URLhaus Database

You are currently viewing the URLhaus database entry for http://cs14productions.com/nav2/Om8zPGbo1ryK0hym/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2252511
URL:	http://cs14productions.com/nav2/Om8zPGbo1ryK0hym/
URL Status:	Offline
Host:	cs14productions.com
Date added:	2022-06-29 17:44:07 UTC
Last online:	2022-07-02 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-06-29 17:45:08 UTC to abuse{at}bluehost[dot]com)
Takedown time:	2 days, 21 hours, 14 minutes (down since 2022-07-02 14:59:28 UTC)
Tags:	dll emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-07-02	cnIEOSTLF.dll	dll	05dbab0fa8a110d215939a9d9ec1f942d12c95096f11b3299bd62313fe8399e4	n/a	Heodo
2022-06-30	Z4d2hRaVScchF.dll	dll	c995e840d2daa96a14c8f81f538ab71262aaa901ce2a40d48d6b7eca9650d19c	n/a	Heodo
2022-06-30	dYkJ.dll	dll	fcf06b0afc5a3190ea85d2a1fbb85ec1fa004eb9b584ea33c05cf018085a81fb	n/a	Heodo
2022-06-30	aXW1EYpAG0wJJ3q4VKe.dll	dll	6be84ca1733501996777501014bbf41c957fd9da1684efd7e1a4dd5ee2606e12	n/a	Heodo
2022-06-30	m5SiAd24tL4utdN4H.dll	dll	e5bb261f00d487a0c9c3bed4999fea135ba1ad098f617a89aa7433edbc49a255	n/a	Heodo
2022-06-30	VwVKU4eGaq.dll	dll	b86e470ef918afde657d32f9de48da4f5bda5ea924887fade981881adadeae7b	n/a	Heodo
2022-06-30	rXZDfF.dll	dll	df96b7ed44206cbbf83b57981f11ce188b209306ea2a58a1e3c7b16a52d1dd8d	n/a	Heodo
2022-06-30	P0B4D55x.dll	dll	528daddc2fd5a898591e3c7e24c7fec4703678315f4da2dba56cdb9b123f9399	22.39%	Heodo
2022-06-30	GeSHrfLAG7yVZToC.dll	dll	334d717a2ded7d06442eaa0b7fcd006ee496355060162b209ce0fc1d9383836b	n/a	Heodo
2022-06-30	c75cAuZPV.dll	dll	1e12e589f39395e431ff5035f8d5e3cf9543802cee83a94b66e9c400f2096eaa	n/a	Heodo
2022-06-30	4RGZytqMpm.dll	dll	6b66d602027575a4645496afcacae143e860d30a34408deb7bc6e2d088480b1f	n/a	Heodo
2022-06-30	xLVTlH.dll	dll	2769b84071b92010b3e979df926823375713a9eb1825a8acd3cb76a37a2ed79a	n/a	Heodo
2022-06-30	nn2QvTGc.dll	dll	f08dd62c4d380bb092caf316d5aadbba8e0a4b3a5f8c71bc02fe3de73a9f52f7	n/a	Heodo
2022-06-29	P2QhmJrMVhFHQigjuJJ.dll	dll	d9617ff1797d57633d4dc20c4768be77f630abf9b7f5349843b167f3a4755f43	n/a	Heodo
2022-06-29	j2nE.dll	dll	b299d666e97db2b1a4a37f0d8b05ea52b882ce1de990a0d9c6a9f0b9671bb0a4	n/a	Heodo
2022-06-29	O11uWHBlGmKB5.dll	dll	be168658598bfdeafdfafb0b9c84e1e5714a3f3e072aae24359b3aca43c1100d	16.92%	Heodo
2022-06-29	lhF8YIQj5FlDKG4mHl.dll	dll	de0052a9ddf2e22839b8441995139ade3329bfb05860afd9c5fa2acdf9f80893	n/a	Heodo
2022-06-29	oc3Z1qXD7J.dll	dll	fa15ed92a2ec242278605c9f6825adafc0dcf64c49643d764cf6ff512ca341ba	n/a	Heodo
2022-06-29	jkQphbAy15r.dll	dll	ca258c641254dafbfdfe252c4412be4fbe01fdced418f3d21d07dfe7de766c4e	n/a	Heodo
2022-06-29	LmripzIWnELhm6.dll	dll	89f8127be6832a43ccae52e6b5703b35b95c1609f87c253103d0aad449caf684	n/a	Heodo
2022-06-29	Gg3j.dll	dll	4a5a64ce7cfc371874ff14aee8780635f187cf9028b3ab4088a7363b1d54f412	n/a	Heodo
2022-06-29	4jvyKACYZ5IxR8.dll	dll	66c48c0079fe518245f22c154ca4e5ee3018ed7161f33f477bab7327d8f87218	n/a	Heodo
2022-06-29	YtK7dS.dll	dll	3ff26f3438d30580d09bc41c2e8830f0ecaeb5e3e5faecad1e0bb37518152330	n/a	Heodo
2022-06-29	TBNy6ac4Y.dll	dll	2527ba30891c9788a1d2100b6f85ef430e44a9737aeda06ae98c01442f50f6c2	n/a	Heodo
2022-06-29	Q6Ny7.dll	dll	44f86d0e8f90b33de5f0c6cc54265ea3b6acad3d2784d3c414e70eaab18b01f7	n/a	Heodo
2022-06-29	RYec.dll	dll	b29e18b35f3c68caf82ac627f2f7fb2cbba3c19f858f6c750ae5c59ee18857a0	n/a	Heodo
2022-06-29	X5uugR0N31GQyZQ.dll	dll	c14c8d048709c625b7d181fe2f3192877028fbac4a89ffdc1764edf6b4ec72ab	n/a	Heodo
2022-06-29	V1hiBwt337J3XXiijJK.dll	dll	ed2ffeb739706d3729ab81c61c75ff8b91d768a0c9828a7f81489dd1f374129f	n/a	Heodo
2022-06-29	OMPBV4D8dvMMN.dll	dll	0a772f2196581a7c5d308f27dc10fa13c7ba9a4168ca138a3bfe0b87538874db	n/a	Heodo
2022-06-29	LJNqeL19zEXsjC.dll	dll	4a82f99aa10c374c436229e0a4c1f45fb737bf9fcb5629ceb8b0bdf66353c5bd	n/a	Heodo
2022-06-29	O6oH5rM.dll	dll	08551c9bf929b6400c229c58d14ca163d979f052c1292c5015fcad2aef5bafb8	n/a	Heodo
2022-06-29	w3R03XcC6iZQI.dll	dll	2fb0c2320c865e3fca06c6914d1f43730a59c923fc946528abef320e6c502573	13.33%	Heodo
2022-06-29	gmh.dll	dll	4d3980e3fcbffa5eae0bda20e13d78e9cba4d15526df9537e7c835fddd879975	n/a	Heodo
2022-06-29	zZAe1CrLKw.dll	dll	bb8a6e5a98fbfe7fc5c76d863a450db9c57de8166d5476624e3ca4185482bf35	16.39%	Heodo
2022-06-29	b1w9I40t.dll	dll	1a291154c8062e5d1b7ceeea022912ae7136bf6d1c5dc40d8e49242e566816be	n/a	Heodo
2022-06-29	m2LcLrRSG.dll	dll	71ca52ca5094f25367d672f45432e4341f784be79b29634749a2dfe177d9691d	n/a	Heodo
2022-06-29	cI8YTLEag.dll	dll	3c8512365bab82eddb591363210d3ac692ae2b1b7e7346f4dcd9c51414d0a7d6	n/a	Heodo
2022-06-29	cnqx6.dll	dll	f007dbacf334cfc31cd14a4a1f62b67da08a63287e580cb633ec95bcbe4f3f06	n/a	Heodo