URLhaus Database

You are currently viewing the URLhaus database entry for http://airmidhealthgroup.com/plugins/kb_r_5y5p44z9/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	426224
URL:	http://airmidhealthgroup.com/plugins/kb_r_5y5p44z9/
URL Status:	Offline
Host:	airmidhealthgroup.com
Date added:	2020-08-06 11:19:37 UTC
Last online:	2020-08-21 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-06 11:20:02 UTC to google-cloud-compliance{at}google[dot]com)
Takedown time:	15 days, 1 hours, 35 minutes (down since 2020-08-21 12:55:13 UTC)
Tags:	emotet epoch2 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-08	ahhtMII.exe	exe	34e6a0bf507bce70dee44a7410a20c134b4f3266a40b49d0f2c5120c24d636e6	n/a	Heodo
2020-08-08	oXpoRStNLOzD5l.exe	exe	972314bf977244400d6912a95e904a25c06455b6b9e467d6d3684e2f4eb8e790	n/a	Heodo
2020-08-08	k.exe	exe	2f6fb6060b465ce0ee9b5e1e3016aeea7ef47d6749ebd84568bf60f7320737c2	n/a	Heodo
2020-08-08	PSHZ3.exe	exe	77d21e1cec54467c50e90305aa12f179b365b2f6d828ef50bda3af9c56c030f1	n/a	Heodo
2020-08-08	U33Jl6Gz52nM6jS4zB.exe	exe	4692ec8fa86e07259b109dee676b5fbe7dfe90ff183f1d92e47a9e426c7fbbd6	n/a	Heodo
2020-08-08	05z.exe	exe	2c4b88884746dfce6af66d8cae2dc54693185db7a20894d462ffc5ba8045aebe	n/a	Heodo
2020-08-08	91bBWpiXAlj9uibn3.exe	exe	0f7832030dd35d0e3985316ec50b5721da5f0057e8b9ed40e638cb53561612b8	n/a	Heodo
2020-08-08	4cnzZItKy.exe	exe	9fba323e20dfb4fc92b18aed42aec36cd1285ee3af779c74de21cc3319832915	n/a	Heodo
2020-08-08	DST.exe	exe	c5831693574acafc8cb459a633c21ee162ac33d8cb5c80a6656ef94c4f43c42c	n/a
2020-08-08	1rIjpF4R26YF89.exe	exe	1b331adaf49e70e2c5f2ee8b85e38d3933268e10761e5ebd26141d33c807a305	n/a	Heodo
2020-08-08	QhEkl.exe	exe	8d0317644074599c83c28fc8fce748a755ce88f2f9f8141a0a70a445c64053aa	n/a
2020-08-08	X1ziJmHCSjbV5zXc4I.exe	exe	a348116ab630927bb118f4a7737a61a960f4a673ba5ff58c506a36894ebe5189	n/a	Heodo
2020-08-08	drtWsoxs3prqae.exe	exe	d9788fdb464fb7f5890f8bfa9ba8214dab36bf7a6715ba5c29a0fcd50a422915	n/a	Heodo
2020-08-08	VyRa6Is4C0o1.exe	exe	f6d217abc5db4b15aeb4afaadfbff06ab94d676064798b0b71eb384a3ae4ff9c	n/a	Heodo
2020-08-08	iy0a966E.exe	exe	f56e0e35d1f56316c7c022cdf0807874f9ce76498f349b388cf2a5708ce53e80	n/a
2020-08-08	PZtoYW.exe	exe	2218e212407ee27f814f0962540a6cbc4e689d145c04a9d1c72e8455104ae331	n/a
2020-08-08	Ebr6iAXNUFfk.exe	exe	219429c1ec6a2b81d7a1947bb56552f32fd5a581bd3e9836b681406ff79401a2	n/a	Heodo
2020-08-08	jJ2zTFmp470M1rtsXWN.exe	exe	6d240c6378975f4f8a3a21228b9ba79a788f767ced16795d055d2ed9da170847	n/a	Heodo
2020-08-08	WjyKWqf.exe	exe	8e18d8837cdab396c8e3685113b4d1b7a109d48f3cc089526d65c44992b52d31	n/a	Heodo
2020-08-07	8C5asUu.exe	exe	474de8ddf8391dda3ad5105a5757f0dc135bb489b50fad6d9151e8a0f12c90ac	n/a	Heodo
2020-08-07	0NK.exe	exe	6db403c4311804848cf28dc28d2e1e5be88c56a8bf70d347b6a66921859f2b66	n/a	Heodo
2020-08-07	v7h9Y2j.exe	exe	d3059f0d479f6afbbdb0917e6b3e15a76d78af382b9ccb03162d0e4987030291	n/a	Heodo
2020-08-07	QUZKP.exe	exe	e24df7558d5f2d5bb9a69125c5089e52abedd756afe7b51e2d60802cd9b6cd8e	n/a	Heodo
2020-08-07	tm2yxPa3.exe	exe	a8a490761d0998d6f5bbf7df9095f4952287265b9d6cf2fb7d7b4020e01e57d3	n/a
2020-08-07	SbT20rU9HGqhEn5KE.exe	exe	efd1af2d3f81032e6f3f40872ed391873e16e94f26d54b2cbe61cc6dcaa7ba7d	n/a
2020-08-07	TGX9se6u2venoZg2LTNA.exe	exe	6777735028fc222f336151359a1beb9442bf6c95b205b678bc175e5730a67f07	n/a	Heodo
2020-08-07	oWiVU2yA50b.exe	exe	6551aa55c33e3e119458f955f1ea06988e0bb93763c661fbe2f888683f0a471c	n/a	Heodo
2020-08-07	8LYyeq.exe	exe	093f0c56b8b269a67348cd97341b026536725fd1eb231a29b91e700330914d29	n/a	Heodo
2020-08-07	0YvsANtHAji.exe	exe	0b5228a25516e55e5fe348f770d9fbbef61243ee21ad28da353eea274c4275cc	n/a
2020-08-07	KhIbg.exe	exe	2237cad317caca280b7862f54599dccb63a3e71c87f83bba900de98e48677537	n/a	Heodo
2020-08-07	tYDC.exe	exe	d38c2c6587149721ec012843cf94a9e9eba0aec137225203a0baa17ff7a8b875	n/a	Heodo
2020-08-07	3IB.exe	exe	701ce9141932d708b532a50adb191b7b054e798f66a6ffd3130b4c204c23c077	n/a
2020-08-07	IuTnRMZ3pit.exe	exe	7be1649c6626f69d88fda8e9db62e63c3dd8261c4015363f982a122b72a0c484	n/a	Heodo
2020-08-07	xIiMMaZ.exe	exe	28ce3eb61a4d55a6a8fab9d8d7f638f69206e879a1b10cd0e7d1744445f7f456	n/a	Heodo
2020-08-07	B.exe	exe	6dcc0a10e81b640df1fd1ef1550b827962899256ff35a785c70bbdc1af0e0742	n/a	Heodo
2020-08-07	OXZhfs2J6cc.exe	exe	83a38f91cf7055c6ba7ce1d5234d47e87278c0896445aa6428f1fcbc4022ee9c	n/a
2020-08-07	HkDyyBCD22SAqeB.exe	exe	e6e19fc528ed6574c2a90e5fab7a83720a4f1dc16d08fe04b11b88bb8474905d	n/a	Heodo
2020-08-07	w26JtND37E65EC1k.exe	exe	8f48e57838eca8f85edfae262c31192805435b454ed70dbdb1507ec74adb4398	n/a	Heodo
2020-08-07	DM30GaC.exe	exe	494a5ff16c3e7964a7bb69979de28b7dd24bff353cf0a4af2bc9d725014e9fd7	n/a	Heodo
2020-08-07	8s6szkPic.exe	exe	b0d7ffbbf8a7a93b6c2e303e0c13aef2933940bb82d65beb7516f010faf557f1	n/a	Heodo
2020-08-07	qMAV.exe	exe	eb4269ce8e7b8456273ce21d82cc84cdbbb670e8634cfcdc123b1990d23887bb	n/a	Heodo
2020-08-07	Vqh6f3.exe	exe	974cc872fb29eda23237b8b06505cc944f94cb473f3087445038fb9b34080f34	n/a	Heodo
2020-08-07	a.exe	exe	a0530939ddfada2c73b65c65d9142d252db15a162e2917205a0f8f9a0ce62ce6	n/a	Heodo
2020-08-07	rDb0i1aJwfck4jyx.exe	exe	c99a0ace550266c8fd3b171b257b781a9753df24a2ac66f679926f18f5d9bb76	n/a	Heodo
2020-08-07	9IEMr.exe	exe	30c1bd5befed16a4bfea466dbdb6f75b61a536c2172b07925a9d2c87bc67369e	n/a	Heodo
2020-08-07	FBlxYzRyrI5Y.exe	exe	d5acd601db567e8ddd7714fe55a234ae0a1e69f59ac482f5e1fe5ec6ef070fa6	n/a	Heodo
2020-08-07	0pwtbD.exe	exe	aef83cc550de5b58672229a21947d9d3411db69cff2d9ffb8eece276ca51cf77	n/a	Heodo
2020-08-07	6B3J71BB.exe	exe	38b9659f05d19a65b948cb68e69caa0f97a159fbc5c88284e6f404ac480db685	n/a	Heodo
2020-08-07	pVrFD52.exe	exe	93caa3bec1045fe2cd9ecbfb60fbefb283940da89b4d349f3cdef0ff48c7cbba	n/a	Heodo
2020-08-07	EJhXzUcECNUH9C4Xv.exe	exe	273668c93b3a9601e6339c3c16939905454b0592753bcaedc961b0f643e96e17	n/a	Heodo
2020-08-07	V7ZtfV.exe	exe	f136ba7e198df783affec7153cf52cba82bf3f5ad39dd541b4d99fe2f31a6eaf	n/a	Heodo
2020-08-07	82xvySHXTPHX0g.exe	exe	9763c514bb9e4661f200ee4a0a5781fa14958abff18b8edc27874b6a21c815e2	n/a	Heodo
2020-08-07	jz8s.exe	exe	a41dddd5f6cd2f7ba07b5b9abf9ff5e92ece676655939f7c28691070578940c7	n/a	Heodo
2020-08-07	nk.exe	exe	1a5dcc1179dafa63d718f3224acd989380578548c347ef345be13cc3737ccd06	n/a	Heodo
2020-08-07	PLcIujYmi1.exe	exe	a52293fcfac6433b7cc56a95781f31b0863f6513d704a1d9db8ff5e2050ac621	n/a	Heodo
2020-08-07	Dh6.exe	exe	8bc60bd9656402764f026c7f68cadcbcef8bd4c901288dda36d1b40f59703dca	n/a	Heodo
2020-08-07	X.exe	exe	0093c8a40bde0ef46c6ea79bf3bf07182a26d6d97e38ffcbc676d9d03027bb13	n/a	Heodo
2020-08-07	f.exe	exe	e8aeee906fc856db622d81bc8758b8c99ccd8bedacec6ba832d47c550dcd42d7	n/a	Heodo
2020-08-07	EnAq.exe	exe	d79fdec649a840810aa0f6ef2b631158649e17d95fbac7758264258a548482a3	n/a	Heodo
2020-08-07	Iw.exe	exe	8d2f2b66ad430ecbcd9c365142481160e566d72610c8d56fbc1602e08db08800	n/a	Heodo
2020-08-07	rSKq2ChX.exe	exe	fccc778d0e16e331f6232d45addc766d1f78ab6176cfb9ab2b311fe276fb6abc	n/a	Heodo
2020-08-07	sxRHJOQsnBnprz7vv5.exe	exe	c339acb5a80b14d749b4c2599826484fdf021365c28631ffe58ecde368274a6c	n/a	Heodo
2020-08-07	eSYqQW0KNcdoWIeJe5.exe	exe	0a95995d7c47c9e14a15b18e129adfee1ee3d1940f2625a9cde0b50f369c0501	n/a	Heodo
2020-08-06	f3uUoqbmKFw2L.exe	exe	7b6ab1b8afc31fc9efc382cc7c84c9e6d4073f39f36b8540de6e37c06c962ccf	n/a	Heodo
2020-08-06	7yf4fSERXPVGX.exe	exe	6ee6acceedbaefd3b4358d947b248706a824bc0cd23d492bea8563be1afba462	n/a	Heodo
2020-08-06	dcS8IaLWI.exe	exe	f0998b9adf93826cbcffb8158e4199abefd980dd54754a5cee6427c0e87d7a63	n/a	Heodo
2020-08-06	CiP.exe	exe	dc99adbd0d003a840fba0c2eb0f97c8a1134aba5e5dc234ec51e65254f59db41	n/a	Heodo
2020-08-06	PpeoUImEL8bXfXQ.exe	exe	3ad74ec3c169d3438425467339328e6a5d74580b87ab65a7b15c05620edc3f3a	n/a	Heodo
2020-08-06	WQOzde.exe	exe	5fd4b18de5b70dba966bd7dbe4eb4443c5c38025b9e085dfe185081684862f2c	n/a	Heodo
2020-08-06	ikGe2hBIB7.exe	exe	f786b7875e5e3cf7f4c93876704874f3eee8c54685baaf7bf105d694238d6b7f	n/a	Heodo
2020-08-06	clY8xrHj2QttXXOb3Kpl.exe	exe	61193bf0d4c552a8cd71f4e2ff52be041d78b5a1e82a2cee721944449c7395c1	n/a	Heodo
2020-08-06	bdsn.exe	exe	e37ac5a69844850a7f8f5e0bf7b051f906478571d1747c251ac6ddb9d701e136	n/a	Heodo
2020-08-06	WQpbBTkkjVzbx2v.exe	exe	8b293c3ba2df443eaadc2d75eae1fa31b7af8bb8227f1583aba9cd1dc1e61898	n/a	Heodo
2020-08-06	2YcS3p.exe	exe	766359a4a24487eebe3fe301522dd68698285aef89c4347cb6625bbed35e00e5	n/a	Heodo
2020-08-06	KUknlMEoKp9xjJXI7o.exe	exe	38860236e6821861acc08863b1c904eac6fd2b7a8237bdcbf33bc4858f0506ae	n/a	Heodo
2020-08-06	2Iut9acXcjsoxqMB7H.exe	exe	820f3510f4c0a8dba0e5a7f499d1e2cba15a905f6c0779886050aca881168168	n/a	Heodo
2020-08-06	Pv6K.exe	exe	2aafd894539f2d498bcd620f2f3c82847d5c51030edd89b535913126cd98fccc	n/a	Heodo
2020-08-06	jro.exe	exe	69fa652310a3da3e142a75000c028294ae5c3e1cc2ea75fa2e5546f07fcfca0f	n/a	Heodo
2020-08-06	xLRFOVVCRiyjocd9.exe	exe	3394a3b9f67ce741caa03abdc7c2845cf39e8c42f1b320b64a70097d8fb25d77	n/a	Heodo
2020-08-06	Fkm9lEHkO2y0TrPy0.exe	exe	6b58edd4f5a1a1fbfcf18c2262ea158134320e5bfcc9ccbaa5b8280ec73d0a62	n/a	Heodo
2020-08-06	cX2nExjp.exe	exe	3536e950c979f48be639767310e3139753f367945bee0b45db03ed1575f65f96	n/a	Heodo
2020-08-06	nN97UXKD4MFNFea2rdwq.exe	exe	5a68c4e40bff791f5dbd8c1bf7efd287a3da23fedf16e5c27aaf0f4aadad0a26	n/a	Heodo
2020-08-06	xWmL.exe	exe	a7ae9ca6d4e160c5b28e3c2db27f19fe39d69e7d84d08d39a193acbcd18f51b3	n/a	Heodo
2020-08-06	21.exe	exe	286f731a33c373ac94941e0d579f342de192c3d45c69b21e1ec1577c197bd6e4	7.69%	Heodo
2020-08-06	a6OYFIV7ohNdhK5olTy6.exe	exe	d18671ae34457140bb2fd19a8ea14b8a34e3bfd1fba6e16316b187e6b6d59506	n/a	Heodo
2020-08-06	l9rRDLmztoPxh1e.exe	exe	38cc9c535aa4c33eae68ab97bee9e83fd72f963a1dd9778ce8912b626a8a7226	33.33%	Heodo
2020-08-06	uyI1xiisZq4R7v5kw.exe	exe	b82eed84bee4e9b45b4b60013449288a4b17437531c86fe3c3a3a1315abc5676	n/a	Heodo
2020-08-06	4vx4J.exe	exe	aaac8b1b06ff7e98f5e63f8cf8f9f6af55bbe11a84d3c972adb32dfcb7590dd1	20.83%	Heodo
2020-08-06	by8z3cUq.exe	exe	28d73997b379694ebcbe88ff0c789d1f6194a2c57c4a6ed9cf7a982df15c0c7c	n/a	Heodo
2020-08-06	h5mfR1.exe	exe	1ef5b206753e1e05e9aafc071a8ad0aafc5abe1dfb0be49a6b53aefac4274f73	n/a	Heodo