URLhaus Database

You are currently viewing the URLhaus database entry for http://axis-gps.com/pzdjz/hgpu56/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	265427
URL:	http://axis-gps.com/pzdjz/hgpu56/
URL Status:	Offline
Host:	axis-gps.com
Date added:	2019-12-09 15:00:23 UTC
Last online:	2019-12-11 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2019-12-09 15:02:08 UTC to abuse{at}hetzner[dot]de)
Takedown time:	2 days, 1 hours, 6 minutes (down since 2019-12-11 16:08:35 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-12-11	0q5wiji5hcnpk8.exe	exe	2a29aecc334cf89b9a4454412c39cb70d9018c8a5af5ce6b229af3098c15b6dd	12.50%	Heodo
2019-12-11	4ut6sfcjbd.exe	exe	f1efd6909ab67ccc0e4c42dea33c852bf50514909ea4ede8e0dbac1c311d4314	9.86%	Heodo
2019-12-11	j45mhz.exe	exe	b68645c3d069d9d14d4d6cd97fd927b66a5873ea8672681680f596381f8fe9fe	11.27%	Heodo
2019-12-11	esvnvee.exe	exe	f3f0f8469aae4354a97974161df582e87dfeaccf59706e182aa9fe527aa72c47	32.31%	Heodo
2019-12-11	vek5y7cmmr0b.exe	exe	09657cec5b44424aee6d77af666a891b73696ea679043610fbaa969c5b12b884	30.88%	Heodo
2019-12-11	jxfc8e7eph.exe	exe	63e7d854c1d8244bf30b9c63c1ce8d6927cdc800b70a667943fd212a26a82ca5	21.13%	Heodo
2019-12-11	xqtfhk1.exe	exe	cc9aa8c990e6486cedda59214a6cccaa2ec46b9c08c2c31c14cfe2535863d143	20.83%	Heodo
2019-12-11	lkde4k521zmor.exe	exe	e9b6e8154c30b6e4549940a4a6bd53e61026154a3544b6a39d0866908e946cbc	19.72%	Heodo
2019-12-11	pjqenxf.exe	exe	b0e3264735ff29669202b2570cd113ab386816b46e07f9ea55c26bac5bf451f4	16.90%	Heodo
2019-12-11	fw3fvftwj.exe	exe	4e96a5795507bb0aa699c680482180eab15f85fc361ed63203ac9611e959eb97	18.31%	Heodo
2019-12-11	qvhv8.exe	exe	42472ad6c850df6775c9f714d52d8fe7741494d66e9a11ae6cc4e4f7f789ebda	16.67%	Heodo
2019-12-11	mdhwsbf.exe	exe	4370cdb3f8cc3146b305ad81bd3c98c0954bfab7b605ba6f545a2a9cd0b829c3	18.31%	Heodo
2019-12-10	214x6yufaymc4d3.exe	exe	bee656496d688ceb8896a3f61dd7045a999676a03f1eeec4cb1d825e7e0491fa	21.13%	Heodo
2019-12-10	vrp9cto2c.exe	exe	0d6236e8cf79f00319b8e321f8b731728e492e711c360bd7d347d872a71d15be	18.06%
2019-12-10	obk64sl3zru6.exe	exe	11b4aa4bbd32eeaaab85b18773e46a9e85cda8b9ef43d1eb6b6b426f03c2d9fb	16.67%
2019-12-10	41wlvxt6v794.exe	exe	068b07ba57e5d67f642fd4ab40c883124789f42826e60369f46f323d73fa0808	21.74%
2019-12-10	a88ddvhsv04.exe	exe	eeb9be7e91202f6b164dcd1da16a82d0aa28ca8b8ba47789006518278d843d00	n/a	Heodo
2019-12-10	wj9d6f69j4myhg.exe	exe	f325c55069e8a5da47b217f05293baec07ff9def5a8052cfe7f24f68bd7e51bf	n/a	Heodo
2019-12-10	zgks3afg.exe	exe	778ada308065de8002f07cdc0db9bac7ad887424b1ca530a1cb8317f8c4c2f2b	12.68%	Heodo
2019-12-10	8zgun8blc71gc.exe	exe	6adea29c5b39c66c328ab584a10ec080e57a4b0e01459d40104f8622d81b7c06	11.27%	Heodo
2019-12-10	t4ocgc602iz93f3.exe	exe	4f3b146702244539fe36879972f3e1c6a84edf6df5c48fde9ff6ae8a68493faf	n/a	Heodo
2019-12-10	ew245943xxy.exe	exe	77bfbe46f460ac1e41a8800f8abac8b38cb1c00ae6717ef5b80c77a9a6c84d4b	n/a	Heodo
2019-12-10	di09l62o6otcl.exe	exe	c61ccc3afbfe93a2f0bc85fa4a2c98de8e11aaeb32ecbaa8003e0867129a116a	16.90%	Heodo
2019-12-09	cwylcp49qsx9wk.exe	exe	679b2f7d00d0da4c0ab5835f38c2e07bcb5006aed55281fc50688bc580a5033f	n/a	Heodo
2019-12-09	kjz8huxrj61u.exe	exe	612183baf8f0cf80717ab7943df3a9ee16a89af588975b98963ee8f3a2b77e1c	n/a	Heodo
2019-12-09	5coqfmz2cj.exe	exe	06c3820a1ff44ddb689c82fca3e5b94f331f9bc10add2ad479c0db87c0484841	n/a	Heodo
2019-12-09	a7117ritzj.exe	exe	d7f856e700e4b5d58d3a75c932c7014136d398dfb5c87b3e7fcd49ce360dea68	n/a	Heodo
2019-12-09	2w38ynxm.exe	exe	67d3873a07ba4fff8b114566bf9baf8e8e810b13b6fb0ed7e4ebba04504e9341	18.06%	Heodo
2019-12-09	zvqeje9k.exe	exe	458725ae5769bb6b789d4810ce0a87e9c08c878b98c9d4fdb1de3013e7e90105	n/a	Heodo
2019-12-09	3gao2b1nl7cscl.exe	exe	84a1a4433ab7619bf39e78eb9881a5d10b9afb43c9ab133c3220e16398932e3c	n/a	Heodo
2019-12-09	jpgkoyft8.exe	exe	b3b264c718e7dc08035ef88ec17a4bbdc53ec52b98d891b862443c8aedfccec4	n/a	Heodo