URLhaus Database

You are currently viewing the URLhaus database entry for http://emgvod.com/uploads/logo2.jpg which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2757169
URL:	http://emgvod.com/uploads/logo2.jpg
URL Status:	Offline
Host:	emgvod.com
Date added:	2024-02-05 16:01:26 UTC
Last online:	2024-03-17 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Casperinous
Abuse complaint sent (?):	Yes (2024-03-17 13:53:05 UTC to abuse{at}codetel[dot]net[dot]do)
Takedown time:	1 month, 10 days, 23 hours, 35 minutes (down since 2024-03-17 15:37:38 UTC)
Tags:	AsyncRAT cutwail dcrat dropped-by-SmokeLoader LummaStealer meduza Vidar zgRAT

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-03-17	n/a	exe	93793cede2448ef86a008f2de76e11c8703280dc837e1c2ff1d17605fee9650a	n/a
2024-03-16	n/a	exe	293489e44683b187c7562e278dea12582bbc80f1fa07953d8194f86c8d097e80	n/a
2024-03-16	n/a	exe	72e960be32479fbc0938d81718c90337088a57effed45b9f9ddb3700dbfa4f48	n/a
2024-03-16	n/a	exe	2f56ff1300d5895e2f6e2b0ba3c13c2efa7adb935bbe4cc78cc555b338926785	n/a
2024-03-16	n/a	exe	95d557b2279d580685ddd8f08c9302d890c5e88a135139126c8f25b7a5f65ef5	n/a
2024-03-14	n/a	exe	70ef49713de6a6afa9af02691edb6655e126733e20a5b414ecf2df99c8d85d64	n/a
2024-03-14	n/a	exe	72987a295dd686d83c79c8ff53fc75deddf0acc10cbcd589a7a621055dca651b	n/a
2024-03-14	n/a	exe	fb2df7af982e5c6af5e0d96f89dd9727050ca6c25d70bb0529aac2b5ad79cd9a	n/a	LummaStealer
2024-03-13	n/a	exe	d55efd8128214c56460f1d2104497f1bca6c675e145a96b4a15a5164e86f756f	n/a
2024-03-12	n/a	exe	96cfe1f8439e918428f1c8a3f05b4b1d7c6273a6588eef884647b9657e421d3a	n/a	LummaStealer
2024-03-07	n/a	exe	d6573204974242f0178172509c0b1bd8a672d7b8dd92ce5b4cae843427f2f471	n/a	Cutwail
2024-02-28	n/a	exe	fa8e3f10f85d54f5ac081ec4e9f5bb4c46716c55940c811489abd325d67a9fd1	n/a	Vidar
2024-02-25	n/a	exe	08dcca6375f35b3b1ab7a478b304f96814f62a1a1f20321067978f6284b4dacd	n/a
2024-02-25	n/a	exe	6351c2dc1cb368325bd3c2a097f590022c8d3fc53b213a128be6423700e06771	n/a	AsyncRAT
2024-02-23	n/a	exe	368e9ba787825581ace40c910363082e9541442840c3a2c715b7acd37941717c	39.44%	AsyncRAT
2024-02-22	n/a	exe	f449e6978314a4591c2812f0db65927a5664ab82c8af4ed92164665d61e32143	n/a	DCRat
2024-02-19	n/a	exe	340301d70f20bfbc4317a124d6fd8e3cce066bab570389759b1d55e8b7222b25	n/a	Vidar
2024-02-15	n/a	exe	26e06925319e46efaa1be091fc2ed75926c5b3a1dc7d4d5d692f833e8fa46185	n/a	zgRAT
2024-02-09	n/a	exe	32a99da5f96e8cc9b48d57838e133c001e6f40b706ffa69dace5edfe1ae82d14	n/a	Meduza
2024-02-07	n/a	exe	53bec9a94bb957463e4d127494281ac80a7d316cfbfa05749c06c5c9303fdc34	n/a	Cutwail
2024-02-07	n/a	exe	4535333018b02c0d07509eda2654915b319cc5154e0db43f1b5efe184c6edf99	n/a	LummaStealer
2024-02-06	n/a	exe	0b913c21001f434aef712a51266723cc817606ac2f0ee75b52c88ca1e944a9b9	n/a	Vidar
2024-02-05	n/a	exe	2dfd108136c4763641f3cb14e384f162c6a79d6e992108f10cc145d5d50c5072	80.56%	Meduza
2024-02-05	n/a	exe	0e7db2246bd22d301a88bda71ad3f9f60455eeb9761e787ae9be5cbcda74c348	n/a	zgRAT