URLhaus Database

You are currently viewing the URLhaus database entry for http://greycoconut.com/edm/0ywf2bF/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2130363
URL: http://greycoconut.com/edm/0ywf2bF/
URL Status:Offline
Host: greycoconut.com
Date added:2022-04-04 09:31:06 UTC
Last online:2023-01-21 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-04-04 09:32:08 UTC to netops{at}webwerks[dot]com)
Takedown time:9 months, 22 days, 0 hours, 39 minutes Bad (down since 2023-01-21 10:11:18 UTC)
Tags:dll emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-04-06VIwaU9mhkDwKsYDk1.dlldll e52db8dc1e1c0bc1f34acbbe3569e7179b4069ca4b2d3b6a78b63e6352527644n/a Heodo
2022-04-060NCk4NXgKE2hDHdHiMP.dlldll ff44c2f1258d77c85d5c0719c4bf0d7c994506e2a82d1246b129a2f5eee7a283n/a Heodo
2022-04-06FiNtPGjLRDqQ47PzmTR.dlldll 745d2b990d9602e9f843325bcf9fe1c609b88a7aaa30ea6c1700d2d6b9973757n/a Heodo
2022-04-06gdjXSSBaQ.dlldll 4a5a441f544e4c18dca9ee66ff6cd6c601ebe3e4af6600826ec14c78b80f7f91n/a Heodo
2022-04-06V3jtrj15ud.dlldll fef9e166c946f0ac25dd1e8c3708824bdf239d4f6c6cc16308dd745c68088fffn/a Heodo
2022-04-06vzq9tbOPw2E7m.dlldll 5038a0bed1937eec96af551aa3dd8439dbcd7e1d257b462c3d816f5429e98ee1n/a Heodo
2022-04-0607LJ51t4Ggptq3Izid.dlldll bff959e1dcbc4ba13659725337531435253be7ee0b9bdb31bbaa575003ccd1c3Virustotal results 43.28% Heodo
2022-04-066KV4mtBNKX.dlldll dad9acd753c3c3b4e7c62a8dfc8d975189e85ae5dec6fb50a1c1e4b8c6f70893n/a Heodo
2022-04-06vGdlE3rbriI9v.dlldll d27838aa2b7727ceed53aa4b212bde472af34d4fb25f7b990dea780fb133a3ben/a Heodo
2022-04-06djXSSBaQS9J2djWVXQ.dlldll 46db5b67eb321bb9012daea403bb2b0b8d634200c9b011c58e6d35a202017cc3n/a Heodo
2022-04-06ibkiL9JDHi.dlldll 69783c3d9b9f5a257bcc0d40480d3b88d0215f86b1f9b9514109f83683f26d94n/a Heodo
2022-04-0657TScdE5ffDD1zDhg.dlldll 66809ad62ea06b6dc81ffc334ca682a6547cc9a2b54da24517de9ae9532e82bbn/a Heodo
2022-04-06AUVFrYosG.dlldll a696819d3e7a81d58eb70109f5fb8595c14d1e4e63a71ebb16f3c87c3bc46b95n/a Heodo
2022-04-05pPsvehHxq1nnMwKUav.dlldll 6d51719f964b64c93560122f9e124f743a9a8ced913705c66f5b684602175478n/a Heodo
2022-04-05sVWgdD06vnOMgxQdj.dlldll 6242069b4f3febdd80db0d4246f927cc4b5d0cc1c2c8090558a2066c9c6ed134n/a Heodo
2022-04-05qqq9V6n.dlldll bac403a355ef52e639a1196e6ab8349ea6f95a774204c78b61eb13bec68d9647n/a Heodo
2022-04-05mlS9dIqy8Pv.dlldll 7d7636cf1908db76c2f8e6b53a4d1c7573526377c4ee1002cbd65ef55535dcebn/a Heodo
2022-04-05Ih9D83U.dlldll ba51e747d461188dfbba5cccba7c42d1408123984a714f94381d722c314741d6n/a Heodo
2022-04-05K8rq6dFmemW8LViU7D.dlldll 2a53ba49413c1cb403294fcda16139237218b5fdb32286f5bc836482c1ac8300n/a Heodo
2022-04-05nn6VRt.dlldll 7ac6d4923da5e8344a209af30c37050e15d000a0d26f86deb9196e1e92f62822n/a Heodo
2022-04-05Hpt.dlldll 0d44b17046495722a03de186f28bc40e21a92cdd26bbb12c8926560723b3428dn/a Heodo
2022-04-05Tv1R2og9isBL81.dlldll 02e8350590d9e9ac3df8b9ad5fadd0f93004906fab542233e0f21f63e79d2212n/a Heodo
2022-04-05BOcra3mas.dlldll 8b55bc13c3a54397f90f202e578cce8efe2f6197d6773322409757bf4a17ac9an/a Heodo
2022-04-05wfbefiFFPAATK.dlldll 4d74c49f5cae04492d5a94cf409a5240b1fbac81b80dff36bf6239b3fe5477e4n/a Heodo
2022-04-05em8AL4SVjrM.dlldll 68f246eb308dfddf5e82a2a6ccea4b373d89d1740de4f57d409e0f165171d167n/a Heodo
2022-04-05jyJaEGB.dlldll ec232f53b805c4673b51678852f9fefa6b2e2907d2db70d990f51cde05cec335n/a Heodo
2022-04-05DEzvAQmPYzWiT.dlldll d5d8feef164adcab2ac03e0714df6b1b12ccbbf53aadaae8196e47432369b71an/a Heodo
2022-04-05yIWEidcDt99.dlldll 4f4f009ab0356d9948110db26febdb1f9bbf00d30b71ce182085d54cf1f72e08n/a Heodo
2022-04-050QirMai.dlldll 8ad6b41349bba3aafff769e5f89e774c37e2b63320183a4a235ea71f2c0193f8n/a Heodo
2022-04-05Di91U4.dlldll 9d90df9155e6d3024c08427524877401b98e86c64c4c21ad28bdb48fa336d1bcn/a Heodo
2022-04-053egH.dlldll ddc5ef0e45ac7e1acf0fce6dff269f9417455031bd5c362f6067bba9b470940an/a Heodo
2022-04-05alNaTk2epZqBJjf.dlldll afe80c0bad78a28ec2fe472e12878dc9521bec95c93fe71aa68ee5549cf04680n/a Heodo
2022-04-05NxcAJo4r7pK.dlldll 037cd739eba7b4077b24cbea5902ee2ae140fc3346c8dbffad12289d698b7059n/a Heodo
2022-04-05HalOBdQV8KRI.dlldll 5a3b92dfd0201e06becb6b0d7383801d8c32c048edeb721337183b4ad8cdac2en/a Heodo
2022-04-05iFZTq917T.dlldll 67b3524ddead747ff036eb7ccc43d20c407e92872b9b276a9eac8e1b8c545224Virustotal results 26.09% Heodo
2022-04-05tiHGQ2.dlldll cf1cdd307db4af1338781057cd7fb76bb7dab325cd34ff090b5fbf67ae8f0c74n/a Heodo
2022-04-057gyZIv5BYHmz.dlldll 7539fc4ae30b508434cf01789f108ddd4ba3c3907e336b4d877b4d86ce4998c6n/a Heodo
2022-04-05sV5948b6ftLTX.dlldll 95ae4d05686dd4b0cad5a7fea34b1efaa37c21d195d68aa89ae6ff5bf28fd030n/a Heodo
2022-04-05qlCQpfTAvyx0YZRw4P.dlldll 33b9ce4c252b18bb5af7943e0087d3b7198d316a25651d6c2262bb6743c9cb35Virustotal results 22.06% Heodo
2022-04-05Go5FkPy.dlldll 63dca3e437f5618bb7794a8e1c4863528c5916dfed933305416a9096f65b1f69Virustotal results 18.84% Heodo
2022-04-05go48.dlldll c512301403c9a5e2e0c43f17c3853d47fcca0d9a2c8b7879dc981d187b723a67Virustotal results 17.39% Heodo
2022-04-057KJTm.dlldll 70820d7c64c57171e573de23eea6ef3d910cccaba89492a6edc01d9b8fd43f36Virustotal results 17.39% Heodo
2022-04-05tQumRLQhn3aIPtr.dlldll d230a757cc7e3cbedeb317c5ccf0dd9e90e581ef5e6eeda57f02b23971905a9dVirustotal results 16.67% Heodo
2022-04-04UR4ahQ1DcrKyd0J.dlldll e748637cfdd1999d7c8940eb342911e4ce0f8064dfa5dccc3f3428d75938276an/a Heodo
2022-04-04DvYf7LeyOcB4l9.dlldll b5dbdb4eb249a0d372507e2f7deaa889ae3538bf35e3e0c21aa1c67509e94380Virustotal results 18.84% Heodo
2022-04-04Ref.dlldll f3f16542c6ab29f339d9524d5cac5d4e5361927ba1fe6e0b949d93cb942b0e9an/a Heodo
2022-04-04egHUp4.dlldll 5642df7c46dfdaa241e3dcdbfd72d89e66691fea602058aa8a0ff5014acd6f91n/a Heodo
2022-04-04Uw1i7k5wXifU.dlldll b1289e8243ab00677b2c68abf6f9ee49809c63e02729431b64c344d6fc7d8c40Virustotal results 11.76% Heodo
2022-04-04no1om5tCSbToot.dlldll 6de506ecac896c75c067d2a297f6076748cc3e76cfdf228e48ff3ca5b050515bVirustotal results 23.19% Heodo
2022-04-04fqU3BT.dlldll f4f25c5031edbc15a3be066582d8612ca6dd99bdd00b0f985e155de1b485f4cdVirustotal results 21.74% Heodo
2022-04-04xIzwRgg8C9.dlldll 57723bad92aece2e4b612db8c8c5030a7a95f9479350f749174d6cab9f116640Virustotal results 23.19% Heodo
2022-04-045H1gtdlXW4hYAmWly0.dlldll 9ab1dc4107b3e92f44defcdd1a642d1b4c83d31ccb5c5253521fd3e0a4b81034Virustotal results 23.19% Heodo
2022-04-04kndP4eNjzPyya0D.dlldll 65d2f9da3a640ab851874c0c638cd9bb1239fe688ec7c1763b3906af9df8ba11Virustotal results 21.74% Heodo
2022-04-046tqYr5Cvcc.dlldll b2e38b09c09dffbfb6206652921ff3ebf393c8224459da792ad8fc6de909e5c5Virustotal results 21.74% Heodo
2022-04-04PXWfa9.dlldll a0f7a31da82b4530d2818439b0f0589f320cfe753ff4db2fbe6c809d52084fffn/a Heodo
2022-04-04gEMmLqbTTe3.dlldll 9185424862c91a7df76d745518cce02b80bc5523e33658e94d7339f24d7dd426Virustotal results 19.12% Heodo
2022-04-0465JFkD2mEU01nfPR11t.dlldll fabcb3da2c6c6dca5c745e992c898eadc692651a849270e8b50ff50a7c93f6e9n/a Heodo
2022-04-049Rj9AZY.dlldll 29518ca08c8845c19138f06ef3bef855f5ab99e06ba159bd41e5e15bdb98bf68n/a Heodo
2022-04-04MnMQ6avLEVVzxVDpTkL.dlldll fecb87d6dffa12634be9b449604b8f4f6539edc40f867a065b8221ac5cfc55f8Virustotal results 16.18% Heodo
2022-04-04asLUjDp3aiJMO4Dl.dlldll 9716934b2230874ffa72760b4e7964f8cf33c793d5ea751078088d2e5503571dn/a Heodo