URLhaus Database

You are currently viewing the URLhaus database entry for https://iashanghai.cn/z/Z1PG6ulBh20plss/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2054099
URL:	https://iashanghai.cn/z/Z1PG6ulBh20plss/
URL Status:	Offline
Host:	iashanghai.cn
Date added:	2022-02-22 20:34:08 UTC
Last online:	2022-03-08 06:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-02-22 20:35:17 UTC to abuse{at}tencent[dot]com,abuse{at}qq[dot]com,jsquare{at}tencent[dot]com,dreamsruan{at}tencent[dot]com)
Takedown time:	13 days, 10 hours, 8 minutes (down since 2022-03-08 06:44:12 UTC)
Tags:	dll emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-02-24	8Q9d0y.dll	dll	797cf21750725328541e4cd4b8ef88869465837314c4c04575bb84d97d091a16	31.43%	Heodo
2022-02-24	3i9vuSWk27tdqOk.dll	dll	e04c3724a72d44a007553c0b2f8a790797bdb5de86cda4b128f7478983e23ff2	37.14%	Heodo
2022-02-24	LKleQxmdt.dll	dll	54ec30d11fbff4b1d2da519473662310761e811f83e4738726f4ab8e1bdec435	n/a	Heodo
2022-02-24	qRxH3K2NW42g.dll	dll	65bf1a02d1e300fbc8c54a6090ab689a672ae44a3007972ad2d98ff1a2718a77	n/a	Heodo
2022-02-24	cpUkLEq.dll	dll	df44d57bffea409f45f74620147c5564b676dbc29d8ca62bb0b0cbc251229bfc	n/a	Heodo
2022-02-24	dz1P2.dll	dll	0a9c47aa4484835eaa1144123039525e2828087ce5ff7aefe29ee587cc622bdc	20.29%	Heodo
2022-02-24	25TyC9J.dll	dll	da75b81e736175c6b9d5408374d3852684d4b6ad2ef72491cf58db4043ec4ef3	n/a	Heodo
2022-02-24	mTm.dll	dll	4a71ea7819fa096984bf7ef4f1ef0bedd149e1ccadb1d9eafb00f4c9581af361	n/a	Heodo
2022-02-24	krB54IFIe.dll	dll	7ed1e008ee8e96626e4a0d15ae8a897ca37ec4d30c8e03d4c4420ba719136057	14.49%	Heodo
2022-02-24	PQKSnbag.dll	dll	113e01853b553ede065461c1f465c21c01ef511d14696200c12fed54492841f4	27.14%	Heodo
2022-02-24	7CH6xkljHA.dll	dll	1b3a780a4979fcc8be83175ccdac46136aa16fc40b7dffd86ea368218f68ef08	21.43%	Heodo
2022-02-24	0SPcfzLo.dll	dll	eca716b92a3ac9cb37a70929223fe15922343218d52b592bf3cdde0bb4745eea	21.43%	Heodo
2022-02-24	YYmESQxZKD6pM0fxB2F.dll	dll	9e32bb6d4f164113184722ad71ad73180f4ddc8654902d6dcb952149704e724e	n/a	Heodo
2022-02-24	ciIgmqgVmBiFyJpTPc.dll	dll	68698df87540c7904690caf30dcc0b865a650fe6b92f0e5477c24432cbff0806	21.43%	Heodo
2022-02-24	3uydE5iwKB.dll	dll	ab005be0a935e978341141712f947f2a859d7790d1f64a987d75e480592ba817	n/a	Heodo
2022-02-24	oVrfL4hrUk.dll	dll	9701be55910e9fd90770df98075e41bc4dc2752ec9a8349dcb4adebc62adb8ca	20.00%	Heodo
2022-02-24	Tr6LtGvBStj3QZl77.dll	dll	6a7dc8e1c424996ff58f2730175449ee61ffcebd0eb58494efd5e0480ed54651	18.57%	Heodo
2022-02-24	uJlWuzl5dYnGpyDt.dll	dll	5880426dbce07742d944a6e678dba8c3b8e1c07f11c2480013160d338c9c6975	18.84%	Heodo
2022-02-24	jAfl.dll	dll	db8d15dbeb07a8a2abf3747e00285b01a25b45ba4319b7657b8a6df66365f18a	15.94%	Heodo
2022-02-24	R7dT.dll	dll	a8ed74c4f077607a27167895f2cf47a830b1f48196d5e66565f3cceac920787b	10.14%	Heodo
2022-02-24	BMcOwFeTXzksZnZk5.dll	dll	7a3c653e0ff5385cdca9f32320d496fdd841aa438ed4c804764b0ca85c18eaf3	n/a	Heodo
2022-02-24	NIvgNYheYRJ.dll	dll	ff3b3994debc8b30719c3f2b1d006b84aa33d969571e7fb65aedd213d2657438	13.04%	Heodo
2022-02-23	IzOc.dll	dll	b9169829184139336e34213245c7c1fbe7f1ab617307166c1d527750dbba4a35	11.59%	Heodo
2022-02-23	GTih8.dll	dll	1c3b98c99e9e3c868a4d139f1c8f1ec3e912535aa77f8266f07bddea00cd6ac6	11.59%	Heodo
2022-02-23	U3b.dll	dll	e38f1553dbe980f86374aff0b4b9977487778f3abed3ef1e11f0a99565a39659	26.09%	Heodo
2022-02-23	wteCXXq3bLJH.dll	dll	cddde4298736f4b34092a1556b008de24b412d50d29e8e2f0786c89e5afc4a2a	n/a	Heodo
2022-02-23	LXMR.dll	dll	02d5b36392f49ec9965aae8032aa5cc0ddf7814be46ae4c54ee7ca2fe96eb633	25.71%	Heodo
2022-02-23	ArSXt.dll	dll	ad89be994dca0fbb22fbe14c5a34fe3f6ea5da89a643c783566c91b5debcec1f	n/a	Heodo
2022-02-23	wuHg7P.dll	dll	2fed537a2b9e026d452298f95a262abe8d4aeaea21a5e63c2cd67401d04e7de7	n/a	Heodo
2022-02-23	o0GC1GjVP249bPV5tB.dll	dll	743b326837476d30964895f816eb2d934ff0158dfad0c6cc8566d2e7e85c10dc	14.49%	Heodo
2022-02-23	y9W.dll	dll	1acdae5477fea356dd9e7cdd926a18cadacf3e0e24ee9335c87f6dd678aa83c9	11.59%	Heodo
2022-02-23	41JGeFi0ZueSLNqXXyr.dll	dll	9a0b60b9f7187376b7f54d7ae0c527d912fda7172e75e3552534e0bf030212b5	n/a	Heodo
2022-02-23	lfPLdFT.dll	dll	5bf0d1da83cb40e3b34fa7e859755ab2d91572b07659106e44c9901445503770	10.29%	Heodo
2022-02-23	GuuIGAKQUfjppKs3cx.dll	dll	c80e4061b212047e854765e8bb833b2f9f83a2787a9265599e2ae4876add65b6	10.14%	Heodo
2022-02-23	GcZywEmVIM3Iu9YWPOH.dll	dll	89dff01aed29da2cadabf886c79a11a7c062935b61596037695e65a3b05b702c	11.59%	Heodo
2022-02-23	oNNq1.dll	dll	39415f37f372332e027997f454d60091b87e7102160eae6d98d8fd8c95744dd3	7.25%	Heodo
2022-02-23	NI2Cbn4MIf3.dll	dll	07c1509d5852598401a3528b3ee3baaf529b1da76d931eac027f40e9b1227bee	28.57%	Heodo
2022-02-23	GupSNGD4Qwo52Hp2IaN.dll	dll	6b297957610736fcda705f85aa8874f32e56c9a0099648ed4f86bfdf0a1e3503	24.29%	Heodo
2022-02-23	KGKl9Evf.dll	dll	34e71964e520408942bc0425ad2acb6b284e16378c0c9dde174a4f7642dcfbfd	24.29%	Heodo
2022-02-23	QfAYLkIiT0.dll	dll	9fc12b18517703a0c4a195a65426d343dba8c8a19960835507e2ca7f561ad0d9	n/a	Heodo
2022-02-23	LTemiI.dll	dll	fc8df6c08068bdfb4b574c7189f83657f8b62820f9b5363f01e611ea2bfe9a9a	n/a	Heodo
2022-02-23	Rm1JOPrY4IU.dll	dll	486f6d31e5e4312b61b89e35ac64e7e3c75319a49f03d2c597d952f1fde604e2	n/a	Heodo
2022-02-23	P4BRdnrJcC.dll	dll	a426745dfc49875ab3bae35568d62c5a15af5fe869aa84bc45471ed475a9d3f9	21.74%	Heodo
2022-02-22	ONn2YqwpskZHSvwSi.dll	dll	5f39a527dd16270e70e552f64397e8ffa6ddbf10a6474b4558982ea0102d1356	n/a	Heodo
2022-02-22	55VVM.dll	dll	8c47fd4043a4c6c2162ec2cc8d566cb6fb5f5fb390177dec84e6899e1d4d6217	n/a	Heodo
2022-02-22	Dnk1sjkQUb5f6rOYkVs.dll	dll	e480ba98a71aa7e2c7fb019a2e616ffd8d46396842f6c825a0f40ce651ad2e87	21.74%	Heodo
2022-02-22	7crAMUlJ.dll	dll	89f4e91888b6801bcff3728a7c3e86a79ad588fdb4133eef667d4ea46d33711f	n/a	Heodo