URLhaus Database

You are currently viewing the URLhaus database entry for http://avtoshoolvsa.zt.ua/bin/N/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	438461
URL:	http://avtoshoolvsa.zt.ua/bin/N/
URL Status:	Offline
Host:	avtoshoolvsa.zt.ua
Date added:	2020-08-21 19:09:05 UTC
Last online:	2020-08-23 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-21 19:10:06 UTC to abuse{at}thehost[dot]ua)
Takedown time:	1 day, 12 hours, 9 minutes (down since 2020-08-23 07:19:15 UTC)
Tags:	emotet epoch2 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-22	TTxSeCF8633TRp1An.exe	exe	a333105a7ef470486d2e4b67a26f040fc55999f79f3a2b756ea3798d8b2ce8fe	n/a	Heodo
2020-08-22	D1nXAq9xNk3z.exe	exe	ffad1ae40dc3f34a439c7b7bec3d70b7f16dcb1217ea27404de0368699f11468	n/a	Heodo
2020-08-22	t4.exe	exe	a716099fe253f42f57f35d45157938c7602f19978f6ff59cda1c31ff242b6c12	n/a	Heodo
2020-08-22	T6yPepNIaxEXQwYcWy.exe	exe	50322d7da88c6c013d8b22d1b51ca022fb2345a9552598bbf121ee122285c205	n/a	Heodo
2020-08-22	ZNVaUADGxpQOWxxlwSc3.exe	exe	cc337c9dc53b5e77294cc63d9e803db0a1fbdf2d9ccfb52a8f5e618da6b697d7	n/a	Heodo
2020-08-22	Y3K9r2.exe	exe	1599373befdd5fc45199dfff0ac981d00736835e3a945b3cd487557f843ecc21	n/a	Heodo
2020-08-22	sLZ2RDIhMB.exe	exe	4b83e65816c0daf86cbb8086df0cedb0013ed148abc4c93ce48f0b29d050444a	n/a	Heodo
2020-08-22	TB.exe	exe	736fb25f7aa1bca8f2e8bb2e205b9ae5411f2a943518ddcdecb13317d73f8ed7	n/a	Heodo
2020-08-22	3jvE.exe	exe	a3f727e6b54b5e14b1de3450570f68dff97293f9c62cbc16dc49bc67ac8aece1	n/a	Heodo
2020-08-22	SfwsVnoxhK.exe	exe	562b40615481eee82441676c855292a7100b854ea67503a1376b349eb23f7294	n/a	Heodo
2020-08-22	tpuoHLEJ403PNw.exe	exe	c78be06314ca99d26238d8e77920ecf17ce2276ea1befac4eb3dc88b35aec562	n/a	Heodo
2020-08-22	RjPB4gCNALgAk1UgpB.exe	exe	9132ad12a28d7e8d0d29c34d93fc67106c06e729d8bd7d162cce2b437473951d	n/a	Heodo
2020-08-22	97TsW2pwiE.exe	exe	eeeaa117f2b9bcd0f4e1253362156e1bfd5d799402ae811177f1030e8c32f446	n/a	Heodo
2020-08-22	op41DZTxI7yoqoY.exe	exe	ce9ece38f91e27c0f7044c0e173e45117c5a842cf68cfbb1ff2cadc24e2fb731	n/a	Heodo
2020-08-22	29qqNQac5WvveFDpY0.exe	exe	66864ce160d376e0b2e8888325374481781725cdf4c21574251c0335ff975c13	n/a	Heodo
2020-08-22	zQEvTZz7FAx.exe	exe	01e0bd0ff3ee7ec4ae1842b82b5dbbae6e1a24e72084904df599fa237094937f	n/a	Heodo
2020-08-22	tHf1LOqYV7zdERO.exe	exe	e522b62ea2f68026a8bba818a47ec70fd39733a1b23a6903a5a8adca5027a552	n/a	Heodo
2020-08-22	mUZ9GGTFaq2SYC5HT.exe	exe	5951d3bd2c27e240da95ce67170d525835608c5a34badc6843c1fb11eb725980	n/a	Heodo
2020-08-22	I1Sv5H5tc0Hz.exe	exe	86c333f3f9bfb342949c722b6cb239944b9acd9fea761f052d72f9104bc5f413	n/a	Heodo
2020-08-22	sb7LJzkj66OTjD.exe	exe	730f5292992cf8f2aa0162392eca9d171d83c8bea5f7e37e99a275131c539716	n/a	Heodo
2020-08-22	BrEkX.exe	exe	39617c01064ffecc9d92e39da2bb7c90c96da9dc517789b05a0ca35dbb447f9e	n/a	Heodo
2020-08-22	LNgs7cwvK.exe	exe	06997e7ceaf5c5877bb6b4220b6dabee57b1564eb5df55bbc5704dd2e11daacd	n/a	Heodo
2020-08-22	cYehh2VWpApn7TTPdNx4.exe	exe	aafedcf34952ae16a29ba0d4fd7e93b6d4469dd7a1727d7696ff460b74582119	n/a	Heodo
2020-08-22	WB3z4weS9Jt4Q2nQu4.exe	exe	7b003f6c14cd555a7f2ffa076615d2a2ef757b9de8468ec5c757f53d0fbbf33c	n/a	Heodo
2020-08-22	FpDUmXn8KbeAC8.exe	exe	2436d3ae9d395fb82fe44675596556594c635bee401222ef54793e658b6b0171	n/a	Heodo
2020-08-22	8IH6nGXLzpmwBH.exe	exe	ee04c65cbdd779ef3b0561d4f769ea73945542470088acc5ba35db3ca10ce6fe	n/a	Heodo
2020-08-22	L77qpD.exe	exe	ad947de263ae4e2a09a22712642642ebc6e23e442c09a480f25c370385548352	n/a	Heodo
2020-08-22	FEe8AMDrWPWdF.exe	exe	989d4f1a6b04a3156cb0fcff0446d65032e99840ec00d5064cc1adb215748844	n/a	Heodo
2020-08-22	3YksS.exe	exe	97378158eead86491572009a23ee8210023749adefd067e2d218757c4d6a88c7	n/a	Heodo
2020-08-22	g.exe	exe	4ad05b823cdff6d771a0ba55e58c8c1a1977d0ee8c7e1da7fd97190b8994a064	n/a	Heodo
2020-08-22	bkp.exe	exe	a3ea2000bb27f123e78583056956ad0faccabe7082ef6de69c90cc03aa734410	n/a	Heodo
2020-08-22	tWb7LDialtl2G62kKe.exe	exe	902dc2f454b61b97e260e5f59b4acc2577132d678bf5a902414c0abac72cb216	n/a	Heodo
2020-08-22	z8SYEOT.exe	exe	aa8ece07d191951b7cdfabc7bb8620452b6894ed85901866e15276b154782ae3	n/a	Heodo
2020-08-22	lOBC.exe	exe	07e415290110c7110955cb57efe1418b160e9a6f83a9efb07cdf216af7123da6	n/a	Heodo
2020-08-22	JqU8.exe	exe	ba7434d5c52ecc8d3d3110296d6ba4c12c098c9641a033c49464ce02063a3d3e	n/a	Heodo
2020-08-22	LbNegV3r1V07iJqOe.exe	exe	de0315aee75b3ad4e7582b5220398141523d192ebc508aeb37cba937bf7b087d	15.94%	Heodo
2020-08-22	AFiKR.exe	exe	05596bf670f45b84be646b5bac571d747235993bf1ce0198b54eac5da9da560a	n/a	Heodo
2020-08-22	jniCkxy.exe	exe	a1761001ddc70aad34fc46e5529ea27dcea2cd350853a1290b1bda0f4c15e1db	n/a	Heodo
2020-08-22	CkLCPF.exe	exe	f4ea4e1d6e3b35830f0e9dc5d8cee4a98600646c2e4d7041a5bb89ae2bb4626d	n/a	Heodo
2020-08-22	tX9Nec4qQJZO2qt.exe	exe	b30f08ba19830608505912b4eb76d9c917a7737ff2464cc714a1ddb0f561c2a6	n/a	Heodo
2020-08-22	UUR0lLmvk.exe	exe	e0cfcb790bec2027dc5c8b02994f7cb02cb37d81e864b9b92c3ad2b1fae95c98	n/a	Heodo
2020-08-22	5N7gTvDhXbgVM.exe	exe	5dd11954125bf2934422d1a33c9a1c0ce911c1ae9c31f4ca526326bd073a9769	n/a	Heodo
2020-08-22	1IEzdpJI5KZXn.exe	exe	8b52144b88051a5b771d3ef2f5f5211a28ec4d371e833eeb2889a5fee724dd8c	n/a	Heodo
2020-08-22	s5oj4Svx4BfI3yQnH.exe	exe	943be6f6d4e97408a745d3d612e79842ca73e4122467997b5b1cba89413c0919	n/a	Heodo
2020-08-22	Mpw2Jkmfwq.exe	exe	4eadc30c2f54dac6a26de6713d195f6d74413fdbe04b248518ed303c7d19a5c7	n/a	Heodo
2020-08-22	xNe.exe	exe	bc636b04290a65a6a57079dede633f9860d1527573706c320e2c8621f9da277d	n/a	Heodo
2020-08-22	SjB8bR5vaPXCNiCa44o2.exe	exe	88781fe53915ccff731a208985c6bf44f6ef9162559376d27e1b5ebd894c3972	n/a	Heodo
2020-08-22	nkQLekbRGFowhtp.exe	exe	9dd018d5429d3f370fb3da0e4b7e4a3bac02dc5d358e5aa559915a3190073bec	n/a	Heodo
2020-08-21	rr6skzykkVnj.exe	exe	5ab571f6a34c72fe8d9aac5e324f286d5c0c003d5c5810a4ee10c861e4e56a69	n/a	Heodo
2020-08-21	d.exe	exe	2c8424375fb3bdd4b61ae10f7630beecff7abc4f15c4893b4d880abc1a7fd6fa	n/a	Heodo
2020-08-21	u8iFVIlT9.exe	exe	250ba75646f40f59105872e2cf496211bbffae068f061426e3f89788e84c51d9	22.06%	Heodo
2020-08-21	CUuB.exe	exe	07a9712b695bf7107e944964cb6253d50c7313046e005de19636017ed6645116	n/a	Heodo
2020-08-21	YO.exe	exe	3434ad2a43234894f03c07c29bb0540026538208ba98639cd807a9c3b1de3cf3	n/a	Heodo
2020-08-21	1WXnCHDFRwxVcqe2M3.exe	exe	29a69a67a657982099079b81fcc690e47cbf5549f93d7f1f6d72c2341c28d86c	n/a	Heodo
2020-08-21	d3xYJg.exe	exe	3926b9a91e873d992e0b9ee764122d61a412ff83416c252072fc55b7777e1b5c	n/a	Heodo
2020-08-21	BjjX.exe	exe	474074056d2a15264e81375065ede6b2be61051208fb35eef53c1238f93eaba3	n/a	Heodo
2020-08-21	JIyuxbuaSZE62iuX.exe	exe	4f775b35d771e53c6d0979b56a33fa9e4d398be7e98e3754ea023626df83d391	n/a	Heodo
2020-08-21	CxGvQsEBNHTXff9OKC.exe	exe	d5506f84b75e0b7c40e3b2137bf89e2393185891beac484e76733eed9e1904c3	n/a	Heodo
2020-08-21	LCzJPPyqNO8ooM3UoC.exe	exe	c9d23b27a004a81d99f6132e0d528fa01375334f12803eab357958671141061b	n/a	Heodo
2020-08-21	5ed9Ad.exe	exe	2a04f1928b54eb1a20ec154c7caf18983fb292ecd711fc97621d295247eea6d8	n/a	Heodo