 2281246b31407296ba6ccc61d25dcc1279cd4d9c17550ce119898827c3b73fd5Virustotal results 20.90% Heodo
2022-02-09n42s.dlldll 24766ea83ebba2890b1a4f5ae6a074ace4f30eb161f1a335edb5b5d16c7ef9edn/a Heodo
2022-02-08ZLr40VbkC1.dlldll f1270f143fc417bfd0b89d62d0f6b91b6ef02719d8d2e6af1444a25ef05dc224Virustotal results 22.73% Heodo
2022-02-08fVfzPqAhxBdLeuB.dlldll bda4ab3638826506a790194d23392730871e1bf6a7bbf0d7efdd33232d0c3e17n/a Heodo
2022-02-08ZA7tjeXe.dlldll c48db571a60093f7c7f238157d4088086e0d2e19232850d6337487e3c90aa306Virustotal results 20.90% Heodo
2022-02-08i8aA0DpLJCQ9etFFULU.dlldll 4b94501a6762748e8142cba99ebd06fce8eeab1b0e909b3da868516ce89c2255n/a Heodo
2022-02-08hb4OPFqpxoGi.dlldll 3c84691570fbfc2a94cad9eac0207184adc9e3c99701c1a8a090dd0a5ba1a4e0n/a Heodo
2022-02-08pOi1j5.dlldll d989673e7a1ebfa8f8c460013a5d9fb62cdbb7d4d7a8c771f91707f6ace0e68cn/a Heodo
2022-02-0827nReHCh1.dlldll 7f7df51e1372ccb7d280d53b69d9ca369dc5654a95ab3c9ceb0ca1ded85ad43bn/a Heodo
2022-02-08vJukxIWyeqOu3vL.dlldll 0f3d5129f82d202e81d1e854f0aa5703a4846fb7f8e41b7466e1934a39ae1e69n/a Heodo
2022-02-08GxuZjIscCTypfumQqZ.dlldll 308e5fa1863e9043e33008df907b607aa168c6727655aeed11c02ce1afc9f158n/a Heodo
2022-02-08w5Su1PqIj.dlldll 137fcbdd5fd90660c02f1c1584c7cb8d83d25347dfb0cecac3e8465d18e731acVirustotal results 17.65% Heodo
2022-02-08Kr9.dlldll 9e8368bf3ca80ab32117b8fe56cf793bf32a5dca4a8fa8abf0dcb6bd00f659f1n/a Heodo
2022-02-08P4Au5WnA2M96y4.dlldll a06af2c1db361c6300fdf578c4dbf0ddf6fef0d1e5eb520270ab93bf4966ecaen/a Heodo