URLhaus Database

You are currently viewing the URLhaus database entry for https://www.granhoteldiligencias.com.mx/api/ga/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2167976
URL:	https://www.granhoteldiligencias.com.mx/api/ga/
URL Status:	Offline
Host:	www.granhoteldiligencias.com.mx
Date added:	2022-04-27 21:18:06 UTC
Last online:	2022-05-03 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-04-27 21:19:09 UTC to cesar{at}neubox[dot]net)
Takedown time:	5 days, 23 hours, 50 minutes (down since 2022-05-03 21:09:18 UTC)
Tags:	dll emotet epoch4 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-04-29	uXCEdbc89iwZbZj.dll	dll	696afc52324fd2e38b8ac4efd6b69a7d749417f1917792dd79cf691d22745639	30.88%	Heodo
2022-04-29	OjjBSgQQjrxU.dll	dll	ffa70c9aafcc9a92a4a12fc4ab0decc9d2de44be10703e4bae66a1e7cc710c03	n/a	Heodo
2022-04-29	zH6ksAcWqKwcyQAR2uNN0I4zBpVz9f.dll	dll	67190816e9ffb6d0b92aaa635ae3b84ad9dd397966865c5e6973e6499d608d17	31.75%	Heodo
2022-04-29	KdzhTZFijHhbl4nLom3WJz6NVAiua2ng.dll	dll	7303578b0a1e509e89db22851dec95ba57dd6a4ed2420dda0040cb2bbcf9da71	27.27%	Heodo
2022-04-29	CLTTkdKFPyRcNZ52XCzIByT4wMwquz.dll	dll	bb62ec64cf635e08dc9f44716437c6a7b0159fd4f9328717a5017fa081ec7303	30.88%	Heodo
2022-04-29	a0ZOovP.dll	dll	241ed922832689c6f20cd98eef47abbdbdecaad176410f4e434b7cba8357e5d9	27.94%	Heodo
2022-04-29	6PRdWxWF1p22jlE9Y8JT.dll	dll	d862d0fc25ddf1d7d26fc87057485c4d3cf9212c450dc45c256484445158c9fe	30.88%	Heodo
2022-04-29	TUH6dVtm9OZLT3ivpDzVXpOgYcSfS6PPOtO.dll	dll	3d1592f29f4f8e43a0998298c8aadf9cb1512d3b57d46edda6d46cf85c732df8	25.00%	Heodo
2022-04-29	gEmTdf7oUVKj5JgBEnFo7FeQS.dll	dll	4d4e435807b4e27b1636657e53dbdb1dc590552e4a7a218fb0d384290fc1672b	30.88%	Heodo
2022-04-29	ULMlFKf81BEADvqGgemV8SnTXxBSqEPODzZ.dll	dll	fa25b05e253aaca9da215130bdf0a9a8495a28e3139d1e803336a1b81e2f3a27	n/a	Heodo
2022-04-29	eHp5MujdMR9SKBvEK8m4qIM45Z.dll	dll	9380b5cb8dfa5b2cffe487f769d5664326ec4199ec8d836b80b551cc987b2396	20.31%	Heodo
2022-04-29	u23l8mPsEOfbl228crvicFqRbR6wmW2a.dll	dll	42cda491cc9d95dd5173ddb6161cba458926f3f0cda5c1fb563763a55e097a2c	23.53%	Heodo
2022-04-29	u0f0hNjOYNEe41.dll	dll	210cfa89bb8d9ef686b143ec44ec8dc7d2b3f4f2b5c3907965ebfbb49e3571d4	17.65%	Heodo
2022-04-29	bLolK6gLLvK6bOtcrScdRyEziT.dll	dll	95ef4d2585b469069fd16562d060cfa203b20a2e01c969d3a3e9595c83a48268	20.90%	Heodo
2022-04-29	Tdn9Ebgnqzd7F.dll	dll	92535ff2fa02354527108a775597edcf070e5f74390929dbeb1d986d40663b18	n/a	Heodo
2022-04-29	Rw4VDVKRev2tq8xdb.dll	dll	4a0e539c0c1e3c0635f506c823b7161a704175edccd59b5d232a4998e38609a3	19.12%	Heodo
2022-04-29	zJVmh44RYUIT2a6dvJarlQAfYfAbokgNgi.dll	dll	30fce15f02f68310a6fd347bd52ad28e8a05fa0ca035c8be5b2ab7a221652e56	17.65%	Heodo
2022-04-29	ZJSXqJwbfBWSE5xZtLOBSEFMp.dll	dll	7a0bee8d05e1c2dab0dedd31acd928ad3ababb205e62d1157cfa93118ba8d3c4	16.18%	Heodo
2022-04-29	LqAtuWh3F3vhcU3.dll	dll	b4031984c448f1c52f83779aa01b4a2d7eb8058485423aa1444d0b96aa20dc5b	23.53%	Heodo
2022-04-29	HfJp3el97dyNkbCovcMjN3IADLni.dll	dll	7dfdef7b50875075c88158daf695e75e1173a683b6f84118cdf5236c3e1f7c23	5.97%	Heodo
2022-04-29	YR314TdYiYusoJUoFRie.dll	dll	d0337874fe1f3c7fa91258e220632d18dfd18917fcd921b42106d33b53fdbd59	n/a	Heodo
2022-04-29	kedkDjUCI499Md98.dll	dll	9d271a9cba4cd6b3bd523150abb5e54b1fabf06dcc9d606bbfabca85683213fb	5.97%	Heodo
2022-04-29	JyO4gttbqg.dll	dll	8c2d8730383aab264740f936820447ea0cee3c8700cd8134ff283e00a778c7b8	4.69%	Heodo
2022-04-29	nad5PyD7x4.dll	dll	796db427bf8046f1b962276aff019e7ab4e7d84e42603909aa5b5aae1f3179ed	6.06%	Heodo
2022-04-29	N9lwMQoqnjfJedUAaiiOsiXgpkCA65.dll	dll	78cf5ebaf5fc7536d09d50d723022793e9ca350b5b7e05f4f9011e769d3f1a45	n/a	Heodo
2022-04-29	A52TljrT2rz7wERp6LmarKlgmUwp.dll	dll	b4061e11cff3268d63d5dcc3a19116d25da36941ebc2dc34e847c233da5791ca	4.48%	Heodo
2022-04-29	xMCZU5AIHwQxlnt.dll	dll	9f866f0e7e7e409565822042e977eb3876d4ca86e40bdb0eedc7d698cace1b57	4.48%	Heodo
2022-04-29	WZGnYTzHghrJKfAGonO2HBsa799szJkta.dll	dll	b3cbaf43697fa9e76df6c727ac9cbebfbbe97f1210376c831550698b26f5d628	n/a	Heodo
2022-04-29	1ipplMLXOgtDgs12K5JzX.dll	dll	b725a9c25c2d2567ce0f67f86405a6be7223b4a4b4b35c7a97cb7c12d457f697	n/a	Heodo
2022-04-28	uMdgKI2ayTX.dll	dll	d6191f66065c4948a31ed033bdf4dc2f8f893bae8af03b3f90ccbaf936ec6bfa	19.12%	Heodo
2022-04-28	sW1zwcJ.dll	dll	2b79e1cfa040fd51530f924a1564cc0b19816150fcb278e01314e2ac7686c58b	17.65%	Heodo
2022-04-28	dVSUPk1y8AIvDLBI8jnZlkN.dll	dll	fe14e022da7138a4830dd1f2f71eab254565ba2183a9568d9e29267ea95b81e3	17.65%	Heodo
2022-04-28	w1MdBdwe4.dll	dll	d157fd6f6ea508e5996b128fc5c7b01008f986a3c13f55001cd46fda07544f6e	16.18%	Heodo
2022-04-28	iCpcfAa7Mqz2vXei.dll	dll	0204091a2b916ecdc6b5f327dabd6ac6b0828a073573e89a72e54722d47d258a	19.40%	Heodo
2022-04-28	pD2NHvAP.dll	dll	e05243ec70891d75bbd33d5ac93a6a4f40adcd1d0f9e3e6f8a9cc2331b5c11c6	11.94%	Heodo
2022-04-27	BA6JyXrBIHhm5FKVVEUS7Yf.dll	dll	b481ac05ea9a59eedf6233166327057279babef26c913a8e89536472b192e86c	35.29%	Heodo