URLhaus Database

You are currently viewing the URLhaus database entry for http://saangberg.com/wp-includes/u_a_vn/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	421905
URL:	http://saangberg.com/wp-includes/u_a_vn/
URL Status:	Offline
Host:	saangberg.com
Date added:	2020-07-30 11:02:12 UTC
Last online:	2020-07-31 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-07-30 11:04:02 UTC to abuse{at}dimenoc[dot]com)
Takedown time:	1 day, 11 hours, 2 minutes (down since 2020-07-31 22:06:58 UTC)
Tags:	emotet epoch2 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-31	y9bfGTFg7CN.exe	exe	b5f5584de4f4a7c5234fed7fbd81b108e93cd538b33cfc2db7c95956ac47d784	n/a	Heodo
2020-07-31	GqswOIx.exe	exe	490b46bda0dba498c6431c69f60a07c8ca231ee9e8a2b03961777742789dafbe	n/a	Heodo
2020-07-31	stRTBrcw1rruOl5p.exe	exe	26f9ccbb643b52c67a62c12125b924d4ada4bf9c24a724cb6ce70110f2425295	n/a	Heodo
2020-07-31	YsxwgEAsIvPN94zYC.exe	exe	622b8303df95456f8fcd9c85412e2a2062bdb53c734c3947b35a370aa9b3df08	n/a	Heodo
2020-07-31	k5mBnBQTNaarCiuJ32.exe	exe	d0fee2d9262b169934a4a45102f3009c1610b5f6167dfd30360e3469e22afc18	n/a	Heodo
2020-07-31	nTF291A.exe	exe	27c25cbee83b08d7d8973f210a9d278bee0b988b978a28ff627d26f35d354160	n/a	Heodo
2020-07-31	KdbF.exe	exe	8c1abc0ac5af466ac7c36441d0a48ec60e723ed6cdc77dfbd596e1afc50f8c9b	n/a	Heodo
2020-07-31	Gagt.exe	exe	98f5d8d6d1ac5928ba4200c60d1be43a36598ff04edbbf0e330c5e2b60f8c29d	n/a	Heodo
2020-07-31	J71.exe	exe	364dee528fbb50af828709f246db22b715bd3f1586454eb45ec4dd2c28a079db	n/a	Heodo
2020-07-31	Vw1MYGpHszzRfHAN.exe	exe	346c6db1c61aaa7b10f607d0d2d92ec6bea8a27e527745a1f3e449d2a28f8aff	n/a	Heodo
2020-07-31	QeiREVU42bge.exe	exe	587aaf943372197bbc9e78d5590c3942672ab9a86f744fd84447bf8a62f661cb	n/a	Heodo
2020-07-31	7ay3zN.exe	exe	a7e2e30e1b7c4e45974628dd23654f73775df30c216dbd85d52f268db31dfb18	n/a	Heodo
2020-07-31	tHBedzgP22hn8LGSLRYJ.exe	exe	72055f34e901c08e742eae91ee97b0944a4f4d695d127cda96f0abe1db04b2a1	n/a	Heodo
2020-07-31	LrOqh.exe	exe	6b7504e1ca3788d5e784066c769ea8c9dd822d2a53722c02890d645d4d0b24f5	n/a	Heodo
2020-07-31	WppgIdTcIlfI.exe	exe	41c28310ea0a3c6c9474516349a5f889ab024d877ca61b138decb00b2cdeecfd	n/a	Heodo
2020-07-31	MQMlL5.exe	exe	95e50663c6ad7754c86ba44550bf63391b3b5c6c4a898c6caf646a57d7fa15d4	n/a	Heodo
2020-07-31	oSzk3HOpQoThh8.exe	exe	8589aa3c8fe424a6d5b1acc4274cdea03e6732cd677ce9794e91157afb2b893c	n/a	Heodo
2020-07-31	VrQvgFXdtgS.exe	exe	7004a1d97d937d604d532fc73aa9c22b9ed3e361192cb3467136e881dfa1ded2	n/a	Heodo
2020-07-31	PSpeRRv9zz0vsTeZAn.exe	exe	5f6ca10c74020b70c3242b4e13c6d883441d34cdbb15544698a33db57eb1fb5b	n/a	Heodo
2020-07-31	bD.exe	exe	7241b127fe2e93c4a91cbe5df9eebadbca046ac0279951ee19333496999520dd	n/a
2020-07-31	5xB0JlaF.exe	exe	58f25dfe7a3dbf0e696ba6d1096ef1f2870a527a963b4783fc126c348acf11aa	n/a	Heodo
2020-07-31	zGYhT31.exe	exe	c185503318222745db1303a9162e28c08add9affba39ef8929a989d1a423bec3	n/a	Heodo
2020-07-31	4l.exe	exe	edc0a57c1c567ba375297f935ee5574faab3fc031564ced21229e0351601c481	n/a	Heodo
2020-07-31	G.exe	exe	324cd6b23a148e0d871fd4e4b60c43082d98f5847a0497b6c164d85ae68551d1	n/a	Heodo
2020-07-31	k4J3C.exe	exe	8e95bdd7b5f05982b4e803ff7da76161eff6e93cc42ba0638ff85f679b25e7fa	n/a	Heodo
2020-07-31	KHP.exe	exe	30e18bfc579f2c6c5a90f3bc3372a5c8a6eb500b1819b25f1db3885ba0d3e956	n/a	Heodo
2020-07-31	QZ.exe	exe	bac78d6ce6d7fbc33c090e4bf1bf5b5783790e4f3287d231e24e052cc5db57b9	n/a	Heodo
2020-07-31	f9aUQHl5cinAxWJ.exe	exe	1832f483bcc3156d5b5094980f954e499bf4b37101dd9d2852b8d7f663e7b520	n/a	Heodo
2020-07-31	VODpNAjm2zzF9N.exe	exe	b17d57f24838a7362f94dc3b0337f57c6759755bc868067a99d6235d0814be08	n/a	Heodo
2020-07-31	WCv3.exe	exe	4461bd615c89559533017e50cda0ce644bb51ed1984d378dd56c05427e4aca37	n/a	Heodo
2020-07-31	2h6SIG3tA.exe	exe	aebca0c50b06eb4e1bf8dc561cab62f78c8c3d5b875247b5f68faf91d226b571	n/a	Heodo
2020-07-31	2ZZ8.exe	exe	51c84399d903fe435215fe11fe035d3e78687ef1b1b4e1b84571f204488d2d6c	n/a	Heodo
2020-07-31	9Q2rXPEU.exe	exe	dd23a24c781f874220e5ca802d92dc9111010ece1d65c86572a502ab428f85a5	n/a	Heodo
2020-07-31	EdV.exe	exe	5d0594cedb81ce7851fb366acbc2e498c2ed871f6f2d286ba07c9be2c77455ac	n/a	Heodo
2020-07-31	orCwIow522U.exe	exe	612fcedfb218aab579043b8431e6aa0584480baf26a56d3d7e8d72d1d1900f2a	n/a	Heodo
2020-07-31	BFjXPF.exe	exe	c6608cc2a5fb4895dce9f8def90ba1f4dd05c578a58fbeb424299c55653ae6bb	n/a	Heodo
2020-07-31	vVg5bh.exe	exe	de8ebb2b5fc65b72aa93d6e006fedc55955bf912d06febaeda5018fe7e95ef4b	n/a	Heodo
2020-07-31	siAHLLf3QiiV.exe	exe	fccd691a06184ab3cca361064a6b4332c20b53d0017cb269fd5bc4af30034589	n/a	Heodo
2020-07-31	UC.exe	exe	3645bea65f7cb3fa583379334cb197da110eb66367eeac7a342b777d065843a9	n/a	Heodo
2020-07-31	RTA4cq.exe	exe	965667c26fdbe6b94337893c02932260046e3a196c4c19129d7b6bb0c488b74c	n/a
2020-07-31	G.exe	exe	919afb42a71c20f3858dd813e06c4afa513af40d9fa8c32b0b30d0f8c58ad5a4	n/a	Heodo
2020-07-31	VgvNyYdR0Jiz.exe	exe	4703129a3ae6c06b8a03ddf659c67cfe747a9ce2f4e4c000bd4ccd58700703f6	n/a	Heodo
2020-07-31	4Mpez1Mviaq.exe	exe	e002d8b0a3245dda907f60363e1783d77812da9f99e38aa51655f85c786c5032	n/a	Heodo
2020-07-31	SaZOlw3llHe.exe	exe	f77e2fafaf641d4dada655e22858ad9508e170677da848945bd91ca37defa41b	n/a	Heodo
2020-07-31	BWu9hz.exe	exe	74deda29f8521c8d3f41b6f8aceb23c86ed892402aa7072ae521c9dc98036c1a	n/a	Heodo
2020-07-31	YvTM5A.exe	exe	1d7a6bb404380fd8080a7e46e5122ea15f76824e1f865c5137e342ca05b22c85	n/a	Heodo
2020-07-31	2ce45TO3cqO.exe	exe	3c94b7bb762e8a97b60510742004e0b93486d3d600b8c1a6069ee059405bac75	n/a	Heodo
2020-07-31	Cn3pJ4JP01HXmwP.exe	exe	c21f130773e864b08c7dc617e315835ca1118933317df11c8dc13b5adae4150e	14.29%	Heodo
2020-07-30	orLjnGHBvRYtf7s.exe	exe	46a07f8329978e15b84ec5cdc700d452f776e0b02b10ef7d3800bd53557ac39e	n/a	Heodo
2020-07-30	TTqumJ8oZze6t.exe	exe	1dce13e5c7b489b2ce47ff7a918646e822fa304fc3ed9d5b7f252022a5c7a16c	14.08%	Heodo
2020-07-30	Oo1uxyeR.exe	exe	0b1756c998a3ba7a0de734d70b99a7b178f092d593beedd48b0db1ee244b1b1b	n/a	Heodo
2020-07-30	LxAizKeXpW1Qb.exe	exe	279dfbafcc6c692a756e16a6b139ebe01a65ebd531a1d2e0c4fb4123093291a1	n/a	Heodo
2020-07-30	OH8Vc16TnRRUrUUy6M.exe	exe	f810001c15911cdc7bbac3459fd80161338d59ad58d3498e583a034d2c8899d0	10.00%	Heodo
2020-07-30	QLPWlJpo.exe	exe	bca80b7dab27b70eb8ae1da1b7e9a8be32bbab0a3968b98e4a7cb71ddafdee3b	n/a	Heodo
2020-07-30	lvzHqPHiFw5VG.exe	exe	91d3ac5b6f091b5a2ce926244467c243401e9495311fc8939d6b9de4ab117d91	n/a	Heodo
2020-07-30	3sapqg5SeAnKpwB2bmE3.exe	exe	646a6b7c2bad29d1ec17a2a5f8c3451ea53c2863fa9755f4bb2c72384b4bbb1e	n/a	Heodo
2020-07-30	KGfhS1R56UZk9Ws.exe	exe	443ae6984d0e0d55d2cfe7f2c15726cf7abf88b1cb23e598c8c16431fad9b6c9	n/a	Heodo
2020-07-30	xPgPDzr05UQ36mVbZ5g.exe	exe	02a284f016f3f804a9a70552b27db6c1cb9d5bccae224197529a8c9c783f1ca8	n/a	Heodo
2020-07-30	Opxx0AFhURcMycCj.exe	exe	9b619761d594753156e55072e948f20b00da15a360d5cc5647f313cd68333529	n/a	Heodo
2020-07-30	qnLe14rxx4c9d1MDlpEE.exe	exe	a2a3fc9163c7d2c8d912cf4d49be49a370a7198ac7738cad8bbae54ff927c68c	n/a	Heodo
2020-07-30	NaUf.exe	exe	66b4fec291d55e81c3a3b8bc37c655e55d6319df903566dcc70d598befe0809b	n/a	Heodo
2020-07-30	sz3SuOfl.exe	exe	96bd0fd8a8bdead6fcd4dfe00ad09d672cf9a22b22d6b04683b31592397ed984	n/a	Heodo
2020-07-30	Ku1cU1dTakgED1X5x.exe	exe	377e4fd716feaf56a629d3244c0bee9270c513aa56c654bec007b574ef938a66	n/a	Heodo
2020-07-30	bNvaIQ2JdVKAs3TNH5.exe	exe	ec1b3d5eaea3c7e9a69adb98bb200121ca5f4fb2e47e853be9ecd7691fcd8dff	n/a	Heodo
2020-07-30	KSt00Y2Vx4cKpzzCBKJ.exe	exe	278467224c46ab80145aae6a81c0c7ad026ba67c934c200bf6fdf763da0c38a8	n/a	Heodo
2020-07-30	Z.exe	exe	eb64405cffc49644b72a401f9a74404213aac8f8dc283f4bf47780831865b058	n/a	Heodo
2020-07-30	S.exe	exe	58b0231d0abcb04c6d0850183f4797be63dce1125e7bc917f113e2b53833a301	n/a	Heodo
2020-07-30	pKFHq.exe	exe	4182faedc32a7fd6b9af9afa966c035070e302797bf92424da62fff70e79659b	n/a	Heodo
2020-07-30	fv8GSk9.exe	exe	4af0db1296b897433e24622c3d1c8673baf33af7d94e90a7ae446f20e513873d	n/a	Heodo
2020-07-30	RR8.exe	exe	c6047154d6ae05c6874e7b729753308e7cc6af4966a0a10d9fcfb68ec1be75a9	17.14%	Heodo
2020-07-30	HhFEEB.exe	exe	7dd39138836971367455cb6931421bf256453f562ce625cd8d1fb8f4c44ec509	15.71%	Heodo
2020-07-30	kY.exe	exe	39ba5df6d5b953d12adb9207edb8eac5ae79d5e84603d2c1cebed9d72e866c50	n/a	Heodo
2020-07-30	2nCmgm.exe	exe	100f28d12fa252476e5f98657d77a17539cf6409af5ade3f9a04ac0e16a75c0c	n/a	Heodo
2020-07-30	4jRC.exe	exe	2652941a65d4ad626b01824cfb5a9ffd9eb909654577f14bfd6ea118ed573219	n/a	Heodo
2020-07-30	r65W1.exe	exe	94072d85d869fedec937351c58e5f2495c946a8cbee1b01d41f3e00abfa6dff1	n/a	Heodo