URLhaus Database

You are currently viewing the URLhaus database entry for https://zubk.net/wp-content/plugins/gallery-plugin/upload/files/vDXbZpIep/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:433687
URL: https://zubk.net/wp-content/plugins/gallery-plugin/upload/files/vDXbZpIep/
URL Status:Offline
Host: zubk.net
Date added:2020-08-15 00:12:08 UTC
Last online:2020-08-16 04:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-08-15 00:14:05 UTC to kdenisb{at}gmail[dot]com)
Takedown time:1 day, 4 hours, 37 minutes Poor (down since 2020-08-16 04:51:09 UTC)
Tags:emotet link epoch3 exe heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-16w8328.exeexe a16bca66acb55e4857d76d3eb01ed1d9ea20445fb9648e0a5b74d0eb494c7b13n/a Heodo
2020-08-16nrygtpxrn01611725.exeexe 5b08911db993588517755c48993022120e74d3bd79c1056d9be1aa9360089246Virustotal results 33.33% Heodo
2020-08-16c3569pw66177.exeexe 863f651df354c5fd7d18b600b9524e65d13a9b4365792eed5ce4f99b1c867bcen/a Heodo
2020-08-16g24019.exeexe 716e37bc272c1d26e4329a2cfdf06ead0cbb569a156628d474301a4df0dde785Virustotal results 30.88% Heodo
2020-08-16i1vu051.exeexe a97fdcbda893d6fe08ed8503b537c0e78b8e583529cea6d5bb8b71378f2ffc19n/a Heodo
2020-08-16ydvruo8585479499.exeexe 8f50fbf9b169c730578d204dcf563f5369bd6a1975b7236304341ede2931c7a2Virustotal results 31.88% Heodo
2020-08-16osm4t94fyb470415.exeexe ab8b4153fddc19fb44f6d71e4f886bfb3edd15a0c0ed3e4e5e091c93e07ddd6bn/a Heodo
2020-08-16ku98.exeexe 8ae7c5605a7ca34d6576bd93beb63b7c674eec511b8b919b466e231e58c55577n/a Heodo
2020-08-16v17o5516.exeexe 83b2d3d8938b739fe73a241ca594058b842370d4fdcffc85a71fac87b451367bn/a Heodo
2020-08-16gi83593.exeexe 52aae247e198e918e6192efc1ce5d7f6dee3a0cd43c870e06ba74ca115b167fdn/a Heodo
2020-08-16v1gz8t44394.exeexe bfe24ed8296733bec3728dad9b774442970baa74a1070bb66da68d551bf7f54en/a Heodo
2020-08-160rq7ssxu5842.exeexe 4b542b6f96ca01c6409d2aa8731a4ff1ec4d732b0f1f287cbe75296ed30a0cc4Virustotal results 28.99% Heodo
2020-08-16j1076.exeexe 73966426fd3872d9e796b2cf50aaa8b7148642b3140838d91284b8cf7da3038eVirustotal results 30.43% Heodo
2020-08-16jn121.exeexe df255d175250d7e322aebfcf6a9bfa0802fdfcb3725071ba862e5874c71afea5n/a Heodo
2020-08-16dktgm0zky734067119.exeexe 87bbd67b3a9d8d6a24271ace2aee1baec35e3b992a4ee92839d91fc489b334fan/a Heodo
2020-08-163olg4045965974.exeexe 04fe500390d4ff74f6af49227f6059ef71e166e465509ab693ba7cf9f7646ac5n/a Heodo
2020-08-16rfp70h97030370018.exeexe 2c9623615dcfc59aaf05c49a909a9d015e5ec65399e27a1ada7a1b54d23b9df1Virustotal results 28.99% Heodo
2020-08-16t56jmv7sf00196172.exeexe c221b9dfa35a9cc8913f8f8b31ca1d3e8d40ed511dc2d4ce057a8ee2ffef02d5n/a Heodo
2020-08-16r0b8045559.exeexe 1f1d7e43a8104b5333d8e54ca06913aec2165ba9bcc4a3d07ffd7ebd7962f2bdn/a Heodo
2020-08-16f9aksthx592165.exeexe 6fe194b23057d5b65297b966c6267a30ec6ed7d96008c4a25f806c4989cac59eVirustotal results 30.00% Heodo
2020-08-15teqjig8u8k16216.exeexe 757d060a616dc6a9e4678f472849c411ac33606cf47c6bc3538c8b6c881206aen/a Heodo
2020-08-15ha0.exeexe feb82d5e2218c3fd1cbc6614e7aa6cf3a2e6cf982b31af839d30686af8ce7d96n/a Heodo
2020-08-15t5p43281415.exeexe 0797561f3f376a9905f2679425afb04da3c9f6a6502775547308552ca8384bf8n/a Heodo
2020-08-15avf4krr2893.exeexe e9df11d5b5d69c474e9bd5ecf074645da66782b6cc4599133ac6d9c757340959n/a Heodo
2020-08-15rmq0597.exeexe 78f15ab29355b2706d033ca11185d91059678d9133b0ca2ba68e11a7595bcd86n/a Heodo
2020-08-15turg41.exeexe 2999b0523a8218b8cbf3e756d0aeb4c8045a43088e4545bcdb6d5968d0713a89n/a Heodo
2020-08-15ihlbqqk50273782.exeexe 1a0e45ab4c8929c8a6f111a7ed73c8cdc34e9ec205fe2a6108060cea1ee3b69bn/a Heodo
2020-08-15i8093420538.exeexe 307249c0102419b9c6fdffe9c6933d22c66e4b4cbf2945b9c1d0074cdf6ad8edn/a Heodo
2020-08-15yesx534875.exeexe a2ea3b303268e582d6a914f3b29e36cf115162301172fc6a4738da7c9f3a6afan/a Heodo
2020-08-15kiq2021354826.exeexe 4b0eedd78c6d0a3de6016e3285278c7b4c7bed92e17eadd1d1dceb4842ea36b2n/a Heodo
2020-08-159ow9opkfl235312.exeexe 8a9701756c41a814f7ddd97c9d3e8cd015ffe323fcf5a61b0f79c3df89738c9fn/a Heodo
2020-08-15h1062306.exeexe 8b44627340881eb8aee62b580cca2c26be35555ac7161627309c520b965333cen/a Heodo
2020-08-153prdh8gt948490.exeexe 815d5d9c664d8a7180d3795bd2cef33da80d0b416bf759ac163ca9b48bba1447n/a Heodo
2020-08-15dndjaj04.exeexe adbbd06774716a14d69ab2ba9c05e28f003e5fe7167c1c3bd4978ee37124808en/a Heodo
2020-08-15itd74.exeexe bde87f6dd9c24fea8be20ace7f034fbb938a61244780b97fb6172842b06783a2n/a Heodo
2020-08-15rbowf7f2643986027.exeexe db5fb4b1b50d75cda5ade66d64750ed8eda59c69845484c468c3821edefb50c9n/a Heodo
2020-08-15qexc93.exeexe 5173bac575cb57a599dad6b1953da6a24faee0530dea27721750348d7b55955bn/a Heodo
2020-08-15u71uswj4975.exeexe 536b6a7441483fcf26ae51ecb0eca53a2e65460f8983814cd55a20e509a55a27n/a Heodo
2020-08-15pf168915.exeexe c8aec7ac6060eb3e72523a4a5ae6832907db226a52b2e420aff1319edbcd8696n/a Heodo
2020-08-150e7979560136.exeexe 53f376b6c957483af5440a3077591ec796cb5f5cd39c30acc80b9f786ddf7065n/a Heodo
2020-08-157ct3278.exeexe d0a367dd0fe5dbe5ad6e4d6ae5732ef5d01161586b4081848b7dd5afdaaf917en/a Heodo
2020-08-15pj8y37410490668.exeexe 8c2ac04507892f7d840df444c111e92f7f42227b88d8cc7d4698a56e795b5134n/a Heodo
2020-08-156k4c6txo5082.exeexe 077a7eea8d770c60b543685e33c31600780b9507956d1e8f34dc434d4d429da2Virustotal results 19.12% Heodo
2020-08-151ktqc47712.exeexe 91f4f9c34b72525fc839f5a9a0f6eda97d820a6016e910f9773a51721f23803fn/a Heodo
2020-08-158o8b66.exeexe 7a63d38d4d41a3509433070317f6199f98ebc5acc6475ce1186ee67f102c8688n/a Heodo
2020-08-15ipnqu69187.exeexe 43cfc0938a0c6d12b55fdab5ed955d3b4a4cac1cc87a7748234b288e37dcffd7n/a Heodo
2020-08-152fz4424.exeexe d4d048c66c2aabad6992065da8adb51416846e9c2a90f8beb8a64b32333e777fn/a Heodo
2020-08-156wb0315304050.exeexe 95133a07b35fc9e68dc183700601f102bbcbf315629e43d1d1b80a0e642806ddVirustotal results 14.71% Heodo
2020-08-15k854276362.exeexe 8243bf16d66bc40fefbe156475b973c2fa8f0aec56af57cb8eb6c82475e69e09n/a Heodo
2020-08-151urf4nc8429653537.exeexe 6e51681cee2bb475a2abe49ed54f63c94e86bf5b94f075790ac16e12e3031a5cVirustotal results 10.14% Heodo
2020-08-1569a27226.exeexe 730c9c310ac66c6bc00d758f3f83b162e7c78e8a3dcacdfd67dd9491f8121f2fn/a Heodo
2020-08-15ptyl7uk620773275.exeexe be79afba241aa6bf38167fa1b90a7614bfdd7725f75b7c991968554cf6484048n/a Heodo
2020-08-15dum6gymt4316689606.exeexe f44543009ac5e14aa4fdcd0503e60a4f8972f31dc3a08f450518671106d34663n/a Heodo
2020-08-154zic3z6i4005279.exeexe 9452e3994d2141b7200ab579a0c13ee3f7aaf1e8b21a6c6ab6510b7fc387f464n/a Heodo
2020-08-15h3f7nn9696181.exeexe 43a8485f57a620cc84ec3f186ba949f39f6502cbfe8e25ec34dbaa46edb13148n/a Heodo
2020-08-15ji2or5023382742.exeexe 6e3d6feba4689a369867fa3865bbb63906b4dedcc4020de2a85212cb76b4bf96n/a Heodo
2020-08-15gbj2yq5p9.exeexe db8d4bd6182b48669ea43ba29d33767544434647072315ce4b8d1c329183ce53n/a Heodo
2020-08-15sx46g00677055.exeexe cc3e64b96f0fc18530393177e655795e9efe6b8020947f04e21b09de18491abbn/a Heodo
2020-08-15zcww421lwl9691236328.exeexe e1330ac6867756d528879cd0f5bfde31666380171cea1ff0de7d47c9aab0edefn/a Heodo
2020-08-15elvev7p4mp39900.exeexe 9a5b40b3a8ed74ce613c18bd008042a40893f925ebd3b896ac64057896e16121n/a Heodo
2020-08-15urhr375.exeexe a5b2c1dea28d62bb604a3ff0c48d94f16072c81af6cd5fcc58d3c56e50b48687n/a Heodo
2020-08-15auq733.exeexe 0a2c146c280ff786adc495b017f8b04c1e763048c65f2920ea40de76f6648aa2n/a Heodo
2020-08-15c0rkesgcw561502209.exeexe 5af20e4ebb65bce97bb6be06bc69c98efb921a1d26f05ac5e35d6ce9e629d290n/a Heodo
2020-08-15qafqwoti16.exeexe f5922af03a8d6123d3c55108a23e98113caf921b00755a9138f1ff990a2df392n/a Heodo
2020-08-15aft41.exeexe 3efb4714d20879b0dd10c715bebec4c435461fc06869673b24b2621e3b471d99n/a Heodo
2020-08-15a2yfo095g8.exeexe cc3f91e4c0cb14f43261939eb2192fcebf8bcc8c9eebc58bbff15a33d8ed80d4n/a Heodo
2020-08-15fxg6uwkh02.exeexe f2a083cb55ea00006fc5718ffefc060dd05932643b97bc1769ca71723038ebban/a Heodo
2020-08-15zjjrwegtzd276510.exeexe b0aa063f6a1a76dcc7043ae0580566b7b771a66bd43660bf97df2fe667d0b212n/a Heodo
2020-08-15c6tv1cd1jg49.exeexe 54141ab55101037dafcd1bd4691c120d67f349484217bad310272ab9eb71aedcn/a Heodo
2020-08-15yka3eb27010294.exeexe 1b1e31bb034b17748ba8f94ec5eeb4cda05b112b91d0969db0a3be105b5debean/a Heodo
2020-08-15oykkk09537048.exeexe 3c1271f04eb27a5733ca6a6ea30a78633f41d917341aa468f19dd9c547c82f11Virustotal results 20.59% Heodo
2020-08-15pctoi9o06783336.exeexe 83811368abc087057696bb878982dcbb7656ff899f7e8ed64c920cd73d3d5fa8Virustotal results 17.65% Heodo
2020-08-15apj0wsc6103495.exeexe 870491199a3830d9d2f707b22a28f8ef4a51b82738e80ea6246928c81bbc97d1n/a Heodo
2020-08-159phll69i3711594.exeexe efc3a04986688c4666b6fdc436a4539726045b835948701a092f241a7cdf0f07n/a Heodo
2020-08-15gfbi408917223.exeexe 70385e695a0532fee7555e5b97a6e0b42c2f47b496baa81837fe82fef7080f8fn/a Heodo
2020-08-15e1m193.exeexe b091e5ace8fc562b12880b47e192be7199f813df2245211b4395ed2f78e48300n/a Heodo
2020-08-152u8936.exeexe 9b31a56b71ccb1294c88817ff119927710390023890189833f1661367d46fd68n/a Heodo