URLhaus Database

You are currently viewing the URLhaus database entry for http://letea.eu/wp-content/CgaqeucmpVT2NEK/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2096205
URL: http://letea.eu/wp-content/CgaqeucmpVT2NEK/
URL Status:Offline
Host: letea.eu
Date added:2022-03-14 11:52:06 UTC
Last online:2022-04-11 04:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-03-14 11:53:06 UTC to abuse{at}mxhost[dot]ro)
Takedown time:27 days, 16 hours, 59 minutes Bad (down since 2022-04-11 04:52:38 UTC)
Tags:dll emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-03-16x9LEmtUq.dlldll fa53a688704c9fd04f6b3ac93680e8d37250612a871a56921d55641a6743d5a2n/a Heodo
2022-03-16Y7Hq5yUwVs.dlldll b371e86be9850c6e2c172d4fcac6c58d0d0a849de906f517193172bde2a8029fn/a Heodo
2022-03-16Nt0G.dlldll d6cc11d4d79f1ef4f1226d7811e411cd98780bb5df0b7983fc97615387034c5an/a Heodo
2022-03-165HpWf0gRAzC.dlldll 90ac580818834389052aa2c397add579f4ec82249d6a0fb30bb76ae59f3c4eadn/a Heodo
2022-03-164zYt.dlldll c640358ad24b85d540601f07a518a80b44a595ad1643241b7f71934d9a7b9421n/a Heodo
2022-03-16kEGB2chU6neeujZWR0.dlldll e49908ea7f524d441c92aa7cea830c90da74f083d36a6cf5d5a73cf2c1b968fbn/a Heodo
2022-03-16UZVbDfliN3jbV.dlldll 6f6adb118a98d9b37a36ee3caad7a31dce8cce95912cad3651c6af2ffaf76265n/a Heodo
2022-03-16MZdyFMV.dlldll 4f07d40ddc0481e2226b4f7cb7751f093fbe392a3653d5904852da904e5cfc4fn/a Heodo
2022-03-16t2vTep06HJX.dlldll a57242925f1fe897edbec59df8d4dcee20163679a151528406dfb15e63e94a57n/a Heodo
2022-03-15gBKxnHvC2bVdN6zG.dlldll 62084f29fade211251b469ec867fa4a30e3640efae0ded1c61b06a5d01c2382an/a Heodo
2022-03-15XwGoevI3uWBj7EQYdD.dlldll 0124b9afb3342104c507ec38aa669f2f78090810e6520ed3d04157b03f2f8054n/a Heodo
2022-03-157s1EnlrptbQmpVjD.dlldll 10f5d46f41912a0a629632b1d7a1d4087e53dd192970655186ebf9dfab2ed8efn/a Heodo
2022-03-1596lQrLbfZ05I2IMbs0.dlldll 82e50992554614cea8fb18b90503822a7c89846b724d65fd8b2f25585232727dn/a Heodo
2022-03-15RHKpkwt72.dlldll fad311f5e9463b1734b5a8f532e2509aed8e4310374bf2be7e3a889afdd7d49en/a Heodo
2022-03-15KGHQ3.dlldll afc5dbd5c615058e7102330aad66c6c0a9b8e7b2b47a3d77ec202e0f6a7a2142n/a Heodo
2022-03-15MkE0LjS.dlldll b6866eb538485f5163f97701ea8d42a648e90de30bf2845d477ca799adc6900an/a Heodo
2022-03-15frG3Rab79GNZ6IfIV.dlldll 0cdbd8b4dbcd669f1caa56cb074b40f8a1f5a41cab83ef7570148572c16a0aa9n/a Heodo
2022-03-15NOQYbs.dlldll 5cad47eb1e450f12fd7b22134ea954d62b0fcef0cba2f5fafb67cc35b17239fcVirustotal results 16.92% Heodo
2022-03-15NiwpgiJS5.dlldll 83baeff59f68fa02f1ace0fdebff1cd13d09229d5d796762d12d903ac23ba927n/a Heodo
2022-03-15eOMErKX3RBUNbl852w0.dlldll ec757a6dfe5290af8120b917082cf0c289d15dcf3777c4c35010aa754bf3ceebn/a Heodo
2022-03-15jYbCIm.dlldll eb455b8bc5bb02b1e114b340233f085a3097b3d32bc57ef7a260273a839eba3bn/a Heodo
2022-03-15n0oY0unijaKfX.dlldll 31451d52b67fc5109532ea7a1d4e5ba77c7c0185338f5f83830e8c4478664581n/a Heodo
2022-03-15f8PTzpabld7DQwL9.dlldll c29833155ac1537bf0ec4dc331cb72e74481e848bb5bbcf7999ea6909c073f7an/a Heodo
2022-03-150CeBNTJIA962bSwqeET.dlldll 175cdb7b1b751cdbb5632d695017b8479919e85b4658cb32b78f51634dc0f81fn/a Heodo
2022-03-15KzqZmjdNFSxS42.dlldll 9a3d08b3d5103ba9cd8e029cb8f247d0d1a4c0ce478c9133ac82171b36ecf548n/a Heodo
2022-03-15N3PlMOpC6sU1PgMpuH.dlldll 7c49b4e19da9c53299ecbb70d2afec89b34092eeebb669b7779515cef9714ac9n/a Heodo
2022-03-15h5l8qnnZa6O.dlldll 30a5ee90917b3568a3b8d93bf512f55f43c485a85f2395aa98c6ff7c91213666n/a Heodo
2022-03-15QRDOBPlF1DDD.dlldll 4449c8ccb806a65392b8bab9c2886da15c60ffccb85c7c47632526003c95ee99n/a Heodo
2022-03-15twsSN5j0HSZQGYUSBn.dlldll 3f06359120ed002f0831cbf2ec222d98e242705608a1e8d7c9109193fe04c029n/a Heodo
2022-03-15VVFFXPlLLeLLQ.dlldll 802f657afdc9ab4b1f846580ce40f1c93cb483665b00be9e2f9e41efd9f6cb56n/a Heodo
2022-03-15fBkRIQBUVdBIGS.dlldll d2e90dfbfe9706dbc97675fb053b71fcbba6ec7977983c1a946331709360971an/a Heodo
2022-03-15AefBNtybFSNRSN9RmPH.dlldll 80685aae3737968fb1b1a07a8040142e6649861b55437f071f0b8e57cd76e550n/a Heodo
2022-03-15Fo0hmXL5Vfw72kig.dlldll 2b27f8173d9d3223256edafe5c6b7e2f25c1d0ac00a430721d8d3c251a9dd636n/a Heodo
2022-03-15TPLPdUN.dlldll e1bde9840c32e914d91eed6bdadde692c4f8b608a80e6b1e29ca3925bd3d4387Virustotal results 13.64% Heodo
2022-03-15kp8.dlldll 840fc3829e2674b15ad9e4aa1f8b284fa63adab862eb0960238d33585f5f2934Virustotal results 10.77% Heodo
2022-03-15DlVD7UL5jU9p4oX9v.dlldll 74a1bec0651efa8f08e45a48d1c620d2a45fd0a3e96fd82b617fc82836248ebaVirustotal results 13.64% Heodo
2022-03-15sBBQbVHrxs7.dlldll ece81998bb93252a073e44a2b0627c9c388ec141c7d57ebc9dcee493a5211a43n/a Heodo
2022-03-15omHpBA0d.dlldll 0db9e441898723320721482e8f53c514518eef02c555e1069402d7999a1f557aVirustotal results 6.15% Heodo
2022-03-15lrSPr41R.dlldll 700094640df542a0b5bd6f5775cb36c544e74d702a76bc810ea404b34e7d5025Virustotal results 6.15% Heodo
2022-03-14S5sr7pFfakQ.dlldll baf948d59a620948d09dddf0e448799e0f11fc62a234783d98a40766ba3eb901Virustotal results 4.62% Heodo
2022-03-14MfPkb9eN6YmzpCt.dlldll 210b7b9303477a22c97e764616062602ba8bf26c2d11c7445ff6e8411ec2ca50Virustotal results 7.69% Heodo
2022-03-14y8BDq7vMK1A7Rl.dlldll fe57c9526232169ffc1b866b7d20fb0e29f9f032b721b32c6911c128d0f6110an/a Heodo
2022-03-14vgdKOMMVKyipqLBjWk.dlldll 38ecc7c8d31103f8ce3b1e7739a6b52337a3984e9d4363accd82fb952204e66en/a Heodo
2022-03-14ZZdk1hEK.dlldll 9675c1869bba430fb767246df6f9490e81bc6ec7b21763b7a369f482128be75en/a Heodo
2022-03-14JJRSLuoD8VzV.dlldll f76f2159394c25c3bf7b44e7c2949d2866b1ef66331835ac33b669a91efbfafcn/a Heodo
2022-03-14uDXGfcYW8cPVrI.dlldll fc343379da7faf3720b45e0eb1c59c8a406e8b678ed1e513a12d42e27cd7cb0dn/a Heodo
2022-03-14JJyZWpEl4QJ5ed9.dlldll 1191dc6f52527abbaf32b5e910c8cb917974897f8e5dae16f798e5853e4d0fb6n/a Heodo
2022-03-14Ovup3QPHwji.dlldll 1ea0c3990d80ffded73afb6a5e424b6f06a1e743d2da653daff5efb15fbc63e0Virustotal results 22.73% Heodo
2022-03-14czkHmlKAULdiJooaRz.dlldll 9c334e2176b500a74bb2acdf5b3551585df2782e173d66b36704d33780d87f80Virustotal results 27.27% Heodo
2022-03-147lnlhDSG.dlldll 40e4e9181ceaaf4b0d0225dad7cfa3ba3f26415d4fbacbbff0f42a9bf4965e1bVirustotal results 20.31% Heodo
2022-03-14turOYfa4ubcmK7ucEF.dlldll 8e27fb388bfcdff558b72b409fe59620b5354d1d9e30ac517a424df634d98295Virustotal results 18.18% Heodo
2022-03-14Wz3M.dlldll 3c0e4a65791c1fee3cc946d1b6f389f8fec9263d4566e828a0f9f971df9d11f0Virustotal results 16.67% Heodo
2022-03-14L3d.dlldll 34aa2b3415c25d5b03e90cb6b98d1103b221148c05d0e57d5288408e26525915Virustotal results 15.38%Heodo
2022-03-149zv31BgMsH0HFu0ud.dlldll e0edc19ebd22070bb1fd825fcd3cf4df9c51d820b17244710ca3931ea666c7c6n/a Heodo