URLhaus Database

You are currently viewing the URLhaus database entry for http://theleus.com/private/OWAZu8/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	420195
URL:	http://theleus.com/private/OWAZu8/
URL Status:	Offline
Host:	theleus.com
Date added:	2020-07-27 21:12:43 UTC
Last online:	2020-07-29 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-07-27 21:14:05 UTC to abuse{at}totalchoicehosting[dot]com)
Takedown time:	1 day, 13 hours, 15 minutes (down since 2020-07-29 10:29:56 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-29	wIY77AJGJEQTnNRwFo5.exe	exe	05b93bc503bfbc472b173b4294ed7a2742d730b09ee9d1083a4dee510292c434	n/a	Heodo
2020-07-29	SVKWQEQmYhA0s2aqZ.exe	exe	d16ca4d67905b4da308a1e522f6b4c6fabf7fa645aa7bfa8e1c871ecaa5fcd51	n/a	Heodo
2020-07-29	kDDV83wBrGFLdZGFax.exe	exe	57a4bd46294b277d46dc55e8585f820418be645ad9eadfac9597e5d37fd73df8	n/a	Heodo
2020-07-29	nyEOYPg7FcHorDZS.exe	exe	f2310b366a5269433bd728ec2a42c2c3d2cd1abefd96b3cbadb7f3b6e87afe05	n/a	Heodo
2020-07-29	9PLet.exe	exe	281d961efc8307d49b2bcd6ea908fb7be65627c121a4b9cc7c255962b80ee120	n/a	Heodo
2020-07-29	HRfZmFm1xoZFd.exe	exe	bbfe4d22d8f7b718ffe7789831d8ec3c5009b6e15d323fd0b06f6891b00b7efc	n/a	Heodo
2020-07-29	yL7m9zk.exe	exe	78a980a9fe720a6927b2460e03b603b8d202143b7be07ac93d7624a3b24b007b	n/a	Heodo
2020-07-29	JPe.exe	exe	8ce484ed1e13fab41fff5dbf905f0f49fcb09f8a49e09799ce24bfa5d0a656ea	n/a	Heodo
2020-07-29	mP03d4t84O1AHw.exe	exe	78c1dd2d29935f97d49ee073cb9c8032c9ea34f8a0f75553ba72fb15ab2efbd6	n/a	Heodo
2020-07-29	tIFm7yq5mD6QR.exe	exe	96653badea1954e39a441e16b90b38b7c01e695aadb391beba3580b4dcb1f87c	n/a	Heodo
2020-07-29	O9oUEg.exe	exe	5a613b55397a102151931712cdcf1a0107ddcb035d892af86dc8fd1b0342c487	n/a	Heodo
2020-07-29	siqUQdExcthp7i92.exe	exe	25d7ead4172c19b516d983d8ec1ea70061e907fa5d181d49acc3c40e72d92ee0	n/a	Heodo
2020-07-29	wwvORUOTQyqvGL4O.exe	exe	91b620ed071b11e0a1c34572768858f77eb4f7a9691dc2cc892feeb544cfd28a	n/a	Heodo
2020-07-29	yuUMeZcCK19Vd.exe	exe	6c21c9a3b8b82ac9ae53c3b37b556305d69535c6789300b3bb918ea40fc2ae62	n/a	Heodo
2020-07-29	uEqQ6h.exe	exe	af01b9d41bcd535ee187fd73b5813eb25c9cf453ff9b2284a51c2e52f21c5fc5	n/a	Heodo
2020-07-29	7rr3MSV.exe	exe	36778e9036db79489be0fddf73fc9601518743712db0dd8dacc1c85dc1ea935d	n/a	Heodo
2020-07-29	GpJKkJbXi0.exe	exe	bb6b5cce262008416814bc81552785e7ff36cf10323f03e43468eba7b868c77b	n/a	Heodo
2020-07-29	DC843JKcy4eIso.exe	exe	81f09284726f129383f3e840bb03998212b67c8e001813624d2e11788b4ff1a6	n/a	Heodo
2020-07-29	5WAD4.exe	exe	59a5b495bd6d38b0230072a5fc0d477a05c7e4d4c65d51aa51cd137ef6a3c2c2	n/a	Heodo
2020-07-29	4Sj.exe	exe	9211228f4bcb53cdacc09172fedc36f8c12192a343fddaa1f68722d85855079d	n/a	Heodo
2020-07-29	hWWvvWzJbE3xrfK.exe	exe	417cdb97e399b4956d9bb5911dae7564ab0081f9aff650ba1ebc5a876c78b927	n/a	Heodo
2020-07-28	Txp0LV6fxGOUE.exe	exe	c2aea7ac99d87d9b6d1acef58f28514443c623e70d04d357e29f57857ea38b0c	n/a	Heodo
2020-07-28	jNC4JJQPRWBGL1nKT4.exe	exe	1d42a910f697ad3b3d5a031fb50eeeb2500a5cf8a8704f312b3e2b10a4ca22b7	n/a	Heodo
2020-07-28	Q8IZvYXIo.exe	exe	a841077c88e048606f72387a1a3dfad587f1dd07b6c39544c78db48b7794af44	n/a	Heodo
2020-07-28	zrxUE5DW77Ljl0MKDX.exe	exe	59ce131df13f0bbce47ce1c07032c2d0eb12155643fd05d41bc64ff31ccd4247	n/a	Heodo
2020-07-28	axHpEMXt.exe	exe	8770278b4439138160316d998a2389b494d6f3fd700acb1290d82c3aebd474d4	n/a	Heodo
2020-07-28	axHpEMXt.exe	exe	8770278b4439138160316d998a2389b494d6f3fd700acb1290d82c3aebd474d4	n/a	Heodo
2020-07-28	h5Am.exe	exe	5cfa49b7daae083aa18658788bf3cb4be5e79b85aa077fc59b568c6264aad924	n/a	Heodo
2020-07-28	rokPaVqwM9p5cq.exe	exe	cd09996f921c73dddc28d0c4399e9f5aa8a2db5bf3a1f0f42c1e046d3811862e	n/a	Heodo
2020-07-28	s7G.exe	exe	78ef67769a77e12036739a0fe6c60234c21c9f2c44508df380ece47f86e36cdb	n/a	Heodo
2020-07-28	xqFlVLrowfN.exe	exe	4dbe9ccba82c722e09f7093ffb34903445cea565ea2f46e9e54505658145fbf4	n/a	Heodo
2020-07-28	6QUcpO5odA5rpmyd5.exe	exe	bc56c12ea1f485304342358668a08862743747a53c1029ea49811a88c7d91be1	n/a	Heodo
2020-07-28	QJDZ6fNDq55TTuo3lt0.exe	exe	2b570dffa4596ceb76c1c071bc0698c1c323854e34b808c5ef6f0cf95a923862	n/a	Heodo
2020-07-28	tocd7ZRQnVHlTUR4Sjc.exe	exe	2e8eca0be7f4790f05f4fc8773165a0bd8ecc6c4134448782efbf5ee03271f24	n/a	Heodo
2020-07-28	N7jgop12r1FwHR00Aq1.exe	exe	aea8bc4dec91c04348d5842e4faea9358490d9097642a6965dc6a93e6811566b	n/a	Heodo
2020-07-28	jgsY6WzHsxeFqZdrD7Fd.exe	exe	c794f85b39d26cc0f011dee5ccd8d99673a17493a18c1444054a9277574f1a58	n/a	Heodo
2020-07-28	ksyjpERHVYeYpK9xP.exe	exe	65cc4c8bb15ef25b83dc61ef7402fe4b91f2065e5072b411115ebb3441a6998b	n/a	Heodo
2020-07-28	lmauJ7Bx.exe	exe	6ccc11bfcff5dec296f73a61976b9dfcc1fa4b7f63656da7775afc88a5334e8b	n/a	Heodo
2020-07-28	l7S7H.exe	exe	42fd7d9803d092a08e3dc270bc6c5d887dbf5c4bfbf4212316bab2bfee6a1e5a	n/a	Heodo
2020-07-28	iPihKCyDgZOdPgStBat.exe	exe	7947be99c424d5dad7a700c161f132ae9cf65141a60f6fcae36f513b3d194b7d	n/a	Heodo
2020-07-28	r5NgDpSbtb.exe	exe	9661581c9c8846b68af329af43955d395f94a3917ab14b35c7e51a2b47bc7058	n/a	Heodo
2020-07-28	gYG6MuHniDHVFIF.exe	exe	7405e11c62c55df98cffce479e471bc6ddb6f888b97e37c21b6d799a9bd4197a	n/a	Heodo
2020-07-28	EaUv3.exe	exe	d24545365feaee24426261783f4f96d7dcf44554903f83ee5e4991479ac9ac22	n/a	Heodo
2020-07-28	FQQAMtuk1wge7HtmVwhIs.exe	exe	7ddaf1a21900db9b0c17ac7183183b174e374b4be83ae1c896aac0e2433ca6ad	n/a	Heodo
2020-07-28	MDniPEqG.exe	exe	a910caac5c97c47642bc3b6bdc59aed6f7e7f0fb0248fae2453f7bdd5e168ed3	n/a	Heodo
2020-07-28	dWcUJzEW.exe	exe	7b7988337de7ef8923198dd83c2d91e089d338284ce46c8aed7ca502efdb0fbc	n/a	Heodo
2020-07-28	Unfb.exe	exe	cb06a09534fa778eb24c04e030020d87655cf8d8cdc0bca5a5ccc200d8c2a6e8	n/a	Heodo
2020-07-28	4E7U55Yi.exe	exe	9cc0aadbd9af3881033ed4df3961ef89355ba3992cf9711cdf9cd9e1bcd3967c	n/a	Heodo
2020-07-28	1khXU444nKrDVFZ7QE1w.exe	exe	a8231b23f8194666d11ade8268d5ab65eeb9023cfa2d9fda23410c7e63f4b872	n/a	Heodo
2020-07-28	eYzoNLhccx.exe	exe	a4593012d0233f53680dfc0006d95d09d23181eea5dcb0dfd06511787177d6cc	n/a	Heodo
2020-07-28	RqU6YCfof.exe	exe	3a72f3f16f11061808d2ee452d7dac15145fc38c62c27466d90e9658efdea1cb	n/a	Heodo
2020-07-28	6xol.exe	exe	603948b56d4c59d23ffb576c076f8b658c076a62351b063433a9091d5af689a1	n/a	Heodo
2020-07-28	rIkWdupgtjumgcGmEUuPU.exe	exe	e25a80efda265b891baa05afa989a7050013f885aca94308add5cd234869e226	n/a	Heodo
2020-07-28	mcSh08qU.exe	exe	0cd22b617e0616e29cbfc376650d2f6e8a64754041c4884b7f13aca20608e404	n/a	Heodo
2020-07-28	7uX.exe	exe	cb87f4577277f138fee4a88d337a78874a9ba85a87b9fdc1127cc744280ff2fe	n/a	Heodo
2020-07-28	tUp7Q.exe	exe	ec8f2953f718547a7e5d772c8ef21ed115f0303c1d946bd7b08ac8d6b99f10da	n/a	Heodo
2020-07-28	5eXG6v.exe	exe	3944fe8b9ad466d9057529b27d634beb47c996e7a7f2328480926b979162629f	n/a	Heodo
2020-07-28	2XXvfx8.exe	exe	87de56612a013538ce116f34ca0f429d29506c41f93ae23d57ef4b8ff0271c49	n/a	Heodo
2020-07-28	mux48mDiic7x.exe	exe	c030781a0ed8c444d4990bf66179ebe54217a7ea5f928e6366ec47118eb19973	n/a	Heodo
2020-07-28	DHEVOUQlf6lqd.exe	exe	68aa81a9893a0cf445c87b4655e2eb3452ffbbc8194f23626cf370bab6b98d55	n/a	Heodo
2020-07-28	FPmyz.exe	exe	0cebf4c51fe79f45d17ee3a4f91f59a2b478ba38f0afe5acedb7f8af4464f91a	13.70%	Heodo
2020-07-28	T6mYavarjZdMcK7br.exe	exe	3f17e829d0ac19c6d2118e91957ba17db232f27e94e41b134c57a504628cefbb	n/a	Heodo
2020-07-28	ZGrAw10bPq.exe	exe	4c8184c343cfef857320d6fcaca906f56ed0eda87550c353fc0c34e5e444b6f8	n/a	Heodo
2020-07-28	75nFGkzaXub8mhfL4gV.exe	exe	2d6c03166bf6600f7edff99ab44777b96e4dfb907fe2e8f467a9ce8742c7bc08	n/a	Heodo
2020-07-28	PnSYhFe.exe	exe	9665498004621784d493c2fb7d69981af85117b50b9b7ea37dd7c54b8d49454b	n/a	Heodo
2020-07-28	ctlLMaukmftZgqccQeua.exe	exe	632c771d6d25e95571d3eb69f4494d99cd2407850d46c84855f108c3dca30962	n/a	Heodo
2020-07-28	RRTq0.exe	exe	a5b5d8a1ded70c22be3f27208982e0f1009b8f1b6cf08a5fa6d6b8e75b541bd2	n/a	Heodo
2020-07-28	ZsqDquXlsbaPf8WfPq.exe	exe	145bc70823670328f1e1dd4fa403b0cf949ea0f7bceac8e292b69817f816359f	n/a	Heodo
2020-07-28	oFT5C0NXs.exe	exe	5e24fd0edeac75a6adf923df7d78cf0049bff3b4d38e0b9de1688465d3da23fa	n/a	Heodo
2020-07-28	bNKa8Tcf.exe	exe	6e3a5484559d3c75a8902ca50ad058c42406a9c6217f042560518534263eb484	n/a	Heodo
2020-07-28	eG56GBFGTOC5XZK.exe	exe	fa722b7c10c7c14366285d45b828519dc894981d2772829ca4e88d0f14ac74e5	n/a	Heodo
2020-07-28	LyMnF5SSh7mzX.exe	exe	c468a96a2f2638a15ab62d3a26a7d272a6287232d419019a3754aa3aafd8e5e6	n/a	Heodo
2020-07-28	YisszUN.exe	exe	0d7ccc1b4c3ac6166cb028f6f0a0f89c5f2e25098a54c0ebefed30365075266e	n/a	Heodo
2020-07-28	zkHtNmZpGf.exe	exe	066cbe2e817d3ae961969d4a0fe0ad287a8447638b26e6e3da65a2f3fa874321	9.72%	Heodo
2020-07-28	FWLSLvj852AXOAMCF0.exe	exe	3e4c22a3be8ba83712bd5088798ef2a6142707ac9b8213e4086bb6faad03665d	9.72%	Heodo
2020-07-28	l17kaK98oTS2.exe	exe	967c35b788e2fa3ec4ef69a1dac460c9ce4a7751c74fab66aa6d2fb167dba434	n/a	Heodo
2020-07-28	Kv69anlZ67L4.exe	exe	db874004bd4866de052402b9ed6d6707e0a4268c3b9e637776d34cead2b7847e	n/a	Heodo
2020-07-28	CleEvW.exe	exe	dbd48eea0ca42885f7e37f6204355d997e4db0eee82af1a08575b7eff1113cff	8.33%	Heodo
2020-07-28	BPdFElE17zAZ9.exe	exe	555589ed0aa13e2a94aa2bb7f28e7dc92d41d0782dd792321c1ed6326e13aa7a	n/a	Heodo
2020-07-28	NSvHDpSVcRSf6S.exe	exe	170e935e3d183fe3a000489276615f61315a644f7c4f26fe6ba96f771ad2bf7f	n/a	Heodo
2020-07-27	JsDKUuII6ma2ju1bxTPPR.exe	exe	7ea3e5eecc012bb63e53a9ea1b6d8bd20a1aaa0efdf98fc3381796850445698e	n/a	Heodo
2020-07-27	1qCiAGHrS2UZM7szf.exe	exe	da988136f531e5aabf5ffc509cdc3516d2cad319dc9160d848b2f0d26d074fb5	n/a	Heodo
2020-07-27	xrW36iIX6.exe	exe	365de40ad2b86161e2d7e5d315d48ecc6ef59095f8c7519e38ee96d3c62364bc	n/a	Heodo
2020-07-27	FG2pzJR3HRQd9.exe	exe	ad8d3c6c1af30c9cfbc042436625d94b4419ba622c6584479fb44f2aa5c33399	8.22%	Heodo
2020-07-27	MwfZSyDQ8W14tPl.exe	exe	8bbeecec53ec6bfc812a0b9072c3c1a3fac20f46e2d708829c67f2fdf283f63f	n/a	Heodo
2020-07-27	fkEQ6djVo6XX8Req2AK.exe	exe	823593dda9cd7ef4c01a33e85cdc85bb62cd8b4e55998efd7676687761ef13ef	n/a	Heodo
2020-07-27	giBbrPA2L.exe	exe	fad04865548270fa2cf953138e3da82fab8bfcc5758b3849da2625f83359b3ae	n/a	Heodo
2020-07-27	FR03fX0oUhcA.exe	exe	10f83b148873811b5075ecb4c01f4f5b80ee7704a294335d61735de1ff033c8d	n/a	Heodo