URLhaus Database

You are currently viewing the URLhaus database entry for http://gdcgroup.vn/wp-admin/0ipWMQYggLOD8Waf/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2580190
URL:	http://gdcgroup.vn/wp-admin/0ipWMQYggLOD8Waf/
URL Status:	Offline
Host:	gdcgroup.vn
Date added:	2023-03-21 22:08:08 UTC
Last online:	2023-04-03 02:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-03-21 22:09:11 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:	12 days, 4 hours, 23 minutes (down since 2023-04-03 02:33:08 UTC)
Tags:	dll emotet epoch4 heodo zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-03-23	rmY1YU5e4iNMZt22aot5qXA.zip	zip	a851f1ef377b9e8090aea7becd698e0bd8172b79889adb2f8fb72d1fb587fc96	n/a	Heodo
2023-03-23	YI4IowHsVwa6kPXy96vu5jtx7kSTG5.zip	zip	4b36fc534a0dca5c20f559ba22228183d3b3bb460549a71e425ffb0e778735bd	n/a	Heodo
2023-03-23	WPKViji5KQypCqiQd8ati3mhzcvNtyuM.zip	zip	e76e8092b2486d3bf98b585972018778bbfdd653d6868b5110dfe40b9309fdf1	n/a	Heodo
2023-03-23	mQ9hB0cWcpW7BkLVyj6PhmE.zip	zip	4876af5b884a181998ffe23fbd4dfbff2eefa40f3e8bfe1651115efe2615b449	n/a	Heodo
2023-03-23	JMtMq72MuZ1.zip	zip	2ef3845aecc2434d44a8c639bd8688aaf143a53d65b5588a0674c3c915a1dab3	n/a
2023-03-23	AxUjTmwG6.zip	zip	4727497f6d03a2e2dfaef86683fcd909e9d75c7101176cf15b17724e26a766cb	n/a	Heodo
2023-03-23	HUKYUixUnITjs.zip	zip	e8be0bf2cdba9852d530b309a7f0e27e89e07afb3fc3b5ac6fcd887fe8ad2c86	n/a	Heodo
2023-03-23	9fDEcS3V1eN9MwWQHU3rXx6hsBx.zip	zip	e6275faa1b9c032cc7d1df4a44ecd9fcdc92751048940c9e79b7b6f84933ddad	n/a	Heodo
2023-03-23	7FZ5Zkf3EHjb.zip	zip	efa4593f7020f569712e8150e73a3b14b3247c5771bb6b11058682ca066bf6b9	n/a	Heodo
2023-03-23	sWJVX7m49rtKkEvXTGc0Mx2F5v.zip	zip	8451e6c24f691ca5fbb81587caf3a1a7496560d2c8c1382baa5ac464bd6d02f3	n/a	Heodo
2023-03-22	oc2Mwh4GFK.zip	zip	52b701da99e5e228ba72db97e38458ef611d897f5b7519c93a0d0dca64af44e7	n/a	Heodo
2023-03-22	pdziIG2Hh1EpVlfbI1JBvyG.zip	zip	7c26e7b171ed1d3831ab2836460ecf633cebd0043f0d495c251d54158844812e	13.33%	Heodo
2023-03-22	W1MI6iqetTKom.zip	zip	8c0aff472bffb948ea236bdc9ae8972c81d9b81a9e9365f62e1c055a6a00f9cb	n/a	Heodo
2023-03-22	XdQh11.zip	zip	bcd96d332a01819232e8423d5d52431eda112f5d39462b6303a5acbd64a76c12	n/a	Heodo
2023-03-22	D9uUi0sA1wiK7ZdaMHsSemgl8CUXjQ57fp1.zip	zip	68e36860b301530ea38441c9c3233b877917f269a05a5424ac40cbbf7c629449	n/a	Heodo
2023-03-22	GxTe4eynmvcGObdgXz9aaJIWuTlf57LoZC.zip	zip	6389274eaaa892a33fe09fbf6bc85a08aab3577bbeb48ca0afb66a93eb5f68d7	n/a	Heodo
2023-03-22	aQccqy622vvSmaHfbaUcdpB6pY.zip	zip	8bda787264afb5ee3dff44601a336aec4eb788bac8f4f3cb6767f37d75cef57a	n/a	Heodo
2023-03-22	hZssnZzMPOdYwGV8R2OFkVdL.zip	zip	a305ef364383baceee4808260d15784fb7a2a5a787e390138d9266aaa5e0ff23	n/a	Heodo
2023-03-21	5fA67jONRQn.zip	zip	7c92a1613c16ae9c2d401d18e1b13a58a7c96e85ee48ff3a68250ca2e35f00d1	9.84%	Heodo
2023-03-21	v4cWttVG4O2zdaOxshOaU6GMG28kgA7ucv.zip	zip	9dcf4ee48d9b986ad1c8e55ea10f51c3ce8067ca99daca0ab7d0b37f3106e1b6	n/a	Heodo