URLhaus Database

You are currently viewing the URLhaus database entry for http://www.ama.cu/jpr/VVP/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2053742
URL:	http://www.ama.cu/jpr/VVP/
URL Status:	Offline
Host:	www.ama.cu
Date added:	2022-02-22 16:57:06 UTC
Last online:	2022-03-14 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	unixronin
Abuse complaint sent (?):	Yes (2022-02-22 16:58:08 UTC to grimany{at}ceniai[dot]inf[dot]cu,abe{at}ceniai[dot]inf[dot]cu)
Takedown time:	19 days, 22 hours, 51 minutes (down since 2022-03-14 15:49:10 UTC)
Tags:	dll emotet epoch4 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-02-24	pCYCm5isE4J7PSvPFCZg2VMzXWhZbsO.dll	dll	4b733fb79a69736faa8155081ab86c0ab7a508b4097bf3a656d7f31947193a22	n/a	Heodo
2022-02-24	CkWcC5UCbx.dll	dll	dacffc084b38362af0c864a108c2d14044d0f6b5cf272d769043c5d7d69276d8	n/a	Heodo
2022-02-24	bXsDqyvjAk1CXJdkgvo9jma5jZs5SeFi.dll	dll	3c865123c32aec38e166be6838e197b48332f088a520da67c614bc6579792c72	18.84%
2022-02-24	egM7W9izm.dll	dll	d36c985b0263a1537063f19ec01e31c6e5260281d9ac4f5eb60293481e3641c2	n/a	Heodo
2022-02-24	zKZbiVzrFMGZtCZoCBNLHaxS89XR96.dll	dll	52986458b4a2af2d5e9dcf379200ce23b299f8a8427e5ade45c672b3375097f3	n/a	Heodo
2022-02-24	ipyoyZAC7zB72w3OaKJvCg25JJm.dll	dll	42d1eb9e08197924ee2cce18813bddc43483a0aac9a2cbd39c0d9644e4092c41	n/a	Heodo
2022-02-24	6OLLLtBTjxjM7C3OMX80Njpcdo0xA8q.dll	dll	9b28b1e66e2feb6a7b84324d3d08572e7a5e6baf4ddd22de50f034460e52ab0d	23.53%	Heodo
2022-02-24	23oDhDX0WrTYWJSzCakAyflD.dll	dll	9645d56021a23b78f0dad081a0daff3896e9363c44f44183e412d950d0254689	n/a	Heodo
2022-02-24	mcN3xkB6oimK2LFSjCUxh.dll	dll	f414dc47a3ab3eedeef1ab076f50a68bc204bacd1b816118c18736b6d996d4e3	20.00%	Heodo
2022-02-24	m5hLgnFypf0LjKHBwNm9Sm7qcAIC.dll	dll	713f1fec7124d2e1568ca6e6a2bbe95fb7adddc9eafe0b253b1a27d195ab14e0	n/a	Heodo
2022-02-24	CRPj2iCMK73BCdYPT4SaqVUvYY67eLJsT.dll	dll	0081945a6293e6ac697ea27a9ad7159b3e2891c97a552c7ff8062560f54e8353	18.57%	Heodo
2022-02-24	sBNHNJVkw6.dll	dll	27d7f18d164be5c2f9622d1557c3fe220607764962176e52e58f93df18e0acce	11.59%	Heodo
2022-02-24	bMKjmmqWJhGyjdGlyM.dll	dll	3a4ef7b53249c55c39f468ee0655b2f53482906ae117e2426f46ef04005d3738	12.86%	Heodo
2022-02-24	qjGeckjkK1bh0t6.dll	dll	f2973fd1a11348a3d15ad572a9961b965623aa4dd2a639e0503873b0217a1dfd	14.29%	Heodo
2022-02-24	gE0G9jSJW8hXUHug.dll	dll	832aff063af1bf57fd8fc6447c5f191fcaff9c5c69b7543f124d3e017771d83e	12.86%	Heodo
2022-02-24	eAaPEp.dll	dll	9a677f07b171519eee37a410b21df7952d031339e02ec92136b517a10e3ab6c4	n/a	Heodo
2022-02-24	2P6O6KjTa5UL5x1Dyb3CvbS1V01R9vBMJ.dll	dll	917782d46c735de3ccd7ad6d7632fe467ff60983f2c97ec5f60ad75287f086e6	n/a	Heodo
2022-02-24	pF2j34YKf.dll	dll	565b38cbf759bfc7430d4e1f4ee3c6c72a77060e4c7ebc48f1726c307a731d61	8.70%	Heodo
2022-02-24	cNQDcK9AHd5SZTSke0ky6In.dll	dll	91c3af356538ebda04d12492c0beb6df24ae786624f5e21d1dcd4407647be0a5	n/a	Heodo
2022-02-23	R1lp6EUtg6XBDWSvSbeU.dll	dll	bd3c98f8293a028fa8ec2c6efff366d8d3a826851cb878f150bb6e70d9e61c53	n/a	Heodo
2022-02-23	YQdeu1UYsgGNv87P8yevRyc.dll	dll	88d08bec8493d7ae251463b67a5ed738df210db7beee94de7cf8f2525a6a0ba0	n/a	Heodo
2022-02-23	qdqcHKOZ6qX.dll	dll	14b57211308ac8ad2a63c965783d9ba1c2d1930d0cafd884374d143a481f9bf3	19.12%	Heodo
2022-02-23	XvNRppC6nE7BMSTL8.dll	dll	9c9f0f4f969f64be90103ae0fe111a37031b098d800f157eb4d3406c057b7aa4	n/a	Heodo
2022-02-23	0SzkBCCU9wfcRfr.dll	dll	2442e3c0366a89bbd03141e85ec9ee5090a5916950f5d9e86a57d3b289d8ad2d	n/a	Heodo
2022-02-23	DiwPLsPhxrftpKbqKiuNAX.dll	dll	b01653b014543d9697ddd4f507b34e72fb68d5089e935c963cbddc684549c805	n/a	Heodo
2022-02-23	cfDjJTLVGzI2MHWmX0nSr.dll	dll	812b666134576e2e035092a2057dce72e5a92d2b3cbb01a41a03e49fdae255d7	n/a	Heodo
2022-02-23	85Z8AzeXVYuhaM7ZiKdsS3.dll	dll	16587c64785f92d2d00b68762bb2b5f10975d1fd2a7a1fa3a0eda265f34c2185	n/a	Heodo
2022-02-23	edItRQt.dll	dll	f7abec486e021444672a852f58c854876377d01b59a63e47d9f497d78ffc2a54	n/a	Heodo
2022-02-23	50QH5uTLiLQ1ABUe.dll	dll	4b5c53fae0878b7282da3c1a6db1ce0d915a2fc2fba4a70b608d9443dc144d1b	n/a	Heodo
2022-02-23	5pUObYc71tkHve3mnerTXi.dll	dll	a08588348e6fa3f8b4322fcc727a4be9f7bb645aff73cb9504d3f72acbfca905	n/a	Heodo
2022-02-23	uwYbltSWmqN2YyCRxVyorKnEry1rH5NQ.dll	dll	1eb793d4fc0a6ccb50fdcc0929fd68beb0d554fa9cb0a2eb2db6b084c1b79778	n/a	Heodo
2022-02-23	sUNMXLxbVjAta.dll	dll	4773972662bc2f58edd0f0a286b1e7c7a82a847184324f32a76bf8c93309f4c6	7.25%	Heodo
2022-02-23	oS6quzA.dll	dll	95b903d919dbde1586537f5206bf029b52fc6d7011b8b709e65e873f89c451a2	21.43%	Heodo
2022-02-23	xqRXMIQvnkMWxxzT.dll	dll	d8284e0c046961351127cc7c766db0d8f9b0f8d278466966e84b504228288015	n/a	Heodo
2022-02-23	FDpXexAKHUzWYgMy.dll	dll	6dad49df520228fa70670665858b9e476fdd3ab9b5839af788f2d1aaf7f7605d	n/a	Heodo
2022-02-23	JVNloa5qIww9uCHc.dll	dll	2b460f99d23c20092d16565babcac99c3b76e8275c7b7aa8074b59441cad7192	n/a	Heodo
2022-02-23	usePEzvFOa4H4idGWV1NYEnQ0Qy9Om.dll	dll	96d9f0d169dc5d42acfd82c8ac50400024963a28f54eb37923197d791a262d73	n/a	Heodo
2022-02-23	UaisrSe0zLAXCxqNhMC.dll	dll	45c30c156e5e195d9f81058b6a816dc635cfb2dfee05c7afabc9d0208af3837d	20.59%	Heodo
2022-02-23	PHpWzl.dll	dll	f2b5a429e85c45818a5213f4876293abae7671e567d02caf4e6edb11e36a71c2	17.65%	Heodo
2022-02-23	sQOJmFvtN4c.dll	dll	509b711e92a8aecdc3ed388d25d5a2350946c2be8e447ff62eaa67615cf08129	18.84%	Heodo
2022-02-22	6F37xPQZupee6.dll	dll	10bd75023b88b048d238405e9213987499fca162713e19040186428c609f4aaf	19.12%	Heodo
2022-02-22	aqSC7BZpm7gzNe.dll	dll	ea63c1e30b0107a2924854183779feca99e0bf8463c2a3603a8f022b54097018	n/a	Heodo
2022-02-22	Vlux0uPOKHGQpk0t0nYWaXyXO1iy0a.dll	dll	ee7e8f50d9df468e39ec84bef10e034eaa1245bcbc2e196afb6cf30725dad7f4	20.29%	Heodo
2022-02-22	nnfHKg.dll	dll	57fc7f7e06a02106c44077459e41ea88fa9cc11543634f118cac3e711159bcf6	n/a	Heodo
2022-02-22	IurvJP.dll	dll	4d47ef276dc99588fdb16a41481f30d628023c43d1b537a16fbe08c6cd241b6c	n/a	Heodo
2022-02-22	Gwc8grlBigSekuCaysZsOzUrdETYhqoE.dll	dll	fbe52cf7d328961cb23a6c68db917fc2d3f2ac69f8ee47c281d19445f7057f46	n/a	Heodo