URLhaus Database

You are currently viewing the URLhaus database entry for http://primefind.com/1mall-uk/h5/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2118741
URL: http://primefind.com/1mall-uk/h5/
URL Status:Offline
Host: primefind.com
Date added:2022-03-29 09:32:25 UTC
Last online:2022-06-02 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-03-29 09:33:05 UTC to abuse{at}hostgator[dot]com)
Takedown time:2 months, 5 days, 8 hours, 12 minutes Bad (down since 2022-06-02 17:46:03 UTC)
Tags:dll emotet link epoch4 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-03-31oIY1J1P6EJhQN2DtHLu.dlldll 583b731ea6a6d63ddc33fb7aff7083b3858d16744310447118d001cbfbd6cf6bn/a Heodo
2022-03-31OOOQTqcxDiab39ilqhxn.dlldll e9964e863c0c85032d630d760fa995156e9a2e49941e1058d0bd51161c1f58f8n/a Heodo
2022-03-31F9BOcwVrRM0Jd.dlldll 2aab403613254209e528b0390e34acd9912283d6f530ca1142b3f35a8e499c2bn/a Heodo
2022-03-31qhuuYJJ6x.dlldll c581c06a7cff48d5576554238ead0c885b6e2dcd478a8a9f156559bfbaf18d7fn/a Heodo
2022-03-31VLkWFX9DrHuGNG84hTNElDA.dlldll 2d4f298db8ab6ea6f289fc4b97c58b44d9fac7382d9815b99d275b79553df07cn/a Heodo
2022-03-31oVWe3Us.dlldll 910108002302ff65124750063f46cf2913743fcc21af16eea60c6c9ed02c7abdn/a Heodo
2022-03-31lbZw9RrSLxnZgg0TBhqxDXF47.dlldll 9bf48ba096f584a28a3cf4a802b708455def70a947c3b28678fef6ee4c358352Virustotal results 8.06% Heodo
2022-03-31njXSQUwgtMQ.dlldll da4ba0264f7f47b4700e4a0b96fca1026efd305d3a03e3be5756e90e2fb5bdaen/a Heodo
2022-03-31hk9ziHKTsLrAf2FQWptX.dlldll 6a039938f8e020e6fe1b2bcbf6c5c99a949d44ccda794892e63586380adce470n/a Heodo
2022-03-31tVmDNtr.dlldll fb42ffc476ce3b4780a38361bab80c010b3299d79fd0326529baca7657eabcf7n/a Heodo
2022-03-31eTPADNlsiBViA0XpSqLvZSMH.dlldll 05734ebfc9882719a2913d17bbff488a3dde27d1d9c874a43bd755651be1f170n/a Heodo
2022-03-30VQRoUcZ63ZhLUY6U5k.dlldll a125747563f04ea90f55d6775ab3da38812c9091829455a7f4c3e8afb0a04323n/a Heodo
2022-03-30x0oV1G9yDnU0Nbx58x.dlldll b5546cdb04b4cd20485ecc92c9da3c44a90132a33c315dd1cb30351ba0ff94cen/a Heodo
2022-03-30Nzr51bR5c8Xjw0rY4CDNsG.dlldll f7c4c292282486d200df0186e6395935f0c7dcb72e65fb8cfc0bb8d5502b3a2dn/a Heodo
2022-03-3032f6f8loz16mIeOGmAIBEqJ5T5OWKF.dlldll 7cb4950364a502624508834f6094e994e1a195cd98829befbf532436bcaa5c7bn/a Heodo
2022-03-30jJd3vcrZ0.dlldll 7c117af6055e89413fb86bad42c5cb8733acb6c98409fdefe010a339f1029758n/a Heodo
2022-03-30mkbiGML5CJdZG8yVEDgCz939LD.dlldll 5a41485ec3eacaffb34074b262e7e66168274db3c3ac49255d1940cc436c1b2fn/a Heodo
2022-03-30ntu53siIdWjuD4d1FoA62AyevD.dlldll a37affd91c8f5b55ba7db6fab141492041813a0afd859ae591b369b4a0643717n/a Heodo
2022-03-30laa2bZ9c1nyeTDuiXlW4kkk2as1B.dlldll f66e30b368589766ece9505f895577fcbc821b38c1a3f86525d501f2c462d70bn/a Heodo
2022-03-307p8SrNrPteqnoclx989.dlldll 28bf4fe889b35ac622d7efb74853f632278e5ac9ed582145b4359d1231bd6fcan/a Heodo
2022-03-30e0aA7dRKCC0.dlldll 465aae56025a2cb573d557d6358a59a31b4af5b680e3119e4f1290881f80d00an/a Heodo
2022-03-3099wLeKwn5QzlgKGvvDuXA.dlldll 07761a21c53219af691fb35dec0c39d91f57baed40cfc5ece9d8c5f7cb133febn/a Heodo
2022-03-30MkbdIDXnWLb8QBTBvZYc8Ym.dlldll 0bac420350f76e0c5797df7338b97671bfaeb7bdc0c874fe4dc1e639e6b860dbn/a Heodo
2022-03-30xxrW4P4Y1J71Mi4owHy4.dlldll ab2bce43607729fceb1315ec602177a174e5120e105aae9a86bb097d371625b6n/a Heodo
2022-03-30cWQ41Wv4baHU963EZTOYvp66XRNdqCV4o.dlldll db841ee4ddc3e7eee72e7e01435a35852b174503bbbfa620f687cb3893e20c8an/a Heodo
2022-03-30Yff01ceLg9zz9TCM49pDKV.dlldll 4b909ba32807d9ee994c3d5341d559daa2685c48e84088e76db7645d0b79eb6fn/a Heodo
2022-03-30B498TPtLW8xXi3.dlldll 8acfb7aa37ad48e9e9c80ccac0a5c45aab0184fbe2b37a2bae06b2690cbb2e4bn/a Heodo
2022-03-30mPPA5WppgIdTcIlfI6GEDJfJmt6FL7C.dlldll ca694cf6b0dc973e985d23fa16f0380bb780193af612c52cdbc939167bb33868n/a Heodo
2022-03-30EdClqT40S.dlldll 0152c92d229d001f803f02fd37ed6c7f8db3352b6def460d36e20cf1a9823e82n/a Heodo
2022-03-30tLPi0SJVPJt1Av18CWCQMZUJ0oLEvzOAk.dlldll 528d19aeff693608fbfae3be5dc90c969f84e4eb9e9a54060aa35664719ae9a8n/a Heodo
2022-03-30PJWZPMWoBqNR6rxHdIKpUhZmaz9x.dlldll a897dfe10c7d5474f8e799dc20281b28d6c325a001779a876a24f54d61d67373n/a Heodo
2022-03-309hCaVqCWv7n7XY.dlldll f19165d2597dc7cc49677dadec7f47c5fb9b9834c28f8990e81ee7a0e7cb435fn/a Heodo
2022-03-30mrOtZGCHqrGtjs9gN.dlldll 847a71740c4fe83a51625c73635500b8b0db7f9ff84da3aa0e41b78541154892n/a Heodo
2022-03-30YeNV6cnisgEzjJMsc785AIEfGzYVX.dlldll b86f36a4537d17a276ab18248c72f659d7d03de759e75e315433fe89b47cf652Virustotal results 39.71% Heodo
2022-03-30Ahmt6SEjZLXu.dlldll db86f8903a8c293b22aa40b1e6da9bfb155ac752ad8074e415c2930041f01bb5n/a Heodo
2022-03-30xTFvYs7WTvwvxBgXBAF.dlldll b6d88d4989c116c4f56411a8071af226edd9e13325874c7aba21011d47926626n/a Heodo
2022-03-30PFpLPaCZGWTReTS9r1SRV4AsW.dlldll d1e48ab093e96e4acced140b1f86d95f1d884486edec328b382888a27f333b0an/a Heodo
2022-03-303PghkwijEJB5Ylt.dlldll 541a6b0003e24e10c74eefb3ca81f61ca4a068e288a98cdf1205748b8843e584n/a Heodo
2022-03-30k9qw8EOGccUHluJsYRLhYaQoaXO44Os.dlldll 5ccc275493a7f057f82464ec87f82ca3a43973a6da567508c791547fff894b17n/a Heodo
2022-03-29HulAYaz66eKLjI.dlldll 9a822b2b23906e2629f9ba83e33a09211c29e2a73d54fde496fd130ebd751d11n/a Heodo
2022-03-293SYX4sMzD3IYKcOwTBagWzXL.dlldll 15f56019ca4d12a6cc5c860cf371eb8b884fa95ef816547c394f5f998db56ad6n/a Heodo
2022-03-29uG2NlIXi.dlldll a78e6369f85936eb459d1d67a0b191e7f53f0012f85ad9bc1bab67fbef465c46n/a Heodo
2022-03-29ezqrA7HcgAFdaAAemcdKdarUFrAmEKI.dlldll 0bd1d32e46403b361cf674d7062173813ec4275257d2d53d726da5ca76fb2906n/a Heodo
2022-03-29MoXWSqoYDm6g1PVIm5xPBv2JBGxuEdjK.dlldll cd07883a0d6b8383dd2bb2039ece5f1e3219e257d02e802c0e31ddec94567287n/a Heodo
2022-03-29nZ8C80wo7yjzdPlZZFwdPA.dlldll f585274f9e1d8768be282d2f48f9aad1f797001ff20b4bf7747706453beeb0f9n/a Heodo
2022-03-29Iw3An6O9CT.dlldll 50fe9660c5881e7ffe6facdd7bdd01b6d237bb6d0ab7e435a0f0567bd579617cn/a Heodo
2022-03-29qIY37Hb4M4O7dyAZtJit4v.dlldll 753de64e12f88935e49575a572f4ef13390812672e5b881a59c73542c3907181n/a Heodo
2022-03-29uGwUhairFzZH4dBkLuhossMz88UqYUC1ge.dlldll c1fc3435726ddbb8f1106429405d00408e496c3189478059c35e0fe39fa154d0n/a Heodo
2022-03-29X4rqkIIa8ez74SMGABT9b1Bga4FdDf.dlldll 204c1414e5a21ad5c42302c8fd6ab307d67312e0e7376e594c5da60562a48b5bn/a Heodo
2022-03-29wUUiSt0ARepVK0.dlldll bf95dd87a19b9d8088aa3f44477ece4edcbdeaffe692b494a2b1ec9ea34c3ce7n/a Heodo
2022-03-290EqR9XqJYEzfU0EZhDlarAv0TOLxxp.dlldll 3d911f33a7ed5b5324f9fabede8bda824fccad52711b9f3bdc3efce87bf08ddfn/a 
2022-03-29cLCJUkqsvgDfnBXg6x9JZ500TuWaSR6.dlldll 331e6d2a9c2a2d6cf0c5148ef87a79e304b57fa4d35ee58aba630f2a3098363eVirustotal results 23.19% Heodo
2022-03-29OaoOTPuMiFPv2FVBTm.dlldll 4f7a005aa9cdea80897fe3cdbce8180d91cad13fee32716fe82ccaf1a3d6a008n/a Heodo
2022-03-29qCrDDb0oIkH6xvxhu6kBdscXmNzoZg7G.dlldll 19755acc04fb70fa950dfb0253fbce48abf899c93b8a6cf2ff36dc485d9b831an/a Heodo
2022-03-29r1jXBrn53QOfQhzDoyR2DkK0tfigTaJJYk2.dlldll 5e9f2ba3f03faa19bc8c992174c30f1ca7613147aa3572fc46be0e217e3a5f06Virustotal results 19.12% Heodo
2022-03-29gPzBHj030Q5R5xsNCzk.dlldll 83444029cf8d82c80992c2e4290474d557df615f8cfb50ef1c66093f012b778fn/aHeodo
2022-03-2907hj014yvqyjg.dlldll d772c830e1253f4e06c82b23ffec5a4ab842a31948e2fba4aaf0c79ea4d9ae38Virustotal results 23.19% Heodo
2022-03-29QWkR4STSX.dlldll 768ba941b8fe249eeb985017567f56c42c855cf0fa7f6052e72cbcb3ce05e483n/a Heodo