URLhaus Database

You are currently viewing the URLhaus database entry for http://webmail.glemedical.com/wp-content/J1M2xxodH/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2038838
URL:	http://webmail.glemedical.com/wp-content/J1M2xxodH/
URL Status:	Offline
Host:	webmail.glemedical.com
Date added:	2022-02-09 16:37:06 UTC
Last online:	2023-01-21 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-02-09 16:38:20 UTC to abuse{at}hostgator[dot]com)
Takedown time:	11 months, 15 days, 17 hours, 42 minutes (down since 2023-01-21 10:20:41 UTC)
Tags:	dll emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-02-11	pgBYf6O.dll	dll	9f67ad36955a5d7a59fd3dc5fada83be42265e8c34c029d33c5572573d10cb70	7.35%	Heodo
2022-02-11	eXZVSJGlSRN8M1pR4G.dll	dll	110c0fb7a4e41414f6079e9fa0638aeb38ae35fb49a499b4ff5d6ca08d554841	n/a	Heodo
2022-02-11	2yhM57GSOoKX.dll	dll	2afcbbd0e078ed528c92bb43f74fbfd809f05df1ff53d9dc69f54c7283e81922	n/a	Heodo
2022-02-11	R2a1tbl.dll	dll	4e438ce2891500ef02afa46a81161c7f25e82648e357c857bb2d8bd4079dead8	n/a	Heodo
2022-02-11	JbVGC9hsh.dll	dll	1e44a0f9f72dd0319dd3ea890faf75379bf6abaecc19c4cc36dbb56110136f60	n/a	Heodo
2022-02-11	4PhhXitEjpOgdX.dll	dll	b99e9be9a61b45dd70e6919ccfc6e15f110be696ec38d7aabea1639023732704	17.65%	Heodo
2022-02-11	kwQo.dll	dll	75aa3c7ba72c1a6e40be078de9054b2e0c8c64e8cebb33c5d464487a486c4fad	n/a	Heodo
2022-02-11	oCLfjFQHY3PCd.dll	dll	15c88444df55d3e401c9f67b2788e41261982890e712cfea1161eae05bf3b5a0	n/a	Heodo
2022-02-11	wzalWd5yiSGfo.dll	dll	d07ae203700606d17937497924c97b96c974599c6ee180026d2a23fcbdb4a773	16.18%	Heodo
2022-02-11	4H2r6udAv.dll	dll	2c87670ab6ff3142fc6dafbdcb9f896e9fc897c91373a64e3e95327cad4039f4	n/a	Heodo
2022-02-11	xZGhsazIvj.dll	dll	a8dceb935328790f631c8637a82d1af566d61c5958226b99dad0a74b510683fe	n/a	Heodo
2022-02-11	4Wej6R4fkUaA1xYK.dll	dll	d95d95cc2eb9fb5340d6285a508f096f1075debe165d280a7125ddd460bde65e	14.71%	Heodo
2022-02-11	xXVyNVImyLxmd.dll	dll	69d16f49dc229dce832d3ee5f65e50eaed9a65b560b179e7d711f32a2d10fb75	13.04%	Heodo
2022-02-11	PYWkVqo7Y04.dll	dll	b36ea6e2afcd816ffcdd4a0639a77b087a82abdab87a5ac66ca2e279cd32cfd1	n/a	Heodo
2022-02-11	WWZsOtDhi1BCUDd6.dll	dll	162bd609a52d275af955d8e963af1a029c06430e064d2c99dc4e8290aff6b5f2	9.09%	Heodo
2022-02-11	nza8tQqlDLnc0Lu.dll	dll	5dd04b2dde1f99d1da70819df05cfe8bb3eed4fb187b6ed98995707198269971	n/a	Heodo
2022-02-11	26MrQM.dll	dll	d31f517abfbce479d9f6b8a36ab65f0ded4eb3ab335df77cfbcb37f0ba3dded2	9.09%	Heodo
2022-02-10	EYuIFQbUXQ4.dll	dll	7509017de953d3d46a099043ae42a98529f37763d24e7efa141c209c65b5c40e	n/a	Heodo
2022-02-10	ltNrQ3PDjx3QV22dsAR.dll	dll	e27dcc6377dc63c9e22114afd9e88173282d15974967b514e0709d9149348bc5	n/a	Heodo
2022-02-10	Dl3oZWo.dll	dll	7c6b54298e1cd73326107e11cb7048434cfc367207c1d99a148bd076f68151c9	n/a	Heodo
2022-02-10	YFENJ.dll	dll	eaa2c0ad020d7fd8ea77d288bfd662929e84f7516e937f4eda1bb4b67e0f8ccf	n/a	Heodo
2022-02-10	036uiDhq5FxMCaqRT.dll	dll	f57379c1623470b48417f122de7eb32ed7b430006775150bb7ee8648146b3a1c	n/a	Heodo
2022-02-10	myOi.dll	dll	684240d6caa2fa54161158aca0b97e411793642dc6a9f1f2e56f6de9e4bbfdf8	n/a	Heodo
2022-02-10	V8SfYjIPKeMcuwfCuwU.dll	dll	11284bba70ff4f28cbe109d0b3fbe255f3abaef86ea59712c72db52db011b3b4	n/a	Heodo
2022-02-10	OZKQsrDKEnS4ntME5zn.dll	dll	82ad22eca9c21ee085bcf777ef0ec1aaf76d8008f912b4d65a15ac842f411a8a	n/a	Heodo
2022-02-10	mpzYadVeX0upTz.dll	dll	c6e9b6df73bed492d645fef16ea7304b76218469679232fa88ea3a7df7715e9a	n/a	Heodo
2022-02-10	rGRnx.dll	dll	389dd4bc7e02fb9c92ab011d7aabedf0ee968f040e5b8dfa52a667e049c5fd72	n/a	Heodo
2022-02-10	gbv5jEzigXUdl.dll	dll	2ef92ca23dbe99f15fe7e50966e0fd953462d0f9e5bac4a34a196550f455b448	n/a	Heodo
2022-02-10	mkjW9PK14YB.dll	dll	a07ea744b3f12c110ce4dc2b849edfcff71cd2645f7964f941932ad9f22d2b1d	n/a	Heodo
2022-02-10	oqBEbgrPR2PA0.dll	dll	dce97af070ede4ba9f73253297b5ed566391cdb48ec2c29bbf245e67edca018d	n/a	Heodo
2022-02-10	o8eqT8JSvLFMrR8.dll	dll	e3b2356e651c6b4f03be4dcbd1fcc4e5cacf7f64ddcaaa29083e76206a67c676	n/a	Heodo
2022-02-10	CNECxcSDU.dll	dll	2d85bb4d25093274a1f87be3d418c2a504397a4467387ea213836a98d27e694e	n/a	Heodo
2022-02-10	MTJjeR.dll	dll	b4c4c20e5de0d094ea4f9d13e0933df6d5735dc9bbaf0e4aa98e55fdd5d241f3	n/a	Heodo
2022-02-10	isCPcEv5HESsU29PLj6.dll	dll	0fdf64f4a6d45e775013fa9e736b150c9366a404c2220e01df368cae71109fda	n/a	Heodo
2022-02-10	XLXWqE8W4G8WJux2m.dll	dll	b20ce8b41190eae292b8dc5a99b2145f6c90bb204e3c7140733afc33ae36fdd7	n/a	Heodo
2022-02-10	vsdEjcX477QBvy.dll	dll	e6d46d62ce88554e8d57c2259c549585e15275c66dc5d33ce2e74117f557d138	7.69%	Heodo
2022-02-10	qOYJF7i5RFJqrJ0.dll	dll	f611c9bcd9350c5853ea17b69233ece136b00b2365c352f9074e91ac910dbfef	8.96%	Heodo
2022-02-10	xSJR4KcHObITP.dll	dll	f2cd4f1bc1febd561b4de4664882c11ece0374a6796ff6065bcb5735e8caf308	16.67%	Heodo
2022-02-10	LMLagUJCxDY.dll	dll	c6754ae1cab62743281ad33117c970355a876a2d3e69706348c89c3dcbc86288	11.94%	Heodo
2022-02-10	IM3NpxD.dll	dll	48d9acb4ea8e97d194ea3e9c51583afa5ceb4fd729c1cf3abbf95bb907426edb	12.12%	Heodo
2022-02-10	HoiJDS2VJ86pBKiLIsB.dll	dll	5ac21ac4788afe29d54279ec0913e01bfbb2ad5e89bda92260b3947cfc5be416	13.43%	Heodo
2022-02-10	x3J6mS0MnqBtZ5yNT.dll	dll	2b43d0c66e4e72335c49d7e9244a17b3839895268a4de3197cf72e12a22ff76a	11.76%	Heodo
2022-02-10	r6AMu.dll	dll	877a23e4312ffc0fef04fab1c17180e7e74f5da0727f3a50b8d813491fdfcc3f	13.43%	Heodo
2022-02-10	N5BXkEifAIKEE.dll	dll	e16fbc6d752976c4ad3fbfd3d16474a31823167e474e1d194551ecb2bed5b518	10.61%	Heodo
2022-02-09	JBOiW7eSug.dll	dll	ad0ea14f4718b36f60c85ef56242646aac32598eb925b288eb8095f9a9de5944	n/a	Heodo
2022-02-09	sqMfHnohcBIgdzZb.dll	dll	6e824c7c575b84e064c4d32adf9e6911a6d960868fcc3879457698e5b8f4e24c	n/a	Heodo
2022-02-09	2CKnfj.dll	dll	fc717c75cb4fcdf4ed1019b3cac7251fa38edd46cfd71912e1e82fa728ee5854	n/a	Heodo
2022-02-09	GOPTSr.dll	dll	70c58b8fe91145f643f60de9d15d547a65fa64d814386773648e704aabcec767	9.23%	Heodo
2022-02-09	mG2Bj2iLvdboIfXX.dll	dll	3db8098a690e178579c97f7a0ba6ca1aac5e57cdfc0bd48bb9d97923201ed834	n/a	Heodo
2022-02-09	SQjr4.dll	dll	e2a4a77aaf5634171d5c32ab4434b83e96dfe3c086a551106b17f61e0d6b4221	n/a	Heodo
2022-02-09	T7PYV15DAM.dll	dll	3486b2c85f7a0f66d2939738ba6b0e041c8856ba6ad314f2e8822699d4427b84	24.24%	Heodo