URLhaus Database

You are currently viewing the URLhaus database entry for http://meca-global.com/okickb/Vm1FMsVcbL/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2070439
URL: http://meca-global.com/okickb/Vm1FMsVcbL/
URL Status:Offline
Host: meca-global.com
Date added:2022-03-02 08:38:06 UTC
Last online:2022-03-02 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU003918588 created on 2022-03-02 08:39:06 UTC)
Takedown time:10 hours, 40 minutes Good (down since 2022-03-02 19:19:38 UTC)
Tags:dll emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-03-02eqiCvsTjUyVtHNPT.dlldll 5b8900a8b13b8d124983f07e91c9f31ebd17325105130e0ac9638a6837b02eabVirustotal results 18.84% Heodo
2022-03-02q6bPbh9fFSwf4t.dlldll eae8ee06477acc1bfa62144add02938c3c9da7314878ab125fea8ea01c339ae9Virustotal results 17.65% Heodo
2022-03-02OuIH6tp.dlldll ba62a61db359e89b1f7bb5c28a6a6ecdfe4f61b706a6f7753d6194b91d214e28n/a Heodo
2022-03-0237lS5VCBYuLXW7z.dlldll e3e68728f6e902da8db35a483bbe0b5c08272b1390026cebed104d96a72e6eabn/a Heodo
2022-03-02lkW6yBpffDW8lSSBRr.dlldll 1352c8ab62c0c56d96c448267d239a20809fe031d09ea8ba8b9d1408d1bff599n/a Heodo
2022-03-02sRxJWUfkpf240jz.dlldll 29bbf1addce38df1aaf5e0d30bedca9cd961f855690b7b7f230848a0592f2e8fVirustotal results 14.49% Heodo
2022-03-02hsQKsZoDul2khw.dlldll d57030a3b9b47a78820c09c0c0ca09c71a8f50d4f29705daf381b87ee3d27e94n/a Heodo
2022-03-02tJmaVlHN7pA9V7QFmJ0.dlldll d4d7ad26fe4b2ba0065e61da31329cd8116b637648fe508f0d0deeaf3f8912ffn/a Heodo
2022-03-02gv8.dlldll 0e7cadd2bb4f2f2b832644106f954b7b33ff1756a94ca182cff504b353d8cab7Virustotal results 13.04% Heodo
2022-03-023GZkCt.dlldll d9b055702512e3714902561b1d0a31533c5b4a72a143977c4b5633ccff914b15n/a Heodo
2022-03-02vZmSec4ctFQuqB7Pbzf.dlldll af0d2dc47b9af98e44fe43b89efa537ec870c76fba717c13f88ee3571d1cd4ben/a Heodo
2022-03-02a7RwzfKbG5aFA.dlldll 623155cb8ee83cfd7d641339f4ae6666841afefb5021efcb2b248b582ef94720Virustotal results 14.49% Heodo
2022-03-02cSMn0qGy0FIi7Ncqj.dlldll 227fbbda3431b0ea993ac8fcbc14ca4badfe8f9ee84070d6658d5e41725f065an/a Heodo
2022-03-02NZxjhxGj.dlldll a005c90e80c1a0cb0173dff86ee8cfce6cf8a832dabc28fe6283d4325c6cdc38Virustotal results 10.14% Heodo
2022-03-02Q27mj.dlldll b4ed3256254a86cd392f0593a20b197375ea11048aa522a0cbc32eec1dec18d3n/a Heodo
2022-03-029JKjF4Kh7HSM.dlldll 7ce0f07188a563ac47b903592ef8f48f536fb1c23c9193da4d3d33499bab2274Virustotal results 7.25% Heodo
2022-03-02fgg3Ai9ehDHl.dlldll 102a0ef17b4a2baba38f9741c06ead9683eb19c87fcf4d48836b04823cc5a763Virustotal results 27.94% Heodo
2022-03-02Cew04vNyiW3Nov.dlldll 2d701e88e019c16307d6ee521dc568f51a83662cda6597b7182d31fb77bf4847Virustotal results 23.19%Heodo
2022-03-02J6bx.dlldll c55d705c35196e3729ad7f7273595343847601b5d5cc61491d6053fb91ed8682n/a Heodo
2022-03-026ItuUFFyt3.dlldll 6d1f1f256bc61070f870155e3e1aa40dea8e1e197fdb6030e1018ceeb20b59c5Virustotal results 29.41% Heodo
2022-03-02fFXlCZh5jDkzV.dlldll c26fd47de4a767d5e4af2a8f7c2c5dbfdd93ced54c81d1873596ef1cab4d9e45n/a Heodo
2022-03-02Iwz.dlldll c4a154c114cb1f2e9446135c553346a60551d934d2016b9161fb9d168d224a3bn/a Heodo
2022-03-02AxS6TXCPIvfqfK.dlldll 28e839c3a412e01171c090af94b23681802142ab504aba8ddf78def239275913n/a Heodo