URLhaus Database

You are currently viewing the URLhaus database entry for http://onlytesting.uknowva.com/cgi-bin/ykwkwDElL7GqV/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2096468
URL: http://onlytesting.uknowva.com/cgi-bin/ykwkwDElL7GqV/
URL Status:Offline
Host: onlytesting.uknowva.com
Date added:2022-03-14 14:42:09 UTC
Last online:2022-03-16 06:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-03-14 14:43:13 UTC to abuse{at}amazonaws[dot]com)
Takedown time:1 day, 16 hours, 1 minutes Poor (down since 2022-03-16 06:44:47 UTC)
Tags:dll emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-03-16W82MFYf6HAlN.dlldll add77566314b8c811454ea66d84774d2f36d082759eb0913d15b6b4d09c26556n/a Heodo
2022-03-16YWk1CvgJDiN.dlldll 5f9c041f5a25b7d9f27e68f0d29a6bda1ba5e9c3c57f506fb47f8df96751e269Virustotal results 25.76% Heodo
2022-03-1600KefyVaxMQHnCKTM.dlldll 927b98525c70e1de036e9bdacb3c536350a2a94f26c613adf8de9a0824f28e20Virustotal results 28.79% Heodo
2022-03-16GzJfBfY8P9v9b.dlldll cd5f0344f20e61ca20408cc2bee1c5784bd705f180e5b0613bb2fc180b7f8e72Virustotal results 27.27% Heodo
2022-03-16JkdkIQpj.dlldll d3bbfa24407ac9120053e14768f86b60c6f04f4af499ad21a313ac000a2e6fa0Virustotal results 27.27% Heodo
2022-03-16kpVNeb.dlldll f6d3b309abdbcbb26c6260481f598380c488c547bd551f0e5d0510517ff26341Virustotal results 26.15% Heodo
2022-03-166ZAkbohMsc.dlldll 4185683522a5e4aef9f5ab85c1b0ad437eb458bb4cec48e2640f1587d8bebf6eVirustotal results 27.27% Heodo
2022-03-16PCOSjjYrS.dlldll dd044e6c67c3e50d55c1e8de0a0700d8b000e6e2114e5e68cedf10cd03d69711n/a Heodo
2022-03-15wDdBCR0nU8K6J.dlldll 5b3a46ce4d3700ef7a49af045a5b203cb4729aa826ad416c437d6ce2540b53a4n/a Heodo
2022-03-15PZC2tDmF.dlldll 73ba64e3b65f022e10d414a5a9a43d4e4258db4e7c4fa5308f5466cf4dc7fbecn/a Heodo
2022-03-15mjX.dlldll 73a501b5390f4065c0411a06c3b9f365f6be8d7482be176fd79154287d5bea79Virustotal results 24.24% Heodo
2022-03-15nw9rmDI4.dlldll f091f78ab4a8d9e6f99458d6ce264087072ff41d8259c26ab2e8c544530922fdVirustotal results 24.24% Heodo
2022-03-15qWP6gq.dlldll 2de9b8574bfa0dd87fa7b38449c66db0716132498007c416781c4441cb07c1ebVirustotal results 20.00% Heodo
2022-03-15ascwnYHp30fixF7m.dlldll 2a698a0e3ed858997d954f1f413800b56363c9690738e228ce1c1b0c9eb411f7n/a Heodo
2022-03-15m5YTyRgbzuQ1YgQ4.dlldll b445e9101315e1cc0f44c3836809706ca2cc70b87113af1958d9f29116168097n/a Heodo
2022-03-15VtMTP65ZCyz.dlldll 4ca21409cb61bce44d7ba563a47232e25668d0493cd9b7565d9f8e9d6f572665n/a Heodo
2022-03-15Lbj.dlldll 2a019c5f0060d4baf7129050b203f7841cf53f50c1522c773e793511c60e7cecn/a Heodo
2022-03-15nwLiq72SB.dlldll 4d3e1b236ef06259c6cc46974aa4c11628217ab5a4066a1cb7bf081b1834db67n/a Heodo
2022-03-15BqkExw0QlfVUsM1q3.dlldll b02f7679b8ae74999d1af1c50eda63ac9fee5e44b763d24cd14fa776e141f9ebn/a Heodo
2022-03-15hey0.dlldll 6b1ce17d3c7e20f6532688d695738dad93ba882245eaf73a297c49b8d2d32dc3n/a Heodo
2022-03-15FP9Yf.dlldll 9526cb67f4e15382027c8c89a78366b4bd8f6dd3f9b76e4e6ebdf3c5fd4a6ee5n/a Heodo
2022-03-15x7tIFpO8lI4ZJ0cHHPs.dlldll 0fba5f245d03a7d80e90033e46bde45bcf7dd867e94224a74adb8a8f93f2c71cn/a Heodo
2022-03-15anXp9MUK.dlldll 0f131523377f40b409f1b658eb9e0403038c18b6abde8db925a26f2daf93aba5n/a Heodo
2022-03-15qaUB0y.dlldll d923a8aba4175460e460fadad53bf79c056c96006b331673d6193aadf56f70d3n/a Heodo
2022-03-15KR4Z.dlldll 98ab7d3e6984e0ede88e4636deb75520e885f3b6c511834725f35893acd70dben/a Heodo
2022-03-15Y9tDVKJR1rctmO.dlldll 31ad7c229c119d3c0d90136e9ffe0ef0cdb174a487c6f4d8817bc740ff1d3d13n/a Heodo
2022-03-15ZQsvdEJF0WfQwIdb.dlldll cb68fe063395a70f992370fa54d0c53471fbe400666b3ef79f5fc332f4228748n/a Heodo
2022-03-15RoZM8qCi.dlldll 3a9a6d251d6ce230ced05176f4d9dfa4506db7899a88a86423dfb3375f199880Virustotal results 9.23% Heodo
2022-03-15DSIlegI5zkmTp.dlldll 0ddcd2e3fa3e5670f16b8090256c689abdfddbe246f799a9985ad8822e302d48Virustotal results 15.38% Heodo
2022-03-15Eui6ZNfu.dlldll 894a6f90a30b486049c39d9fd19c1ea0edf73bd06d26772e6d906d9a59c5a5bbVirustotal results 11.67% Heodo
2022-03-15m1vtTRLLL.dlldll 45713b53f587396a9a7b97169932b8ace051033e63d03d9c581f59f0f46e05f5Virustotal results 13.64% Heodo
2022-03-15Mfpmy.dlldll 9e03485f4e31825142156708510ab43cb586a267e321f437f088de331a1a87e8Virustotal results 13.64% Heodo
2022-03-15ke5i7uaTKJO.dlldll 32fe7d19a553cbf74327f38c5b75a6656c26d82b561714ece76e6a31ab8a35d1Virustotal results 12.12% Heodo
2022-03-15qhIUTAcbfr.dlldll a8bfeaac30cfd37a14fed791b41a038a8abd4d2d8d29b00fc70bfb71bda70b8bn/a Heodo
2022-03-15tfgEfGCR7uwIvLLcf32.dlldll ab2260f7544c8b6a1b28942c222e8ad522bff4822a214b8f7ec9ba2253435377Virustotal results 6.15% Heodo
2022-03-15z62WWppcf7FynI7.dlldll daabde3a02af0117f9e644ae8f8ce6168ce3cf6daa1b315a82fc07e936df983dVirustotal results 4.62% Heodo
2022-03-15Ge0Nd.dlldll 9245a7debd28c304c13824774e518bde31a09b0ea50dcf70fd1b721a38331c88n/a Heodo
2022-03-14pwvzP.dlldll d26dab7bda9532aac4bb548f1f8420d7c5d09ebef2038a94681f96173cd23a68n/a Heodo
2022-03-149Up6on.dlldll 5ccc3973c4527089575cf49e555b754a30bc812e2b7a17c97e5b58ce225f08den/a Heodo
2022-03-14E1cbG3RtltRyvD.dlldll acdc460a72aaef53557a5c77f42716cb37d88f80e007e68dc5d1268bdf007bd0n/a Heodo
2022-03-14kXttMtPqmtqMkrWtWG.dlldll 9bae8aebd478806f6bea0c3cdf521f5bfb3299a900626e433c9ed099c8dcb30fn/a Heodo
2022-03-14JCBch2W.dlldll a13e7fe76288365b7ed0f41a77be9be547bc74052f2fed92e6e4080a57ec5da8n/a Heodo
2022-03-146P6r3mKK.dlldll 798a4801a257101511c6c5c091ad4c42a282d763b90d207f230aae2c51e3a1b9Virustotal results 28.79% Heodo
2022-03-14gYHwM3CCcuq5d.dlldll aacd2a20795ce085aea0030d10469aa7c8ff1ddd5e6e78cf95d68c4b3d1e6534Virustotal results 27.27% Heodo
2022-03-14QnOtq8L0HaY.dlldll 5f89d26da7f961cdd205be0852fbed603d6ad1c871c0ac259f80860d62fb340cVirustotal results 27.27% Heodo
2022-03-14T8g1.dlldll 76481a6848fe93b126f5195bb7833e293e1af330b30bb9e1c9e21465055a8650n/a Heodo
2022-03-14S8codxCGZ64pmRxYy.dlldll db83366a19938c5257f7d68cde475c88c9fbc641be19a07c7be271300aecca41Virustotal results 19.70% Heodo
2022-03-14OdTNqjZHgZc3bACwZj.dlldll ee3285060a96ab69a83c113ec42f991b5519b1bb4ff3465c740f044ccc2183fen/a Heodo