URLhaus Database

You are currently viewing the URLhaus database entry for http://logoonthego.com/cgi-bin/6/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	436201
URL:	http://logoonthego.com/cgi-bin/6/
URL Status:	Offline
Host:	logoonthego.com
Date added:	2020-08-18 23:01:20 UTC
Last online:	2020-08-19 13:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU002874757 created on 2020-08-18 23:02:14 UTC)
Takedown time:	14 hours, 20 minutes (down since 2020-08-19 13:23:12 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-19	HK04.exe	exe	ef494c1cb8fb348733dd59a18c8126d44ca99ad846c6dd056a784335c96a471f	n/a	Heodo
2020-08-19	Dla0jEUEV.exe	exe	2d130a499e7579c36346420017babe9609f0663868e37befa3d25a369c404206	n/a	Heodo
2020-08-19	HswVnpqvaiu9NJnJW.exe	exe	97aab997404c97726c61e443654740137965e3b9cb2a64c86dcb012f488910c5	8.45%	Heodo
2020-08-19	oaUsmaD4Ru4880g5QG.exe	exe	0cb33d385cd64501f8c6c69c57e6863df82bb7fb3c8f6a68b955f8c9ac1ff672	n/a	Heodo
2020-08-19	zQbdPqKUIOD.exe	exe	b6604b2fb15ec58b0687efde2900378646ee2d801190b258c94e1a43208c0833	10.29%	Heodo
2020-08-19	24Lld8A2Xc.exe	exe	caaaa50efa07e201338d9c47a2b1786632ae36f29b06d5ac2b2030d1f22b76f9	n/a	Heodo
2020-08-19	tFsOyr.exe	exe	53241711ea45cff0b3c15065351dabb186a192db36ca219de7dcac3dac68db60	8.70%	Heodo
2020-08-19	eCRNIXnLv6OIHjRmBov9.exe	exe	341b46fc2b44989ea3081d4b319751b9ccad57b5d35e3609b9ecd090f06c7b85	n/a	Heodo
2020-08-19	9wkSKWvWi2jT.exe	exe	ce326e454b9ffde74986c78d05084216b66a7f27e502327e8187c07f874d9d0d	n/a	Heodo
2020-08-19	zuH1v.exe	exe	5d3bf34565a924ff53fa6b12c5aa6be73dd3c68aaaf3b9a8d808c203aef85bcd	n/a	Heodo
2020-08-19	8ZwbknALiV.exe	exe	2f84f38099c77a0d5a3e506a06d18fd317aede88e8ca882c8fa5cabb9eeb5d07	n/a	Heodo
2020-08-19	riGWvakZ8PJimuCWAsH5P.exe	exe	2824d970721ddbed1dcabd669d9e461c9c3e1207a32f2ea427b65a63c8ef8118	11.59%	Heodo
2020-08-19	8HM3dm.exe	exe	b089f43d6a4ae20cd661b7b60e3977f07d4290f4cb0b60313ca566618c24c49f	n/a	Heodo
2020-08-19	1xwVOaBZQkIw9uIYmC8.exe	exe	7a55da07448a66ec8397a6f256184e85fe4ddf2235958e823e9ca68b951f7b9b	13.04%	Heodo
2020-08-19	DQBu3.exe	exe	68a339f679834d4e3468da41bb2912f115d935924f8b685560260c6e55146154	n/a	Heodo
2020-08-19	NiMCD.exe	exe	59094c42194e6134006bf5445ca91e105dad2f9d9e5db45ad8af745dc21a4759	n/a	Heodo
2020-08-19	o8J7z1WC3M.exe	exe	298fb4a96b1a949ad2524503599bc03eadfbdd617cd257715b10326326ca5ab5	n/a	Heodo
2020-08-19	iPcoGR6PdhTTa85bNnYv.exe	exe	eadd0b2d1f1e01dfa71d1f8cd9a898f2225d42e2aa3e36c73883fe41ec17b114	n/a	Heodo
2020-08-19	XGOSb.exe	exe	514945b4068acb8b4537f462dd5e9501f0e27ec2b2d4c8dc6f137342549535b8	n/a	Heodo
2020-08-19	OJyVip.exe	exe	7fe717bf98bb14cfd248266ca456c0c5b8ace885a7c9b7dd47ad31a8166120b9	17.14%	Heodo
2020-08-19	f0vr.exe	exe	32ba639454033dfc617a1fc184ac282bb3c56b6b27599b0752ce897466acd388	n/a	Heodo
2020-08-19	HCXRWYXZT97F5L70wY.exe	exe	24f69baf3938d5b14c32a875b83e2825f27242eedef732ee29aa85a777e32030	14.29%	Heodo
2020-08-19	x3xaaIuCqKpQYPuQph.exe	exe	434421c5f22761c75fff3a3e3955b48d2799050a1361777b9b8b59c0a0214ed1	n/a	Heodo
2020-08-19	6Nv0q9YO.exe	exe	f8f6436c2b1475c5790f98280ee8dad9699d56c248e79c4d13785597bb59ab32	n/a	Heodo
2020-08-19	Cir.exe	exe	4949ac3bdcf78b06f30f17a1df753dba3ca5248c94dfbd8a4a973e2b7358d953	n/a	Heodo
2020-08-19	rq1IM.exe	exe	83f060d2ae29e520d474cfb157e01cfa725abf860506beb146c9144b91ed644b	n/a	Heodo
2020-08-19	TJ3XdwshWfuDRmKw.exe	exe	ec1239b5a719c5fcdc8280a28a681683aaf773309c832ab8596b96d5fef984bd	n/a	Heodo
2020-08-18	ba9bIIM.exe	exe	8d6e074645164b2227b29841256ca8b8fb43a92366ffdb72b84d38b0b3ba8446	10.14%	Heodo
2020-08-18	ZU0L.exe	exe	21913cf9e567c74bffa3f5a4bed96315e76b52dd6818ae37d200c109aca7ba37	n/a	Heodo
2020-08-18	Gitbupg.exe	exe	5c9fcbbb29b75d592d1049c96f4916725115bde382cbe3d44824023b38eb8556	n/a	Heodo