URLhaus Database

You are currently viewing the URLhaus database entry for https://itnbg.com/wp-includes/b4aZTW/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2192140
URL:	https://itnbg.com/wp-includes/b4aZTW/
URL Status:	Offline
Host:	itnbg.com
Date added:	2022-05-12 20:50:08 UTC
Last online:	2022-05-14 00:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-05-12 20:51:14 UTC to abuse{at}hetzner[dot]com)
Takedown time:	1 day, 3 hours, 49 minutes (down since 2022-05-14 00:40:16 UTC)
Tags:	dll emotet epoch4 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-05-14	BSryqEbdMQGA5nyVWst0wcmGzox.dll	dll	597a0cbb07626fd72bc77ac8a94f71167fd03a1262d831a309203fb9db4a9f8b	n/a	Heodo
2022-05-13	X7J7kG2EBghhkBTACBu91Z75E4hEvCf9k4.dll	dll	971ec540d453cd1b406a3f1caec41d9b2b3c4c3296ca53f2625d0a33e461431b	n/a	Heodo
2022-05-13	Laz4RxRrMejV9n5ufarpAteSumwAkty.dll	dll	c1c723d0985d8e70c9b22d9d17c48321293179a7fe025d4a8cfdffcf6c16d58b	n/a	Heodo
2022-05-13	jGhanvfup7N1sDTXocUS2nkTh4cz0W.dll	dll	de199d178a1b888842044d37c77901120efe7e3cd16a1dacf49992e27157a5dd	n/a	Heodo
2022-05-13	y6h3KzNoDbEC8.dll	dll	3120a6dacd59a8597989c2f5e79b73837a54c53d43bb73183f64fcf10b097a20	n/a	Heodo
2022-05-13	Vy4uofEGzfDJZuM1fd5b0WzKRZ.dll	dll	47d6d4d8654a0a9a5b9ce612ecc14f6534b5501315b78a64b76547b837064fbb	n/a	Heodo
2022-05-13	PuuoyipRf6035OBCNaqPgpeO1Cv.dll	dll	f1a49c67308f4e69693ee8051829139fc645eacdf71134752b74b8dc30eadcd2	n/a	Heodo
2022-05-13	acGccLfSQYi2XPtFqxo2P.dll	dll	bad1120a757e459aab6c3f0c67d8786ebe9c204997c2a1fdea882608b84402ad	n/a	Heodo
2022-05-13	GeAsAinIOfS9nUyqssGUR684xcn.dll	dll	f873983190aed6e59668954ac6b9feacfc14197a175b45237fa6592f7f56b26a	n/a	Heodo
2022-05-13	DDLdWCd8YLdZ.dll	dll	03cd649a54469b291447575d2a9e0bd74440d7ec1826b124574a1781c6d7b08f	n/a	Heodo
2022-05-13	fkEQlUAxzwt.dll	dll	239d2519c3837e12be3bd450240f25a9d179692929a14e10288bb2a1e7672cb5	n/a	Heodo
2022-05-13	HXpR3Hq6ismwWNzggsGZZ5Yg8qDOaFhZP.dll	dll	1265008ed6a2417559ec058096b3e02fb9453f9ba6773a133e6edd0536421fc1	n/a	Heodo
2022-05-13	SAGITv7DU49fqiWb76NI.dll	dll	452121f81ec15eb470998392e85ab892a146db0385988cf94fc716c07d98af93	n/a	Heodo
2022-05-13	bL6752pYkEHBsKwRGpxoG0wswNN23H89.dll	dll	06436fba975f48722f8f2f6a52bf3172d5479899db9bb1fc244f83afd0f17ecf	n/a	Heodo
2022-05-13	OFqGR6B9aHwLTJs2DR51ejt2.dll	dll	57f5b45312dcb9882fe67a55e03d52fbc4084d28ce705e1388cc815578c036f8	n/a	Heodo
2022-05-13	V91tm5Bn1ubLYjWcdZmA2.dll	dll	a10d42f9244c8417f6208b67fb44905c2e6587848f3583f1e1be8d88430bf70c	n/a	Heodo
2022-05-13	GqqMK4foT.dll	dll	a026aefe6308f839575d531727023c3d0cb651306cc45c971241069f146dea64	n/a	Heodo
2022-05-13	EWzSbuDB3dEh7jn0F2LsEVh8AyV.dll	dll	e2af657aa58248fc024cbc12d0c6506a624fc4352839964edd004b2f3378715f	n/a	Heodo
2022-05-13	jsCvqnR.dll	dll	871d5572a40943796a15be54e85aaef89ed63c78fe5472d975188279c1043375	n/a	Heodo
2022-05-13	Mpg9fU6lBXEJGvRc07KT.dll	dll	312e5155c30ec13574affd97f5302af5fc51acc175efc019b254d5cb43adbea8	n/a	Heodo
2022-05-13	4xDiPP5ZjLLca8EahbWd7e0qZ1U7L78yv.dll	dll	e09b1c65ca8aaeb72b9babd1570e8a93cc030445d4bc721703febca344e0c197	n/a	Heodo
2022-05-13	PpnjBikGe2hBIB7AFEmpRxnVTc.dll	dll	98a2f4217eb917ac46b67caa5ec644176ca827f0a6d0d472cdd994a3de54e48f	n/a	Heodo
2022-05-13	Y4avDXEuMM.dll	dll	bac0da07eb0836ba285636a8701585fe9958f39e0d0ed5ac8443283a3e44aeb2	n/a	Heodo
2022-05-13	NW2MO2fg.dll	dll	f39ead93a593c4e734671fb524c4238f68c8abc0ecaa1e0959df94c5a0f43c9e	n/a	Heodo
2022-05-13	8Jq8WFaJ3TbPTl0.dll	dll	462e5895a1b77e1d75691c1ec66ee04e9ffa5a9615ec4c7accd275d3e972ebdf	n/a	Heodo
2022-05-13	KbeGlOJHTwnl690qmQOy183xww.dll	dll	37063fd440316aeb6124bfbcde3d88a685887a8a26c779c5e16b951ee26f74dd	n/a	Heodo
2022-05-13	d17ojmAoWkxIM52T.dll	dll	2d7537b48a077e19ce2e1ed09c922db4047c3dae659039ff61ed28dda00601e1	n/a	Heodo
2022-05-13	wL7Tve0dbUJu.dll	dll	00e2f120e8f6fdb4e77b817b445e3c726b87910851ab46e52b5cf9ca79cf1b86	n/a	Heodo
2022-05-13	vpdxGUwvPG885.dll	dll	ad7338771801217039867282ccf5797b3b3ceda30ed6bb57e451990476d5b389	n/a	Heodo
2022-05-13	CfZBBzVJZobDrzYVUAvfOWI.dll	dll	e38da8f9a36cc668913b89ef6791df473943aa14efaf1e48d702ad3426792371	n/a	Heodo
2022-05-13	5gBaKkKWnl69fkGsZlK.dll	dll	b9d823104a76d665c09dc4d72df16d2aa6a1e027be40aec0522accef2988dabf	14.93%	Heodo
2022-05-13	zOyfnlf.dll	dll	9b0b0c0c39803cc7f1e99d20a63025d8f10d7d6ebd0e25655096b77ab653c87d	n/a	Heodo
2022-05-13	seFG7eWrIyB00XFVrCDQ8NPoPee.dll	dll	d17e65a9ed2e9f072e4eea13045300202016365d92f112e322f2fdc2eef6958b	n/a	Heodo
2022-05-13	BOGq6YQF9yeHmvoOvdyG3EzoESdun9.dll	dll	8038a41adc4f8129e2bf6126d870583a7683723fd5b5a9629ae53a368162ee13	n/a	Heodo
2022-05-13	kqclZpOhfNpbYX4x.dll	dll	8cbc68c28794e8827f221763f1a3d77229540c03904bf0115fce8979ae1be346	n/a	Heodo
2022-05-13	ligyxZNOInzz2SJSufrfLN.dll	dll	f535a17cda9b21cbaac8b900aebf5471f200c33c23e89de9588ea8a550555661	n/a	Heodo
2022-05-13	CeqYi2akzoOmyj.dll	dll	941fc321f371612d4965c95a6101dd0bfe2c316d47ecbb8b6a78adb07c737fad	n/a	Heodo
2022-05-13	oslrPLXl8emB9.dll	dll	21b1a7c49524aee47655dc76dc0727f591e623661ab4113e7d8e3f8309564d4b	n/a	Heodo
2022-05-13	s4wFTffc9wN.dll	dll	3e6c1af360624241b3ff27b088d5d8fb33746e8a413c3a2d22807f45ad5b8ab1	n/a	Heodo
2022-05-13	Ijkgzo2R1XClv2Uj1bDSHp5Hw.dll	dll	9f4c11dc6c677c01e321687405b30b5e73548e1ccad917c1c757e3f9c6042bf6	n/a	Heodo
2022-05-13	pY06F3.dll	dll	12e310f72b59e3d3a01df5ed175e570696740185ef8bdedf533b3f27793ae427	n/a	Heodo
2022-05-13	ky8R9iaWTQdwF8vp66FIr512ol8AzjSJDg.dll	dll	d5b31174e612d60acf1e8637bffe936485a7185ae94f699952de149172de6469	16.18%	Heodo
2022-05-13	Gragaz5xCJf44P8Nf6jz6FIYd.dll	dll	a69fea115673712cece8bad3fa3f0f6e89897fc3bb1012049e03d4ab7756bfd4	n/a	Heodo
2022-05-13	o16DTURtGlzN1za5Whc7As45tM.dll	dll	1b9f955b4d6515ea05248e835c83da9129ce35fc39f9159c9a2a6f0448f4b983	n/a	Heodo
2022-05-13	sUBowzSQeb6FEhIis1ruacra8hOX.dll	dll	1633460dbaeaea689f687708686ec114a715f8a9074e933bc4166ee08141c08b	n/a	Heodo
2022-05-13	wrxPakdL8gHHHZ.dll	dll	8afcd493bd9a77d75dff110dbd35379288f4c2e0eafaa9167044fcd3bae83726	n/a	Heodo
2022-05-13	N1ys0BUwIfBHEOxW8ZEJtfWWullcK.dll	dll	aa7c3290bd40ff5dc3d82edb8f06f725d54dd9a8b31f4fdaf7579609a213aabf	n/a	Heodo
2022-05-13	XHrrNQ8ULmV6PfECYPmbaIK9.dll	dll	915f4fe92fee0dd41116f5127f6eeeb957b1ff7a99f17a805dfec017b461960a	n/a	Heodo
2022-05-13	ypaTcbVgfuPFY8A.dll	dll	76d0e26dea31316149e204f6741deaa422cbd96c71d4c2328639fc2accd67a99	n/a	Heodo
2022-05-13	HfylUu1PclfEoZ6.dll	dll	83dfc070f73d615cc7b2f7ca4246f445fec2c50cb9dc0519df62737c0a1bbab3	n/a	Heodo
2022-05-13	yHt9AsydCKVkP3Qap.dll	dll	0438b32afaa16b8b6f47bde0840712e708b5a922e80fe733ed7cc78497f1fbb9	n/a	Heodo
2022-05-13	92FJFU4ZqmQWBvMNuFVhZQjMKkY8.dll	dll	e5dca6dbcfa4664c96e65a3ab9c1a210d120cb3e81f32d286aeb2b3cd66e6655	n/a	Heodo
2022-05-13	jYxxcVk82ibrAvtrwzc2q.dll	dll	c7f5334df0b4676b03c87272904378f0fc9110178dc09a94ad344ce4626c4358	n/a	Heodo
2022-05-13	QXeR327JOkffwEv.dll	dll	4e4c38573ff939e1e43272275cf2f80363a359f6147843df3b0fffb6fa41ba2a	n/a	Heodo
2022-05-13	HdqXBGpZhhJC8RV4.dll	dll	7d633bba1a48c044a25e235bc42b569635733dc1949db4953516b52ea8cc123b	n/a	Heodo
2022-05-13	48hY1p8hJ.dll	dll	7fd286349e4c58001448d976ed3b84ca191561350631d0bf7dccc52c745d22e6	n/a	Heodo
2022-05-13	45ngyZ1Ar7oko0Nn.dll	dll	aa1603577dcc4e486a3e01f22cff012aaa98e5ad99f6f64a1c5a3aeb65b97cca	n/a	Heodo
2022-05-13	Wh05AJK7HiGm5e8qBvTZHGlimd.dll	dll	2f6600fe1362f3704b8deb9123770d5309e84c0b5658ae567ab8a32dd46b54fb	n/a	Heodo
2022-05-13	qBQy5FKdQ29ECkXJdvstO86KfSO1zxl.dll	dll	14d399f4c40809b5f92cfacc90bfd87e7c8aa1a652320380405f274effe13320	n/a	Heodo
2022-05-13	8CPmoNdXjIy4qVKbDmBKM.dll	dll	8e4af2697d40b4562ea11ffc91b7f3c5048b96272875d1ddc1c77540f7ed5406	n/a	Heodo
2022-05-13	HXgUiG8VZ818adl76JzBJxHG1lHcMyeqN.dll	dll	ddde4ca956b597261625ae45a785cd697369cb13a2b8491ab6d313f1c841ec1e	n/a	Heodo
2022-05-13	YUwxtQxTyqERkk6lu.dll	dll	0a64e0415d3350f4e1a7536b0731b850e0fa1ec6ad125c39f8a1ab1df1ae2abb	n/a	Heodo
2022-05-13	JscWrAwlqp78bUl9guqzu.dll	dll	c48b952bcb9e8d29ae88c34daad21002aa04149ccf19e35bf4306cfa0b68e383	n/a	Heodo
2022-05-13	jX7pGj7xRnSNHnxnWVU.dll	dll	100d0f496821ed5c22e2f26e28a5b9330f2d4d7738d88a4134810dc8357a2e80	n/a	Heodo
2022-05-13	8xuTv9yP7Y.dll	dll	42e48337e455ef72a8e6ccfeb3fa01c9eef4b9238f795676b49938d95f8f78fa	n/a	Heodo
2022-05-12	L6rtwe1a6Ayuz3ircRfw5Sya.dll	dll	3082d9ea87cefc9e224a4c95ec7877ff7a6befe9739cda379ea71650bdebd135	n/a	Heodo
2022-05-12	cG4dErxM66nuttvVL2JJA77BjtvY.dll	dll	a67083dd53b271ea607071cfbedec3dd4dfa37259ff045873990e568ef197d1b	n/a	Heodo
2022-05-12	J5rVP8sFVZX0cEugeo3V2O65J8BldRJST4.dll	dll	19d28f9066c052d7c569cfc1d827b3d653b3ea6fdbfab3709906cb9c502b51f1	n/a	Heodo
2022-05-12	wi4w9t3pbYGJjD6LoROgeypXqffyaAg.dll	dll	0cab45e33809a9a89c7851b97e933ebd805d70314fa8d1ff7d6685a0eaced29e	n/a	Heodo
2022-05-12	Y33aAByQbwyK.dll	dll	0749ae4fbaba4c32165fe6a257b19a932fa89ffa0a5831d8ffad9b47725b2d18	n/a	Heodo
2022-05-12	ZTA1rgcrsfeIG5fmb.dll	dll	925fb5b3fa24016a52c1d1bd8e02c1d0cd635d7049ddaa123f724a37e028d568	n/a	Heodo
2022-05-12	wl7Wjnt.dll	dll	3399e4a1908ef2692a238d7763d9d5a0244baa8fe9b586ea9e7af73a2a06d1cd	19.12%	Heodo
2022-05-12	ljyikyog.dll	dll	b29fb11050cd7d0b7c56e5926d742102a168915c74ca076fe4ac220521287335	n/a	Heodo
2022-05-12	hUCNDUvH.dll	dll	43fb48237bd050a412fc7f3426a253de5da5b41c87be7b82f7ca483af05c77e6	n/a	Heodo