URLhaus Database

You are currently viewing the URLhaus database entry for http://mtc.joburg.org.za/-/GBGJeFxXWlNbABv2/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2053748
URL: http://mtc.joburg.org.za/-/GBGJeFxXWlNbABv2/
URL Status:Offline
Host: mtc.joburg.org.za
Date added:2022-02-22 16:57:09 UTC
Last online:2022-10-25 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Blocked
DNS4EU :Not blocked
Reporter: unixronin
Abuse complaint sent (?): Yes (2022-02-22 16:58:16 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:8 months, 4 days, 20 hours, 31 minutes Bad (down since 2022-10-25 13:29:58 UTC)
Tags:dll emotet link epoch4 exe heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-02-243hXpu7dzseE.dlldll 01d4114d87720359741ea52172b722fcbf35b4ca39098d4aad9605aa986ff70fn/a Heodo
2022-02-24vCaPBNjgFDkho661Do4podJx.dlldll 4287940213eb82a59911db86f7cc05d0d7d52d72b11850f17bd7ec4ebe544c12n/a Heodo
2022-02-24uVvsnv8ifShMHFnUgOqmF4.dlldll 89cd25fe35ceb362556ef49a26b81d68862b5abe79881ac8631626479c62a567n/a Heodo
2022-02-24EzRTFCbDod8d.dlldll 7878001ce04e58fb71dd04f1d3812af7c69557a2be4cab176bce8746bed0f1cbn/a Heodo
2022-02-24QILnjO.dlldll aa4576371c50acb735cff8fb3aa07ba972a1ec951f8a13fb3aa98ac368cd2781n/a Heodo
2022-02-244bm8b3tR501ZMXG7.dlldll 5b12f1777507bff1b2631939e2e82af929bfc1bf25db3661950c5484effc4af2n/a Heodo
2022-02-248M4ygElvj5nEkV4pp.dlldll 9b2ac1a3f36994dda6534a94c347a076be2aa8fcf0a596474bcdb097d57711f3n/a Heodo
2022-02-24j8HCODQGiHnOK5aq266HE.dlldll 36c74191a5ed6b8663145fc4b3f8925b91a508d1896277bb36782959009f63b6n/a Heodo
2022-02-24KaNe7eFGuToyCtdW7tWrCUqKu9rnn8O.dlldll 3b63a69aca4114593e3cc66c9c91d84ed91a7b8797a4aea98fe9c54f8aa85ff8n/a Heodo
2022-02-24diBbCVgaAnYPzOyVuCI.dlldll ab0a4cbf9d001a6f04513e208d2d60bbc2ed7b306a18b6a11322e324dae13bf4n/a Heodo
2022-02-24e4r4arJvddcXsrKUf4.dlldll 76228039734af9f1f3eac10f4986b30be9f8a04be775ae4b360235d485c54684n/a Heodo
2022-02-24LtummCscF5aTlsey.dlldll 2c5ec8f05f8e242953070205cdbfc23eb712973f98a814e19fb7f3610291643eVirustotal results 13.24% Heodo
2022-02-24zZg0tf63.dlldll 1303ef7d95da0311dc0d1378668376e4a0f1eeb1ed48cfe1f5dd8495722cb561Virustotal results 13.04% Heodo
2022-02-240Z95858p4zqgxV9oHdqEj.dlldll 8d5107a570f655c6fbd2f74a5c0d82a180e6b6587b82cea4c7db6a821f7c6a4eVirustotal results 14.29% Heodo
2022-02-24TC6rkIQjADZs6OGe.dlldll 867529cbb605fe9b135fe2af9f47a82d8ae164b638bb0520b03d3a03fe258a46Virustotal results 13.24% Heodo
2022-02-24qM0uff07toGtRLC.dlldll 9aaea3f6aee99561ecbf806dc0db498e9e2aa3cd375f2c13389464ff18cfaa56Virustotal results 10.14% Heodo
2022-02-24VVZRTLUPdnuTAiv7v.dlldll ff1eb0c22dbf1c0f713f4856bd5de0b09b906800675e322898bccd989fa4a581Virustotal results 10.14% Heodo
2022-02-23gq3EdN09CZvmgybmQ02wVVhgm4zNx2yU.dlldll 4183c6b814449a03a042558efdacd4782ba8ebbcf9d15b00d29a2f9bc1c10695n/a Heodo
2022-02-23tn5mjj08.dlldll 9896e22d0a0b431af76ad023783b8f7bf8dc9cd8ee71c76f88fe2f99fecfa6bdVirustotal results 7.25% Heodo
2022-02-23ifgL2sBK4Uh8CjlES007mP0GommE6tS3v.dlldll 14b57211308ac8ad2a63c965783d9ba1c2d1930d0cafd884374d143a481f9bf3Virustotal results 8.70%Heodo
2022-02-230iXeKws0EeUlTBfPUErVG007eR.dlldll 5e523d23479f13b281fc7807605b63c160447ca650d7a6e009e69401476df8b2n/a Heodo
2022-02-23c3EtdLhOpjFk38W.dlldll 5d1543d0a1f36c8669c8b11d5a8f8961d761d670c8153f45f0b3df2eafb839b6n/a Heodo
2022-02-23dSJdKpS.dlldll 164ab9e470a7864410369c60d0129de245a24935f8676379714860ba9a591c48Virustotal results 11.59% Heodo
2022-02-23aoICFz.dlldll 5ccfb71882720582e93333c2e7878f7f64727989a37b03d4810b869bc81683e7Virustotal results 11.59% Heodo
2022-02-23MBFccnV6eQiAQ5q4RWe7WPgD.dlldll 6da007ad1c83313cc73e264677abb3043bd04deb6292e8c6e2de94127c37457fVirustotal results 8.70% Heodo
2022-02-23bc9AF9aXi5B.dlldll 8c32546a0aeb31cd115401ed14a274cd1a71b78363dd581087e3ff6d29173337n/a Heodo
2022-02-23hWMdXY9wVJkIiMOEDHDVVjEoV4SgEH.dlldll 88660f28f7d252a64768f267d3e581c73487ceab0beba71c48d3000e173e04cfVirustotal results 10.14% Heodo
2022-02-23UUNvxmsFVTJq.dlldll f67dcccf79705562ac012683ee765b1df03bb4afd908e5aae42040eb8f12e73bn/a Heodo
2022-02-23ZXTIANwbcnRsHbKj1O.dlldll a10e26f0867f9fd119dad577ed71d0acf2054110b70880deb9b843ae7c9fae71Virustotal results 27.54% Heodo
2022-02-23kcOajSJOsnMDKY.dlldll 29a5c6b65445ca3b36c7ffbfb32fa1496140b4a7df14759509aa7b6c98bad76aVirustotal results 21.43% Heodo
2022-02-23j7OmW7K.dlldll 7806d5d982123a83c9be7d3e99651b8698e66da379138c1a7b6a7da1a24a42c9Virustotal results 21.74% Heodo
2022-02-23x9aATVNSf79OBS6HYAkqljGFMm1H.dlldll 00ebc2f29b196b15a9807f02626ac00dcaccf4163363aa92744eda8ce0be23e0n/a Heodo
2022-02-23dAyZBekPaUUa6ffvH0xCXNcH5r.dlldll 7caf193a968cddfdbddbb43f0c57ec81883b60f09d247e234bb947ebf3c638f9n/a Heodo
2022-02-23S9nnQig.dlldll 67e37462068ef25f0bc2e87d325365efb8b56efc1a12ad9fb06df45f61f3ff34Virustotal results 22.86% Heodo
2022-02-237SOOs5.dlldll 19361cdc4f5e1dda04078c51469a3ea688b27e0811a92e84ca00167a9be58041Virustotal results 18.84% Heodo
2022-02-232o09pPHqYpKEsDzqLwDc2kQK5Da70.dlldll dae317be6b577f58fc3c99f12403a71a8b4d02b8a5da8d6b5d406546d678fb8bVirustotal results 17.65% Heodo
2022-02-22ccew8JE6TgqLRp0cb.dlldll e4fb0a2d528e5054353853bdd324ae797e07bbfea31566ec7cc916a85a9a7211n/a Heodo
2022-02-22zHKyURLV8FyUjdZZZCribVWTpXV5k7.dlldll 56634408ec5ba59770c94518908a6e9c3b9065107892869b6753ae8a7cd49375n/a Heodo
2022-02-22Ye56PfFq0ElduK.dlldll f57adaaf51c46df4cd124a45a79d8cf0e5e092e8b021d5f47ea47d80d75183a0n/a Heodo
2022-02-22xWHf8d51mjcYbiLUKVoUrz.dlldll f4d0ab59651fab39ea358eb5711c0268ac659fc6b6a928b1dd8addc46c38fb03Virustotal results 17.39% Heodo
2022-02-22LTvgYf2ZO.dlldll 66c47dc30d3de3328134b462e928e38fc1af415701b20dcaec49f363132b314dn/a Heodo
2022-02-22o9RysxtgWGOqkZ4VhAVAKn1.dlldll d12639b721f05ea5baeb50472ac9b7c4b78b1953509f7b919fc1aa406f91bb67n/a Heodo
2022-02-22ceIhnUl8SWODW.dlldll 28e01a82140576460bd57a2f116aefce9e5efa08978f36bac22f8c62451c1d41n/a Heodo
2022-02-22Dxw8SBmduzGLHAHWfqaaSAtAT.dlldll e2fb2e38f2f4b3311fc7dcdabc1572557f774717e83084e761bf3245def2c2b3n/a Heodo