URLhaus Database

You are currently viewing the URLhaus database entry for https://nadgt.com/wp-includes/yRJiof/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	437508
URL:	https://nadgt.com/wp-includes/yRJiof/
URL Status:	Offline
Host:	nadgt.com
Date added:	2020-08-20 22:01:42 UTC
Last online:	2020-08-21 17:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU002878583 created on 2020-08-20 22:02:22 UTC)
Takedown time:	19 hours, 51 minutes (down since 2020-08-21 17:53:53 UTC)
Tags:	emotet epoch2 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-21	L9Y1zq.exe	exe	c6647da7a5dd4c4c01df607be33c50525f50d08b6a0989889a7399c482cc112d	n/a	Heodo
2020-08-21	zb7kdcxYqnnZsCuBzGr.exe	exe	f29b68572bd459d955281213e1dfb77105cfd0f08d85acf258654853937b87aa	n/a	Heodo
2020-08-21	V7XhJ6Ypf3.exe	exe	bdaea49026f89e1cdeac83b4e6c269ff84177ae1f6fd09c27aeb4119d38ea23a	n/a	Heodo
2020-08-21	hv8rYBJfaT.exe	exe	1908971918bf1bee3114ac50a5ffb45c97d466f724564796e31112484b596909	n/a	Heodo
2020-08-21	QVWjoPvjrDtR3fpkb.exe	exe	b1ba98994a40be8b48b8429db8ef840a122536618bae26e8b8d664747eff9e7a	n/a	Heodo
2020-08-21	mMqUoudJgBSzDO6f9Vs4.exe	exe	d263894127bc0f0fabacf59f9e7315007a84a845261043adff7cf13a140d4ef8	n/a	Heodo
2020-08-21	mib0kCd.exe	exe	0d69dbc0d69c7e52ef1d00b2a76ccdb83698ce5b8fb81eb9e2ee21f2c48ee2aa	n/a	Heodo
2020-08-21	A.exe	exe	1a5794b52b7a52c07468ba3144f58c2e89888eea1f6d43cd24ef9ccb2a6bf027	n/a	Heodo
2020-08-21	NgvR.exe	exe	10b305d617178223f410f2d86154444c1c5611714fcfdbe2c8e6ebc242d28f8b	n/a	Heodo
2020-08-21	vzWzwSvMJq4S1Xg1gtj.exe	exe	3af293aecb0034ae20b8de99aaee95e6ae7452de30aab6369d650a76a1ef0363	n/a	Heodo
2020-08-21	uSHKhf.exe	exe	25335ebc6163b86a0c7c2762ad9ecce63d0db24f87e3ca9055ec24797918cc77	n/a	Heodo
2020-08-21	lJLFH6W2wkkq7.exe	exe	e6f85d2826c229e24bcafd55a434278517d13ed622ea3872014b6a535859b91e	10.61%	Heodo
2020-08-21	c36hNcCQVUBjyqe.exe	exe	a2c66273af9d501a2bd97e07d9a3b6a97f3b74087402061fe763ea1a6fb232b8	n/a	Heodo
2020-08-21	y0uRy3M21.exe	exe	bdb2c01c9cd1fbb71be6928162924eb00ffa83136cc22b38222f4489ea286707	n/a	Heodo
2020-08-21	ebmBtrJTMLYEg255mibu.exe	exe	94e87463fe00c518454ab682c2434c9d270b211b11f1f40f39a7cf096d66b857	n/a	Heodo
2020-08-21	8Bgz6jHXatn4oWgx.exe	exe	394f96bc6ab924163aa439e7986a9be9e83c84780cb5ca50f519e582a5502143	n/a	Heodo
2020-08-21	6MVI.exe	exe	8c2ba710ac4db8fd8f6a809916538d57e8604cb4095370604b168ad3838ea146	n/a	Heodo
2020-08-21	gNR6VVPp20.exe	exe	4e0c38a65f4a7efb152ab93ba4e5e8ecf38874f9570e939aeb6a6264cea76935	n/a	Heodo
2020-08-21	2xcvJV3ZDnsHpx4KqABp.exe	exe	afcf600c22c880aded0130e9337a0316d25dee8c273802ba63979912016b66fa	n/a	Heodo
2020-08-21	ekem.exe	exe	c5f24368aba2324a2ce8b15ffc96d2875134a169bfe2c7426e013525678dfff0	n/a	Heodo
2020-08-21	fnvQqsbG5oR8pzS.exe	exe	5e9928816a21a0f51d0f387191e754dd181ffa5f011e691f4b946e624e8aa15a	n/a	Heodo
2020-08-21	ypwz6uALRaS1FwBDq.exe	exe	9cb1c21c1cd697d003e4031f9c38e98b70c8d09ecad436e0b6111b1987e06bbc	n/a	Heodo
2020-08-21	U1u4GLclqpnN.exe	exe	d26a99a887d2a89d736f408de84f28e3c4a7cdabcf8231df3228d992f1170100	n/a	Heodo
2020-08-21	zCSE6.exe	exe	63f66eae308bb3ca28518c105b2194855cc07279c5f250837940aceb7c5d8347	n/a	Heodo
2020-08-21	Sr.exe	exe	1812facd01267497276a6e63d7f894efb1153ae23df23fd8e37497432c03651c	n/a	Heodo
2020-08-21	K3l0KxK44.exe	exe	d74138c2ae662d238deefed300ba1be029a02b072e6f722804dd82db799234d9	n/a	Heodo
2020-08-21	zJQoYGml.exe	exe	dd8c9fbfe30e2d595a9f0af1c3d23824bdddcb9d62a0c18953e9c1a3165d4e78	n/a	Heodo
2020-08-21	vWh.exe	exe	56e3828b9d9337090de8b070e1cfd18001fa73488b537f2c285d2ad1522dedd0	n/a	Heodo
2020-08-21	qUZH79T.exe	exe	f3ed6c58236601a32f53b912ca9a83aaae75afb56326338b9e38dfea4d7263a3	n/a	Heodo
2020-08-21	YxX.exe	exe	4904d353639e3e44f239d30114a05f2f12a465a9b6d0f01cade8f9034452291a	n/a	Heodo
2020-08-21	jXkFFDR.exe	exe	b774629dee47a5472605ac7f888d658f47ad4fc7be92194dfcaef12e4d93ac42	n/a	Heodo
2020-08-21	aN1hfiwVOn.exe	exe	208b26ed410b16baa79d1a5860f3179f70c584cb9f7c43b0388abafdf6200edd	n/a	Heodo
2020-08-21	EohnGgnLlcDuzR.exe	exe	3feda03fbe8b846e5b394a18d8f3adc1b57c064f97c90903ddced752628e868c	7.04%	Heodo
2020-08-21	UzXUFlKiWVUGNJQs7VeZ.exe	exe	cf4f1d72260bf21480a35392cabe4871541099479a94568ee71eef6e4fcd7d41	n/a	Heodo
2020-08-21	5wDMtzOM.exe	exe	73aad8a3702b33b109ddb97491b017e85d026625d0240a8c12531937298b1ffd	n/a	Heodo
2020-08-21	gSPQquEK.exe	exe	a0670cdd528e982591757d1c82759582d21b042a518846c025c0a348d2d76d48	n/a	Heodo
2020-08-21	2xQg74.exe	exe	825c8c9052067c7ffa6baa9415676262e1d382b57128cff0db7964c90b650bdb	n/a	Heodo
2020-08-21	ucOjaE7cl.exe	exe	4cdce54622de795422caceccf8bc3a7e5e2e0a828fa3c527198d11139fdf0107	5.71%	Heodo
2020-08-21	W79rAYLsDW8joo.exe	exe	b18298674cb2f4a5870fda430e0eaa2dfe98710f5005cb952bc376e9c2de5834	n/a	Heodo
2020-08-21	fvbiu6.exe	exe	e5516435f79b2603c89f6d957dd61cbbee74cc121f7c67d26ee7e4db4f381384	n/a	Heodo
2020-08-21	ol5ySTOFAVN2u.exe	exe	5e19b332fb383304ffcee8095145af832a58256524196a70e9ee457769c78dd0	n/a	Heodo
2020-08-21	QNzv5rMdzm.exe	exe	0b672649ebd63964a39b63ea699173c1781069f5bb34b0ff22d1c68e6acf0254	n/a	Heodo
2020-08-21	L7Z.exe	exe	1d5908b396bf3785ef613a1a205768ccb2adfb20a25dfeaec7c558e7316e773a	n/a	Heodo
2020-08-20	m4UgeeVh.exe	exe	c0d9e5d35a5b9635a2a3ba2406ff343bfc8234c73de11b88a11f5da94da22ccc	n/a	Heodo
2020-08-20	BGui2TEoZ14HVyjD.exe	exe	59dcb2e2a8533dcf074c44053836d638d8e381394f806642d8ea62a1928763d6	n/a	Heodo
2020-08-20	3QZzeE9uGPQn.exe	exe	be66ee7ef23863a6b72d0266021693e714828ebc7ed3cc1175dbed5d6f955efa	n/a	Heodo
2020-08-20	D0.exe	exe	31760be5ba9b74c4a7160ec61d707db4e1c284e2edfd4bc992545332d312f984	n/a	Heodo
2020-08-20	1Mi4owHy.exe	exe	63d353c6aa5be1ed2be6f890bd78ac751564c2916463802eb0bc80d9700e237e	n/a	Heodo
2020-08-20	Vee.exe	exe	8e430d8593ea2b2ced8f3bf87685c687a6a7bc3abf188703dfa805b79922e831	n/a	Heodo