URLhaus Database

You are currently viewing the URLhaus database entry for http://wtc-chandigarh.org/4k4t2zs/hZD761/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	293524
URL:	http://wtc-chandigarh.org/4k4t2zs/hZD761/
URL Status:	Offline
Host:	wtc-chandigarh.org
Date added:	2020-01-21 11:08:24 UTC
Last online:	2020-01-27 05:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-01-21 11:10:08 UTC to abuse{at}microsoft[dot]com)
Takedown time:	5 days, 18 hours, 40 minutes (down since 2020-01-27 05:50:13 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-23	7jqVt4eemN62dL7qH.exe	exe	f8dcc7e342a83ec9649dc3788742a4f709a686b927abacf0b6809f453ae8214a	9.72%	Heodo
2020-01-23	7lrqZiuHgC228Ub.exe	exe	03f43f4b1d86d5583a9d6392613da2190c0586b4cef87ceab81e8ce14ace5f7f	16.67%	Heodo
2020-01-23	KhVYuitiQ0vUyi9u4AHM.exe	exe	108822f4d4919113307e10456a63a0fc05ec14aa217a793ff08ec5c3c8d1786f	18.06%	Heodo
2020-01-23	bncmYjwZNG9lQS.exe	exe	1abe9dffd38304450cd7f569ce4cde50a13c22441c1d06b1149a61e312a2e103	16.90%	Heodo
2020-01-23	Hf66Mwx8.exe	exe	c2645fb4023b036264f6c45e2970f94135f5ee2343ac3b1a28cc2514b82bfa48	12.50%	Heodo
2020-01-23	qTVtTO4qHqs.exe	exe	b088762f2b03d43d7ff932de0e7203f910f8e1ffed3e0530ecbbb243608d738e	22.54%
2020-01-23	BElO.exe	exe	d5f4874c75f718c231fa676c9e4c26472d2148a5b304bc5db27ec94f2233ff3d	16.67%	Heodo
2020-01-23	5GZsEJl9SWL6uP.exe	exe	0c3f8917cd46aa45861cfcd51c29ec0a9bac17f74522ad29c2e56246b07e65c7	12.68%	Heodo
2020-01-23	thmpuj35ejgRKyNqCS6.exe	exe	d8016223a75311fd03306c11e818baa7bf9ad1f30871a7466a190452b628f118	12.68%	Heodo
2020-01-23	0MJToavUKSp8JlTXD.exe	exe	6d046893d19e9915a68dd1ff62ec04e4807240df6f7809b47aea0db177ff0d74	11.11%	Heodo
2020-01-23	mfpKxfykrnUri4MPo.exe	exe	14f47c1a841963def55d1bbfec885acc00c8d00332e92b0ee98e944c42aed149	11.11%	Heodo
2020-01-23	YwV0Oh11Ei.exe	exe	4d7bd0d0b6fa966e529acb5b671e8c9308f82d0d4678946244052f3ad549e60f	10.96%	Heodo
2020-01-22	UMVVMWsEj.exe	exe	f3e8036d106e5dc7eee4669c2bd8a5586684a42ede28a48b176a4c3b01508bb8	8.45%	Heodo
2020-01-22	0kR8fCp6b9Xr.exe	exe	269a0ef88607d140fdfb16df29b23dfaf83c099983c91d2339f4364a706975c3	n/a	Heodo
2020-01-22	Wgrd9dfqjSAWSXJLJ0B0.exe	exe	80977ae60dda1c35e7dc8414fcba424046a147c6bc6d99dcee5665427cadf17d	12.50%	Heodo
2020-01-22	OkaeWGipVkuWxodPQH.exe	exe	9141ecd2e23f7b4aa683f16c1772c9f04f4e23e7188dfb4a1623cb1123beb418	n/a	Heodo
2020-01-22	WYqGDJxEoK.exe	exe	5e6e2d3f4da18e2ecd1ad33eb82893d24301f498242aa3a4f18830bc5b6f363a	14.08%	Heodo
2020-01-22	xTS.exe	exe	4773ea98d00e3e87de598899d7f1623a38f5db2b0654a96faf5373a2f540535a	n/a	Heodo
2020-01-22	QDfcIgpSF9s9.exe	exe	b02adf47b8cb362ea18a229726a83faaef7d0a718b9d111cbbc0877e11dc49e2	n/a	Heodo
2020-01-22	aNyUm6cxBSckIFjkuTsBy.exe	exe	d7371c043893c4ad29baf377976da8c9ad2ff975e5142a1578d254370b1841b9	22.22%	Heodo
2020-01-22	vCwM2JuNTtJmo2sQuMUw.exe	exe	edc565b3de3c2c1336374948d1eed0855415302f33b2cf867458a896d5d89b2d	20.83%	Heodo
2020-01-22	u6Rwb.exe	exe	da5e3362b636c999a029932c3b20d67538facbd8931aca5cc5fca15214d73ac7	18.31%	Heodo
2020-01-22	ZDXjWnwP1qeW7.exe	exe	89f0b81b4dd0f9149b8d79de04ef59cae52815b5b33d048e7a43d776780a4bc7	13.89%	Heodo
2020-01-22	c8rnczPLS2DPP1.exe	exe	33fe4fd0c96a619c7456d8712a0e8932b060b48c24bebd90b3210d2ad7ecbd5f	n/a	Heodo
2020-01-22	S1yFESzI5R.exe	exe	5822dd9a7c371281bb5e7df5e97cdff3b490f1892b4e00c9df8da7b6493e4286	n/a	Heodo
2020-01-22	fRx8d.exe	exe	bd4b6909e2608bb7381a4ffc20802c91086c247d85f42aaa1e46663969bb48ab	9.86%	Heodo
2020-01-22	OSu3jOf.exe	exe	6d6cf35ac3d4ff9e9b1da3dd8eee4fc0404fc65c215bb021bd9f245bafdd756f	19.44%	Heodo
2020-01-22	tcI6kD.exe	exe	750d01217bf06ce255d7c673de4bf78a5fb28f8f1fefb3a2921fe782368a7a8b	15.07%	Heodo
2020-01-22	m8noO5LglU3mDQPC.exe	exe	3d88eabb5dbd16f203843e97021ca4ee71641e9907e867966f0e06254a3c1a41	15.28%	Heodo
2020-01-22	3sV4sdgpidkNZAVOf4kQ.exe	exe	1d91072acadbdf007d96e3300f69321f70d0b5a211a142a12aefee1792376279	n/a	Heodo
2020-01-22	gSh2iccFD6X.exe	exe	61e7cb4cc8d4b2091c32d5884e26bf8ac0debf4d04329ccf709f24785d036cbd	n/a	Heodo
2020-01-22	CtN.exe	exe	69866e15957b36f9f6cc2bbf7d4f9b464e9880e2e4497ba1dce34f5d81b3c11a	13.70%	Heodo
2020-01-21	idgTxZEenLet93F.exe	exe	44981a294bd290a9a5dcaa2ce0344e84f6686562a5a8d5aa3e96ad28960b9402	n/a	Heodo
2020-01-21	PafbdvzJ.exe	exe	603f5f8eaf5c8e00984286a9c0aab4d8ceb970e3570d90b71f97ffcc47ecd82e	9.72%	Heodo
2020-01-21	W36kwBqWTMgKerE0Qxi7i.exe	exe	e62a9fe3232a66be18fd1cc21b9d252fb23d43cf4087de7d9f821a145b4a0734	n/a	Heodo
2020-01-21	BtFl4d2mMOABkoZ.exe	exe	07c2df659512b6fcafc6e13e27d965bba494ec73251e74f92bd427babda75388	n/a	Heodo
2020-01-21	TJ91ycv2uNy.exe	exe	20dba4fa3be386ee0104d1616e600640a3223c51cff63d23c909aa3146172470	8.33%	Heodo
2020-01-21	M1pR4.exe	exe	0f17f3f67dd9c1f8e2607fae6ff07d4f5c8afd729fa4f6236a9601294ba8eb63	n/a	Heodo
2020-01-21	D3HoYdRhrqBjJOeE.exe	exe	fe4b66fe02c14fbf8973cfc3f79c42bb65cf1f2264551da39542e0446364c876	8.33%	Heodo
2020-01-21	IeNZ0E.exe	exe	2e6845cfd882440b4b1b9639e028af3e52b587643703fdb8929dafa679bc0c60	8.22%	Heodo
2020-01-21	2y62Atj7YfQXO4l.exe	exe	fc78d00ee03c69f8631c00b4a022b1ada34852b20210c1f8e649df43a0648a2f	n/a	Heodo
2020-01-21	Tv2VZ1k5rEWerKeeF.exe	exe	67d34ef154fb183711edae922f2cd6b73f68b410a7859706131a71fc4748546a	n/a	Heodo
2020-01-21	Q9sVECgMHx6zJrhZGw1.exe	exe	a1a4b467f3785abc231f54f9fb5397a82b192733ae35965aa148b7aa04c891f9	n/a	Heodo
2020-01-21	qKMZQ11XYVbG.exe	exe	6f1d8688eb7f02040a79c35abf5a1bfa3e7ba191cf13ea607467ec6a302f856e	n/a	Heodo