URLhaus Database

You are currently viewing the URLhaus database entry for https://overcreative.com/css/fgn_al1_gav0/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	427162
URL:	https://overcreative.com/css/fgn_al1_gav0/
URL Status:	Offline
Host:	overcreative.com
Date added:	2020-08-07 12:25:51 UTC
Last online:	2020-08-10 08:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-07 12:26:08 UTC to abuse{at}aptum[dot]com)
Takedown time:	2 days, 20 hours, 0 minutes (down since 2020-08-10 08:26:44 UTC)
Tags:	emotet epoch2 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-08	Gox6kmchKWI3RPtWwdec.exe	exe	1b2d5d771a7a3ff7dc3b93bd14163b18e62f3b84df38139c7eb229b87bc1df2a	27.14%	Heodo
2020-08-08	8PzWB7zxhqPJL.exe	exe	749a7c1eb4dd0645645b09fd1644152babcaf467dea6ed2ece32491efcfd902b	n/a	Heodo
2020-08-08	WkM6JfAu8.exe	exe	0fb5124652e1e36194d054a933641c4a556a25439d5bc5fe066ffe5b0fd54679	21.92%	Heodo
2020-08-08	sDA5b.exe	exe	0f958d597f6bde394d5ecbaa59c18832154db87faf72ea46b1f25b1da540b1fe	n/a	Heodo
2020-08-08	WEhiMA.exe	exe	960de0761c8722bcff52b6b10abe2dfc52b349406cd0437248e5ff16d01baef6	n/a	Heodo
2020-08-08	ixMvlvsxDUnN8N.exe	exe	b5cc4dd78b9056ad1bbbd29db72bd10205476e46b1060a426a98f19dc5ba4b97	n/a	Heodo
2020-08-08	FWTfx3X.exe	exe	3a7276d559cf73ea8a4d485562dd32d7b3ae304ee89a78e162dfe523da0ec114	n/a	Heodo
2020-08-08	L9Uj.exe	exe	326311fcba597af34ea8dcf27258f7d227f5c8081aec155152b52ad6874c1531	n/a	Heodo
2020-08-08	U24eQghJSQlqWGXiS.exe	exe	476b60a2b075016823be2fc7787032ce76f7c451eab274e23cf73c3c454e041e	n/a	Heodo
2020-08-08	1.exe	exe	035811fc467c4f250487e9b7ae676607ee88c4482ddfedaa9eaa6d9ef80ad70a	n/a	Heodo
2020-08-08	wCuM8IQm.exe	exe	e9123b3d937d8fb619684d2f080e19e3de50da18a24647089896268ee3c61fee	n/a	Heodo
2020-08-08	mQG755414h3.exe	exe	17f0d90c39ca94aa21dbf53c627aea4b57e8d7f50fcdf16018c719b7e1efc721	n/a	Heodo
2020-08-08	zAmFAdVgBMVsl0H.exe	exe	05744259a035126ac287ccb87b397d05c24c49cbfeb7a60f5db53e88c5388224	n/a	Heodo
2020-08-08	QxTy8KxIZGSGN.exe	exe	ed8f2e8d493499b968055e4c49bd70d42afc7afd10e68ab3e9a642174d5ab214	n/a	Heodo
2020-08-08	kH4h.exe	exe	612d553536117f68602edb43a31468e3b33442fc8e487911ebf3a8aa645e739b	11.43%	Heodo
2020-08-08	KBMc3nj6eN.exe	exe	fc1291c5b7095c5c51817c8e91811f340015f852d2d995570d67516c85a8ebc2	n/a	Heodo
2020-08-08	xgkGP.exe	exe	70c71efc41e38170c867c085b6b1f5796ccd409f22754182e99475143d1f8e04	n/a
2020-08-08	weiXu.exe	exe	84b8a2148c4827c125a8c4be0b83d402aa5816acf25b522c66080a4a90a81c48	n/a	Heodo
2020-08-08	2K2IwLxumP0Z.exe	exe	27a6782ef7078c7ee34a752bf9f81f0fe83f2a6800f49d9e932a2de71a31681d	n/a	Heodo
2020-08-08	sR8d.exe	exe	fba1b0af7d829089923f39e52f83900e46cc371aa9d2f1df854c2c98d178082b	16.67%	Heodo
2020-08-08	e8GGayehjfVlZ1gBI.exe	exe	5be9debbcf00042aa1513466226c5bccb7cc8f5c1dba40ac98b78e90a94ebef1	13.70%	Heodo
2020-08-08	bP1Mn.exe	exe	53d75c1214c20f2e6ae1fb76e1fa3b3bdaf547e6720b2b14d478aa2276e7a72d	n/a	Heodo
2020-08-08	0iBB7qBYnK.exe	exe	bbb2df706a07b061d70592f641b0e618f69c9d4fd6bbe70c0feeacff3b5fbcb8	n/a	Heodo
2020-08-08	hhPT.exe	exe	742f0e641d8dd9fae7475f63aa19d3ff947217dddeda96682c6580b261f75930	n/a	Heodo
2020-08-07	ewuO5N2xVgtXkY0a7.exe	exe	efacc1f72bd7ec9ea625442bef8c1d82876154aca67c85bd90ff3002742a4d54	n/a	Heodo
2020-08-07	M6MBVOJVGAiX3MT.exe	exe	9159f82e697ab14b4a83f8a29aad4e1b5f50e054366c05570fa4391c11b03e5c	n/a	Heodo
2020-08-07	N4ieGMGDKiG9XPhIVt9.exe	exe	6f72e1197eb9554ccf31542f699c57ca79c37e4b40acfd918439bac225709fa4	n/a	Heodo
2020-08-07	A9KZfbQ5J0Ccg.exe	exe	88ae3951b77cd465233ed7a62d165fe8ff2436b15aef4a74a5cc39fe74a8e5d0	n/a	Heodo
2020-08-07	U02BzTXxGNe.exe	exe	f4f2b490304da2a5ceb65d4ebc3551fd78fc005656775ed85cfe7b2288507081	n/a	Heodo
2020-08-07	dgVviz.exe	exe	867cac6b9f4689c969d51cf0175349fa16b7af6a75103517f4fb2d9e0db886db	n/a	Heodo
2020-08-07	gUzwRobwuv1Mzk7C.exe	exe	4e478270a5e0d12e1835ac7e5b2539f14d0827013a125f96a9bf504b488b918e	n/a
2020-08-07	SPpvf2ZRye.exe	exe	a6a5dde8b67214d660d2fd13a80ba6f7bb79505218d534c60c7d7e480b41abdb	n/a	Heodo
2020-08-07	M.exe	exe	2c3ef1909473b0de8967be0693678ad56edf7ca171da9a8390acf308284d3c8c	n/a	Heodo
2020-08-07	o0AlygCiqUhOS4JTilT.exe	exe	46a435eef4b9d7ae1bc6ee42914ae3635541fcf9762b2b9d9b24d16f37eefd1e	n/a	Heodo
2020-08-07	hLwr5C8VE9NCVfORf.exe	exe	c46efc6926ddaa7b6d339295cb49dae2567b92f9a26d64b80349700126bf1a0e	8.33%	Heodo
2020-08-07	yyRMKQ.exe	exe	df827f7956ca5207ce06ed4779da7678fd1ec81a719bbef35284f14a0ca91787	n/a	Heodo
2020-08-07	9YrdsdYJa0.exe	exe	e46f13f9ed760b124d09ea66db4572be5c2a26f1e3dcc0954abedb8382224e22	n/a	Heodo
2020-08-07	TXXPF.exe	exe	618021eafaa5e41f2aa85fe5dbd5ac2d19e85f3a48d45406cc030d60da034a37	n/a	Heodo
2020-08-07	fmFkkgb.exe	exe	1c6bb3ab440e8171c5d991ed0db651511ca2054b116261d46da996f71ce1c9a6	n/a
2020-08-07	7.exe	exe	d7d66d74aa98fa6afa75340d1da38f2374773976dc5fb22745b3df48e0c6b8c4	n/a	Heodo
2020-08-07	lF5L1mma.exe	exe	8074b38bac0b89c821014630b9e7714d660082794e29b08f61ec9775d982e395	n/a	Heodo
2020-08-07	DmApADq6.exe	exe	14ef3222695f566786b493b8f456981988159a2ffc5430082ea3fcc87a22a45c	n/a	Heodo