URLhaus Database

You are currently viewing the URLhaus database entry for http://basepainters.com/wp-content/Zega/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2097090
URL:	http://basepainters.com/wp-content/Zega/
URL Status:	Offline
Host:	basepainters.com
Date added:	2022-03-14 21:03:12 UTC
Last online:	2022-04-29 00:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-14 21:04:12 UTC to abuse{at}inmotionhosting[dot]com)
Takedown time:	1 month, 15 days, 3 hours, 42 minutes (down since 2022-04-29 00:46:22 UTC)
Tags:	dll emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-03-16	y9no8n1LG7aJnptBl.dll	dll	64c4a6670a1e25c9ddca49f257dec3702f1c4b0c8d7898c6dece1aed6637a5b5	n/a	Heodo
2022-03-16	orz5L9x.dll	dll	804e59ccb42bf0bcdcd45b0d6c2bde4b40ee637489d87e7da0c1cc8697b7066a	n/a	Heodo
2022-03-16	ZDDeXSBBTtJhtED.dll	dll	d7ba98da14f3c80c6798992e05b7a7294c83734a86d354d840c6f418cb3c641d	n/a	Heodo
2022-03-16	omDWt.dll	dll	0f2da4c537a8b172e08f0863b903a690d81483df738881cb18cdd0262b539479	n/a	Heodo
2022-03-16	XSVS2U.dll	dll	383289e41e4db1d8c0089cfc414fcfdbc5db950441165f223aa2e79d72dbac11	n/a	Heodo
2022-03-16	vkPBKkz.dll	dll	396e93d868e1c5548cc3caedcb8969229635a93a7d051e0384b02013029f7a26	n/a	Heodo
2022-03-16	1tf.dll	dll	fdb5b4369d63e42742fd98a2b6c1f0f4f552232a62b64bb54b154b530476b7d0	n/a	Heodo
2022-03-16	FhV.dll	dll	de921f030dd9637a55bcb049a6a4763c945e39ff704d89e9d31c199f5c688068	n/a	Heodo
2022-03-16	Pggjh.dll	dll	5d26d74aa2be62b694c60a69aaf182d1119591377812eb4a9f76cc43d27119b2	n/a	Heodo
2022-03-16	9MRDRZR.dll	dll	a1e6129b578e8151c702563da4f9018d84fb88ff10cb981350ab630dcb1e6de5	n/a	Heodo
2022-03-16	zNJWXwFtRs.dll	dll	b1c8fee94afdfeebfd165b14929d60089452579ac8387a1df2324874e50ec408	n/a	Heodo
2022-03-16	rIShsd7DjO.dll	dll	0dc6e244d1d8a5389cb1cd67d73570457dec6fb30fe6d80438af17247b074776	n/a	Heodo
2022-03-16	TPJ2kysXC6b.dll	dll	97f4748fadaae059fa7f79bbd44ec97a9a674ce4ee66aa2bac7c81f832d2fc0c	n/a	Heodo
2022-03-16	Vu7MuqJQIqiHkP.dll	dll	3c178c8d146c13adca550e096249dabd0d14941cb112966d7889467bf14cf1e3	n/a	Heodo
2022-03-16	sjPb4Qtk.dll	dll	8d1d49ff31784d04db5ddeca7bf36f3285397f8a7a6680dd520d111df926f61f	n/a	Heodo
2022-03-16	bY1zf.dll	dll	1b8a20da5ff950f3f4d42ff28e72b8572122e27e9ef0acc971da0dd0bb1a5123	28.79%	Heodo
2022-03-16	wOFiCRKuSDO.dll	dll	fc21e130ffd5a73c523df18c2cbabe1bda27e4c6d9072cf39b61adc7958fdca6	n/a	Heodo
2022-03-16	4p1PLlbhf4gB.dll	dll	c1acf0e28b1ca071566c0ba2be91c27eeb7c33bc033bd3eb61fdf0926fa36003	n/a	Heodo
2022-03-16	aoY.dll	dll	d72c9a148ef9a4f7350dbeaaf752601e4042444ca164ea56096bc4cbf0ce9cc9	n/a	Heodo
2022-03-16	sbpQHV43ePU.dll	dll	41de2aa215ecf44b2915cb619ccd0e2a152421e895e34c4315d14764f7e88daa	n/a	Heodo
2022-03-16	NjD8s.dll	dll	067097a56f82f963667e225dd47cdffc0d3ebd3685427d3a4d8726d3712bbc40	n/a	Heodo
2022-03-16	Zd6Sva.dll	dll	c28ac8072d709122ee4280e31f08681083cf7484d5b4f354810c0e6c40b17c70	n/a	Heodo
2022-03-16	uRHiSbAlf7NJfH6Y.dll	dll	9470e14cb6edfd9e180c408605d59b1f51c5e81ab9229b626056e541c130568f	n/a	Heodo
2022-03-16	5KpthOlLzJ.dll	dll	d1bf3d40eb69706d8c211a64053bb2b099c23a60082d7477921833b312b12202	n/a	Heodo
2022-03-16	Qw8Hg42blcFZ.dll	dll	e07306cfdc0ae025cf3bcf5bd132aa142714cd524a0ea492c1397f19fd8e7cdd	n/a	Heodo
2022-03-15	OR3z6JCp5.dll	dll	34cc508e667da59383cf887959747a7a684dc4486d809e9ec370902c0a3d0225	n/a	Heodo
2022-03-15	tF4ZqzbE4yOsL89QD5U.dll	dll	03817d4ecdf309d85a287f5afda81b66744bce6cad9825f45a2e5a4f5f862f90	n/a	Heodo
2022-03-15	0YDhGn7I9E6.dll	dll	2cb3a5d34b29a31dfdbff19a62d11f77cea40fff6b34386d421f7a88aeac2627	n/a	Heodo
2022-03-15	LsyOuur5HHqx4zd2B.dll	dll	023a91d85a261833e9a7c911c29457ec2773f6c0e9d7591ae275db2832416f6f	n/a	Heodo
2022-03-15	zslL1.dll	dll	68a2522c2488b93dfb94f3c40941d6e783a46f558f7e34ff78f0df81092cc882	n/a	Heodo
2022-03-15	DlA6Gh2nS.dll	dll	f17ec4dd1d45e92c7a30c4b7e8fcc48f9cd863553f81758f4de1c651e1aca292	n/a	Heodo
2022-03-15	M4r0S3k1xORJyyjqwB.dll	dll	e0153cf3434b1ebc9e372f2f203b465baa457709a7e017ca97cf0ae8490a5f87	n/a	Heodo
2022-03-15	4dw2rwp8o.dll	dll	4ec6be84cae434883f90212cd4cb43aabd4450dfe04bc4666884d90e0b4498b2	n/a	Heodo
2022-03-15	7tIFpO8lI4ZJ0cH.dll	dll	86bfb743e641fe8b69f5ef8dfd219c714986d7a1ffb048c5f6f19e0fb98d7f73	n/a	Heodo
2022-03-15	Fpfdsd.dll	dll	e9d79547867047f2f7d13bf4b85eb4eb7d383f9a9a60dbb28a7a2cdb65f909f0	n/a	Heodo
2022-03-15	B8nCaZt5E74x9ticT.dll	dll	8ea8d4719f8e86e3fb3a6d01bc261033c42789e99b7303b51a9f6bce5157624f	n/a	Heodo
2022-03-15	RY3KXH.dll	dll	655403211bf13ea8d43b7b41bffdc7cdfea32e693620195b39b1a6ec67e515ad	n/a	Heodo
2022-03-15	hGYtnAJAiJE9lUG.dll	dll	4845eb08e60130f4006090eea7a5fd9b96d5494f310ab45850b0dc12d082ed82	n/a	Heodo
2022-03-15	Ev9SJ8kNcgnsn.dll	dll	54357801be31bf5e38852258412ea76116123fa3cbe249d682d42f4409f96029	n/a	Heodo
2022-03-15	ABcuPppDddbhslS.dll	dll	99bb8ecf11582fcb5d03585c5373e51f4714041d26815c32ed9297c3b5335ea1	n/a	Heodo
2022-03-15	uw14VyRNvaz1A.dll	dll	8b21da15d9294b1e43510dbee4e3d541c7a21b158c104c8082a51028fef4c38c	n/a	Heodo
2022-03-15	RqUn6KoYLLBJ112xiT.dll	dll	2d6fa199ad20fd8f1682ca54e37dcabbd65118cda284c239cba9dbd4cf3fb7c0	n/a	Heodo
2022-03-15	9z5XCZyhQ1NSTh.dll	dll	7e26223bac8b43f6593bddb75db9cd4b06578b814f8c152ee814a79acc161712	n/a	Heodo
2022-03-15	m4yoQ4hE37.dll	dll	28a9d4c28ecfccb86c5af515bb33efc09b902efe7f147bb136c99ddd81f31e77	10.61%	Heodo
2022-03-15	IeJhMRmyvygO.dll	dll	c32ef7f0c96aa336b252275d95a60a51a163f662efd935dd6be379ce878cc7f1	n/a	Heodo
2022-03-15	JZhV43hk.dll	dll	7d11f8b4139b91f7e33375dd6650469a5e9d96e0265a3864b99ae6e159189f0f	9.52%	Heodo
2022-03-15	DeP.dll	dll	3fcc37b93b217988f336f92c8dde6f9692e4e5bc2f6adfc9d778d3d240e107ca	7.69%	Heodo
2022-03-15	FA3BKY.dll	dll	c39efe69d570c2ce3d178adea07ea1e208fb1c1497cf2da72331da7ca54e5339	9.23%	Heodo
2022-03-15	3UChP8iUr3hZMdFSa.dll	dll	add3806c6c3e95b2e606c1c16e406fcf125f8b22f27279b92edc27a61eff7d6a	12.12%	Heodo
2022-03-15	diEt0vir.dll	dll	de7c020fb70b0d54edc5f3fca24c6ee48000b105b7ab0613a0422699d586b313	13.64%	Heodo
2022-03-15	iiqQUf5.dll	dll	b782b8b44bbebb647975d68c99c4efab36c47ac539085a8e9326f519c7e59aac	13.85%	Heodo
2022-03-15	LrrpnieAW.dll	dll	aa0aed709caf1d1443b3aa7bd01b5fd24f651d1071fb229f54ffb41a27c963b3	13.64%	Heodo
2022-03-15	voBHr4AoI4.dll	dll	690bb090fad4a173ac421990be0513a1188c880245d39b1923586514a2468566	7.58%	Heodo
2022-03-15	5a0WKXZWWqTm.dll	dll	26abc3edbd8390d93f7f9ff016debc1c1c0f3bb4cd222aaa352f71ff66fe6815	12.31%	Heodo
2022-03-15	uudHSuF1pFvL5mM.dll	dll	86b5d5d086dcf8493259a6957b5f66fd63d66d5e48828d41c58ae480415907cb	6.06%	Heodo
2022-03-15	dOthY.dll	dll	924ef05282d8217bf10ace0e71b21e94eefacc7172476006c8b0a676445c1ebb	6.15%	Heodo
2022-03-15	Z1k5Z5062A0IZ.dll	dll	647e50431c455a684ec57a97f8d3c70590a3fdee03710696711963bbfc1e28bb	4.62%	Heodo
2022-03-14	JYmYTpm9xGac.dll	dll	67e42968a078400b3adcfa0b7c092ff08fdecc636ad1c6378c88631444a08203	4.62%	Heodo
2022-03-14	e0S93sZIIS1G.dll	dll	e75fd9ad7295beae4c0055df842869354e1a5f3ceecdc2b899e0185945a439bb	n/a	Heodo
2022-03-14	Zu9yD.dll	dll	2f81f9597bdf2b4da587519bb73cea9c41e8391ed7b1af621dce480b47680316	4.62%	Heodo
2022-03-14	ruZyh.dll	dll	f1328028c2971632fe308df2aa48eddb6c2ebfbdc34c7033985679350aa5c2c5	n/a	Heodo