URLhaus Database

You are currently viewing the URLhaus database entry for http://towardsun.net/admin/n56wg9bSZPF/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2166153
URL:	http://towardsun.net/admin/n56wg9bSZPF/
URL Status:	Offline
Host:	towardsun.net
Date added:	2022-04-26 15:20:06 UTC
Last online:	2022-05-10 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-05-10 23:19:06 UTC to google-cloud-compliance{at}google[dot]com)
Takedown time:	14 days, 8 hours, 9 minutes (down since 2022-05-10 23:30:51 UTC)
Tags:	dll emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-04-27	r8HAEVfhi0eeG9UWcx.dll	dll	34ba8d9a2fc9779c2261e2c93856d5b24aa6c46048b3520bea0595258f0b9f7a	12.12%	Heodo
2022-04-27	34KcPeYTkJLUE8.dll	dll	b380d9b68fbde512f7b39b94aded2482618ca35eca8976b67a94502302ba23bd	22.06%	Heodo
2022-04-27	iJN66.dll	dll	f455265667c27a28f794d018243b0aa0de727e53c65b464edba00dc847228100	20.59%	Heodo
2022-04-27	2hAtYhl.dll	dll	f922b1111350db5920f9cb945006d2be2859248d6e1f64e6f6b8b1ead5700029	18.75%	Heodo
2022-04-27	f78NzLewEy.dll	dll	d285565830a5cc1ef717acddb3e65e32627b026fc726c0cb081fe08d4f471589	n/a	Heodo
2022-04-27	RZN6m.dll	dll	1666d58a29bc41d2a1443ce5f5ecd2efc75c959fe7da3086102405ef9671ee21	19.12%	Heodo
2022-04-27	AsmT1eQb3vsFpMSl3K.dll	dll	d6fedf65effe11c768e6812298c279d03224d2613f1c0c6982580003b5f0e0c5	13.43%	Heodo
2022-04-27	Syh.dll	dll	a8936ae7c8375d5a71b57c1a340ffb70c30fbee332e16796059a01454587ae3c	n/a	Heodo
2022-04-27	lCEB.dll	dll	10b2fe27add57804389c9a35077966c595338e335616898e878e5f2b03c85e09	11.76%	Heodo
2022-04-27	j8M.dll	dll	5e0c2eeeeb5c3f7d07bbcb9d43af51d5be1d3bb5cce47c620560a5412cbbb0bf	11.76%	Heodo
2022-04-27	lZfu.dll	dll	1c8052dd1ec90ceb668bc6561752dc14d5344cff738da9a9070648ccb9a9c2f0	11.76%	Heodo
2022-04-27	lGgxSu0reZtFjeoVv.dll	dll	63aff2783c5fd43616e19f01e6e362f70fb4d8ea16dfb2655f0d01bfdcea6bf5	11.76%	Heodo
2022-04-27	OO9OWBaRL.dll	dll	d63e16bff86a2a05b8582ea0af492b6ed56ddba12d21d7f5804435e8d03afefa	11.76%	Heodo
2022-04-27	snlF9LuU1.dll	dll	12efc0471dd71774e3df881c223987f727e0686982aeddcc82879172a8b4792d	10.29%	Heodo
2022-04-27	j2VerawyaaNm4RhF6Hg.dll	dll	44f2a91bb0bbbbc8924fca20b11c82195311fbb38ca1d33935e1d7734283d8c2	13.24%	Heodo
2022-04-27	iOnq.dll	dll	17d0a38325ea84fc0437721be9e0ea10f3b5484703c98e6e71689fcd48eac85f	11.76%	Heodo
2022-04-27	XQumL7GjalH5mijpHhR.dll	dll	4551aa7dde932d1deaf59b19eaec4ed7b566b777d3663a9f937b290bfbac2fcc	n/a	Heodo
2022-04-27	oqBunS.dll	dll	29547baf29155452f8babfc2bebaae2121b254b6c67c1ac91040bb85a2bdd750	13.24%	Heodo
2022-04-27	h6MQ.dll	dll	e05eaaa9ca8e10a11e3d905cea7cdf90b73b7f59da35f9b0642af022ccda07be	9.09%	Heodo
2022-04-26	FTp7rnyYt.dll	dll	a4b32b2a5219866b7fb52ea0cf61cad30e632b10b6c824904def13a47ea218fd	11.94%	Heodo
2022-04-26	bBXZ6NYSWKcM.dll	dll	d2837944efee8adefcfdfc0c24af2c7bf1b38a488b637c0a6d627c5de5722668	n/a	Heodo
2022-04-26	klel2hgtvFC.dll	dll	d2b975ee45103bc59c431b2252483f09fa38f01d2656380f6ffc33e79775a990	8.96%	Heodo
2022-04-26	btMSU88z1w9Vxc.dll	dll	1756456895987be1ca6d715e2c8f993974ab522d707827e2a786ef3be9c3e812	n/a	Heodo
2022-04-26	9dRVV.dll	dll	7b6e54eb8914b6f7326757b43e9b7ddd8d21f4115bd4602f26ca10e23382ffdd	11.94%	Heodo
2022-04-26	xnaHqgwf9iPE.dll	dll	65177c27041b5e5c5fff53a039b93ad13bb54b8ad44fd7745138d1db971e765b	11.94%	Heodo
2022-04-26	ac5BpM6.dll	dll	cc98f8e8c81b1e5b9c58f1e35d3e4790c262f9e64802bfced8d1c6f6a0642972	n/a	Heodo
2022-04-26	KMyXQT.dll	dll	d400e6221692bc39a6f022b65f8ca7643fee8531f917092be1c2a4e6878dd830	11.94%	Heodo
2022-04-26	KukvXGmgid.dll	dll	93f14d86bda9ae942beb96ff09a1b564c39771705c68f3c08b8695aec2d0182a	8.96%	Heodo
2022-04-26	aLASBv1gMsyYMRbd3.dll	dll	0eb35ce3ec076257bf3ae09bc7057e6aba0adc42d855c3d63c9cde332b18dda5	8.96%	Heodo
2022-04-26	o7MW5CYMMa.dll	dll	3fb5cf9f6878ca29d881eeec72c6802e85240a44292e0559ca4009ed272abf4c	8.96%	Heodo
2022-04-26	dL3p3.dll	dll	04a91e7df3793a0a976a9aa705ed1ff769193c973f205582d21329725946641a	8.96%	Heodo
2022-04-26	HSj6zGfA.dll	dll	71909f1bfa3d53f74bf898d7c30a2425a4ab13339a1d8fd8d6ca74deb3743d89	n/a	Heodo
2022-04-26	lodXXKIihmbB5.dll	dll	cfe955e9272047dc4e33706f4d21c1beb722264ac2747ed419642615c88061aa	n/a	Heodo
2022-04-26	yv1Cg3n3VTsO3hv.dll	dll	b80ff0d2f23ff097aa8ac5dabeacae843fd4c8e59e8f0a1e7dd79f7e2034ad10	8.96%	Heodo
2022-04-26	pDoyTgrRtqjKszZ7.dll	dll	19ffaf8259339a2902b699e4a76021ef23b7ecf42a9174f3e70ae19c427a89b0	n/a	Heodo
2022-04-26	V0Q9pLOaJo1ZMPLJ3.dll	dll	2efdd7370a468ee59839af38b6ff5a279b386d76d486d70e6252cb98c2842a82	9.09%	Heodo
2022-04-26	1g5.dll	dll	f7c31b025e303af6e8d469e945a3515c9e9e43a677e0764dbe953804dd5c93b3	8.96%	Heodo
2022-04-26	eVwJN90zfR6npBys6.dll	dll	9b2933181d63569a39ddfbb03d7088832046d8a5ed46600e6cce82791dd2b355	7.58%	Heodo
2022-04-26	8gYGzkSvVnBhY.dll	dll	749c5e9ec025e4176e279ffa662724b14799fbab1fb8108dc1b603090a255547	7.46%	Heodo
2022-04-26	QFVEgfdKDDKtnDg.dll	dll	6f3f2b7160dbbcec45efa916d3b031071fd96fdf7816c1de674e60f8cc761692	6.06%	Heodo
2022-04-26	yHXPUe.dll	dll	b4f7fdcda5974ccf9b37549e8578b3007920f9d1d511149efc9199d41ee26429	n/a	Heodo
2022-04-26	wTMlInfWd.dll	dll	d18b3a6313945844c04a3657533f49cec5794a91b7b0dc4af889529153da8ca7	n/a	Heodo