URLhaus Database

You are currently viewing the URLhaus database entry for http://famesa.com.ar/dos/gaa/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2160307
URL:	http://famesa.com.ar/dos/gaa/
URL Status:	Offline
Host:	famesa.com.ar
Date added:	2022-04-22 17:18:21 UTC
Last online:	2024-09-04 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2024-09-04 18:29:07 UTC to google-cloud-compliance{at}google[dot]com)
Takedown time:	2 years, 4 months, 26 days, 2 hours, 42 minutes (down since 2024-09-04 20:02:02 UTC)
Tags:	emotet epoch4 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-03-13	8ev6qPgENQnfaSndFNXN4CetoposS.dll	dll	4fdaf18d4966bf13071af2cbad51a5ffef299d793a8b908bac927d744e6f0857	n/a
2022-06-02	8ev6qPgENQnfaSndFNXN4CetoposS.dll	dll	7c7b159b73b44b95d7a6d2b8eb85e0fd864b33ef20fad20cd1dff9c18426d78b	n/a
2022-04-24	8ev6qPgENQnfaSndFNXN4CetoposS.dll	dll	609d40811c74cba5825c7db4f22859ebe2057cdafe158876f7988c272f776a16	35.29%	Heodo
2022-04-24	BtmqctJ6zK.dll	dll	b3f5c0cf957bbc44ea810c065626a09f3ff978838e17b9b189231e6f0cd73bc7	38.24%	Heodo
2022-04-24	MMOPJydWiwx1XLOl2.dll	dll	e2f676c2e582c4e042eb75e9ebbd6790f06447b5dd8f1ffbc13a793daf7fdead	n/a	Heodo
2022-04-24	0FFOfJt0YSwPHrAdVWLkBKVfXBpGMy.dll	dll	53f3f62e9af5e1fd4183313b2868babe9d3676a86c40cd554e8a7f6e2227ffde	38.24%	Heodo
2022-04-24	9FS0snDjH1XE67rCGUPjIYVWU.dll	dll	c85365b123b3c6bee93215d71515c6c2762373be5a2220ce7b02a3ab6c22cfa3	n/a	Heodo
2022-04-24	31vO2apdom.dll	dll	1e189808b514d5eb219a312eb869e73a71eb5e65f8b6b0f70f398b22e7f37744	38.24%	Heodo
2022-04-24	2as7Sfse8yTWIdnPDW6O.dll	dll	382dbe749c3314949b4e0d3be2b77a968dc04f5b104c5085d71c89e2e7a0549c	38.24%	Heodo
2022-04-24	vwCwwrNFNt56mCyAAHrV.dll	dll	47c6d4f5feb5be8d0600e89b9887273a710c00ef93ca213d36d9d8c4e07e4550	36.76%	Heodo
2022-04-24	GsMoouxgo2l5v5kAY72hVnEmB44cOmtgz.dll	dll	d893e597e98d0ea237617a01407f1130c2695dc0212b7a6e1a28fd0c1aeff034	n/a	Heodo
2022-04-24	pHPvyRStgnJnTPcJT.dll	dll	66d4a77c86027934628e9e81703597dd2c575cbefa22d9986296a3931e0bc016	36.76%	Heodo
2022-04-24	olIZxD.dll	dll	3960ea9b261b2588a9ee7ab402369bbab59fe6e19feed53d6cc57869fdf5850d	38.24%	Heodo
2022-04-23	IOiEb3xUvlGWWZZH7vzAKB2LU.dll	dll	0b7a2d27860106de1d1d512710e1ede8eb39db749ca2b21bdd5d7cbc9e5a3b12	38.24%	Heodo
2022-04-23	utZ9zYTIoW.dll	dll	07b02933f7412f23955ee7af824b7047971c6f632f1789100d258d3eaef5ebac	n/a	Heodo
2022-04-23	Y72bEdJZtl.dll	dll	1be56263f845d369bdf3411c9d417ca053265b3deb2008c489b955eee471bd51	35.29%	Heodo
2022-04-23	kPAXktj4HDMoYwOcTMsaRnkrtY7OW9pBC.dll	dll	742f92276c728b605aa2452f8f3e64aee89e31256d768b4c71a0758e0cc01f6a	38.24%	Heodo
2022-04-23	EpZtT79hYP9s9tCUq6N5iGYTcBeD8.dll	dll	514df9900562b8e8c051c661d9b45217cd60c1464c93b3c2fdb5fff6e3832b86	n/a	Heodo
2022-04-23	SCLXN452RPXqqsafv5.dll	dll	0e3b81989d51183b66fe971609129c6ef278ef21bae330fd7d2f08c7399dfe8a	n/a	Heodo
2022-04-23	KtT2QRDWRJwWv.dll	dll	e9c4a8d16b2702b4744fbf5aa6698689965f9d235694764fa777305b0fe2b5a5	35.82%	Heodo
2022-04-23	7FxH3F4ZrIxXV.dll	dll	4a5f02dfef465e81feff8562d117263967644e93bfaae7d3650d03c1a655a837	32.35%	Heodo
2022-04-23	wutL4bRiZouUasBtvJJ4aVLiL.dll	dll	8d661d6c7b890f85b1413add6cf2ff4c40e149b50726d93ee835be89c75c1cc2	n/a	Heodo
2022-04-23	UfiNrlx8I9CIx4e07KIYos87KUd7hVUb.dll	dll	371092eeb07189690f63fcf627069d141249afc986ce3fff5bed69bc3182dd66	35.82%	Heodo
2022-04-23	nsKwWWj85DMVy6mhNQ2FpS2NtL.dll	dll	5afe7afe1fd07158fa9e0c03cbf9e016acba7fbb0e6aeece25ef94a228643926	35.29%	Heodo
2022-04-23	aY5dAgk8ETObz6.dll	dll	d6fc42b42d6cb26b9673bc7159f1e7d538df67bae3bc1c9eafbbb31620b61792	35.29%	Heodo
2022-04-23	SgFtffTIpTGTFYCOizMCZJb69nhi.dll	dll	412d8aa157c1adcb19d8c341a9e16f0adcf6ae899995586eb2c0ef38499fdfa3	36.76%	Heodo
2022-04-23	StWWG74A94UW1rov2.dll	dll	d28a072aa5c632777f6769593ac831778628f5edc1e304b51bda3f7cdc081b8a	32.35%	Heodo
2022-04-23	WLcMn0rcK.dll	dll	4d9ec685698eb1b0c12464e894a68c3a06fb519e599ac78f602439f20d998708	33.82%	Heodo
2022-04-23	yg6pmmsaPCOGtG6t39MpK0GB2hKCF.dll	dll	d9ad8819162c4396c0a44154ae32cc5de7688d91b50f0cf2a188a062950f89df	33.82%	Heodo
2022-04-23	esIjAEfK44vvZVe5PrX66N2P9mBugx.dll	dll	a55317348b1514fc07a9d9398945b23d77f180fec3a080d190ac394e0617e3f5	35.29%	Heodo
2022-04-23	mtM11CZrfBl.dll	dll	940ad2c2c3effaafffd0336b64bf374f813e0ab57d02ba6f47a4b95b78b11051	35.29%	Heodo
2022-04-23	DvTWpZm.dll	dll	327ee3ad64f49b63a8b507b9181dda32bf787a2affb2a2f8e7b38ca6cc76e767	34.33%	Heodo
2022-04-23	oEDpCfJH.dll	dll	6fa8c5215c0747d11aa751da9b3d5c32f856640a00d3999c4901a1fc27381f43	34.33%	Heodo
2022-04-23	Ore0Tor0.dll	dll	e574c2f5c12394fa2035f0c953669ad2a62735a91d149a57b824b01f62946d81	36.76%	Heodo
2022-04-23	LKk2uv3iElkJa66ql.dll	dll	b3efa1886f8e605021809b4942404d7f1ffd4b7fea4f9725242ec28d37918aa4	32.35%	Heodo
2022-04-23	h6RF5CBi4lkki081dSB7GpqZt2drm7c.dll	dll	07eb065572922224deba1d5e7923f9596b9815bb3265bf7a44fb5dcaba21fb94	33.82%	Heodo
2022-04-23	SjXm0VPMUH.dll	dll	b0e743b3989e39fba555b01569e1a3ddbe04aa2fbc409c0a0e67ed6cc9584529	36.76%	Heodo
2022-04-23	sJRT3z9QoHUCLaUdXR.dll	dll	ebc58d63f0822c3cc25e3c39558e7d5a50f844bbd86b11db1700aa05ba2fc35c	n/a	Heodo
2022-04-23	iqfq5v5WdUyVSq1VRb0EHBcDA9YHGr6r.dll	dll	0baee84edf9ff8eb3b125581c0070c78cecfcce3a74f101d55efb19d252b318b	32.35%	Heodo
2022-04-23	PVEsTP8R6JAh5oNQ3.dll	dll	be667ee8d313a449355457b125d920612fabda8111660de6046749f61412c3cb	28.36%	Heodo
2022-04-23	ZDz2VVzAjviZmq3zELu5msJcyTU.dll	dll	a88b330523396f6365916a59c4e7f6f963a044fdf97ed1c25081f7841731d3ab	36.76%	Heodo
2022-04-23	nw0dgvTjeXe5ER2MyTIfxORDhoo.dll	dll	7fd17fb9ec41f1c5580bee54138215bdfc983c76455b2bbb414d7786f2c370b1	n/a	Heodo
2022-04-23	hbJqjRQnWd7jyeEnZGDufFFFY1HN4Z0N.dll	dll	c43612fc5dbfa8db0c9a61777ab7f583e9eab1d97658ce0d56a6ba1981ffd622	33.82%	Heodo
2022-04-23	6FS85h.dll	dll	94725d47621ac7477c31a660f109be9a266f0ab39d804a6747528557c8df115c	35.29%	Heodo
2022-04-22	tm8MjmCgMS94cIHCedeQH5rC.dll	dll	40ad70f485c5cebe087a1413137c2e461a328ae5d4ae9b39110a049b80836a67	13.24%	Heodo