URLhaus Database

You are currently viewing the URLhaus database entry for http://zgtaiji.com/uc_client/a/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	444536
URL:	http://zgtaiji.com/uc_client/a/
URL Status:	Offline
Host:	zgtaiji.com
Date added:	2020-08-26 17:07:51 UTC
Last online:	2020-09-19 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-26 17:08:05 UTC to abuse{at}tencent[dot]com,abuse{at}qq[dot]com,jsquare{at}tencent[dot]com,dreamsruan{at}tencent[dot]com)
Takedown time:	23 days, 21 hours, 13 minutes (down since 2020-09-19 14:21:29 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-28	UQ393fZ.exe	exe	19040b376231cd1adfe1cbc07926de824f59fdac0c9c9cfd3cb147bfa69d5ca4	8.82%	Heodo
2020-08-28	S5HteTW.exe	exe	c836776efc1f4072446764acec43037bc7e644b8f8b308de0ec3daee81c9af11	n/a	Heodo
2020-08-28	PJIxNPKqRsmJ2Tq.exe	exe	2811d40c7211ba38e3666f6f234e507fdd803e3c5a7a95f86a181a7ecde979c6	n/a	Heodo
2020-08-28	uMNDozxE5.exe	exe	f72ef88c9b597f77fe96a8e708836339ea5572563a08abfaf7dbf603c643734f	n/a	Heodo
2020-08-28	4uZLS76WT3yL4J9e.exe	exe	8b3ac2cc951da62cd28ef1b7a4064034774a777f8b53d925cd75ac069e5af371	n/a	Heodo
2020-08-28	XZewhwonp5CQqLahQs.exe	exe	08ea846823072ae74b5e24aa869834b3b1e04f8b881dfc2a63601d6c392464cd	n/a	Heodo
2020-08-28	QlltYOUCwSRjml59.exe	exe	5fe822849d8aa81106c534bba9c36e666dd7a1f0318735d5015d2faef23811c7	n/a	Heodo
2020-08-28	0bqJkeK7or5LClubAfs.exe	exe	57bdc110d398b550b99d5085cba2b80c031d8e7eabf07b4555596dd0bada2626	n/a	Heodo
2020-08-28	4nJFPK09d.exe	exe	f0377911b646365554d3f6a4080bac63ea4f13466c071de0f731ae8c6c5c4e54	14.93%	Heodo
2020-08-28	NwqwZaiNOdKdgQkjcKI8G.exe	exe	6834c64332aa5f5b31cac8afe1b395d2c29288674068ba26a1540e3034c7a7a2	n/a	Heodo
2020-08-28	lxlwfnlqOKO.exe	exe	1288c83058f793123f5d8ba3be2ce549bb4be361e277d063332e5ced03a2378c	n/a	Heodo
2020-08-28	g5QCMTAxVLzofBoId.exe	exe	ba9eee3c2a748b995d2bbeffa2348de85588e184cd501a34a26f669054c9a42d	n/a	Heodo
2020-08-28	vKvHAMS.exe	exe	25d1965b398755a28a7dec4eabd128f53b407416954e765e7e09525a4fe65d06	n/a	Heodo
2020-08-28	7lSuJEbZUnS9SaFiSg10.exe	exe	84f0b952645c31da26de5420684d53b8331c1ba89cbbbc57e9a3d83c9fb6ebe1	n/a	Heodo
2020-08-28	WrJCY.exe	exe	8bf83dffd2e8f894884144322b02f8ecc28a2f65317a572f035ca08a1d646373	n/a	Heodo
2020-08-28	Amf1lwZ4akt1bE750Kk.exe	exe	f183afc0549f156e7b11756a99deb25c86d1ca39d6c5d236fede6c43c56323a6	n/a	Heodo
2020-08-28	KLc6XKArWd3hOFIKcOCax.exe	exe	00631fa4d38c3b257219a9b9b0c89dbbfc51fbd7490b57f3278bb7f246bd0529	n/a	Heodo
2020-08-28	4yUHl0a2Ted3.exe	exe	e830bd993810d52b2219662edf87c54a6e68e5ac6c9aa0bfb605e7907a10ca2a	n/a	Heodo
2020-08-28	sf2.exe	exe	60f29f44b83b2a0210feb932142efbaed8a16fb2d5556d1b3c2e231ae77dff9b	n/a	Heodo
2020-08-28	zpCig.exe	exe	4ec23fd0af88713ffa20f3fd4437d057eb1d862a8bf1c6219736dfbafebce05e	n/a	Heodo
2020-08-28	6yl08v4.exe	exe	bc04bd1850302e0d8ed97c9015b383d087e5f865289c9c49cc801b3bbc5ce1da	n/a	Heodo
2020-08-28	BZFRlroCp.exe	exe	4b528048883f73e1a8cd371e202d72f18f781045e27a8d3bcce99caea2e68d3c	n/a	Heodo
2020-08-28	77wWkF.exe	exe	6282fa2dd47e3f6a2f4f7b109e3dc760defef478df7a9ec5118e4c0c0aaf8deb	n/a	Heodo
2020-08-28	77wWkF.exe	exe	6282fa2dd47e3f6a2f4f7b109e3dc760defef478df7a9ec5118e4c0c0aaf8deb	n/a	Heodo
2020-08-28	jpq.exe	exe	efafd35365b51ae03be070d0336ed19a8008507116d511c59d33e607549ce016	n/a	Heodo
2020-08-28	9sm34FsnxPK1wdNcD.exe	exe	8b774848cbb8333d63b3fbcf92498bdb33aeda932dc810ca546bc5fd3f255e31	n/a	Heodo
2020-08-28	M34Aue97h0u9Xilnd.exe	exe	2c5611be868b5f4977009970a3af4c98767a2b3762581025f33eeba3ef065df6	n/a	Heodo
2020-08-28	KBIhQziTReY.exe	exe	35f272634422268fdd44a14d1321f68d3d38a7402ffcdda84ff7a5adee53e85c	n/a	Heodo
2020-08-28	YKYLic.exe	exe	d748472909ca5bad52f2fde28c5263ff7c26fdef0584ccc55a9770226dc85f11	n/a	Heodo
2020-08-28	WH2z7gFWPSEg.exe	exe	0bfbcc93ec0a1c591bef20f671bc7847af2e76cff7ac418533583639c6676fdb	5.71%	Heodo
2020-08-27	LoOsgGMc.exe	exe	859a9f8ba9beca10d43dc25e205a50f4aa5bcd8c130bb03733ba21534abb424c	n/a	Heodo
2020-08-27	1bI1PS5wTdryaIjD.exe	exe	649cede978704103d1485aeb7348e67c855de2f566376e373901074d0b457fcb	n/a	Heodo
2020-08-27	JBzsstpVpnhxR.exe	exe	2d5fa71ec42c1a7cb5fb43fc956d9857a076a02aa6d191157c9f5bae00c14f71	n/a	Heodo
2020-08-27	VYbFfYrCug73.exe	exe	c6c09d1cbf9908ab7736f7c3a73ee216b5e1cfa1474c501f6c341c9f6ead39ff	n/a	Heodo
2020-08-27	90SoQ.exe	exe	1b2bfc99f0f649c33d09b5967c60a35b937d267da9991e3c5b79b35c1aeb2db8	n/a
2020-08-27	BEFAN9.exe	exe	b5af94cb2b061ae4d8f217629fa41f9e68588307c3509c1e49d7fe2bc0f4914d	n/a	Heodo
2020-08-27	RLsnt9.exe	exe	21662f8a24f03e71f6006e5fadfd8ba650d6fcb156bde098dca0cb6bade61c58	n/a	Heodo
2020-08-27	t0cFePdiI7Nk3.exe	exe	f04f7a03beb1042cfc8c2f75e4b79f41d939f5255105191c68cd25ba93c483fe	n/a	Heodo
2020-08-27	rohRXJvMYaC4.exe	exe	3a5207b7434248cb6dd3415ba1095ae446835b35b6952662508701c83280906a	n/a	Heodo
2020-08-27	QsrDKEnS4ntME5z.exe	exe	c0a2a27ceb7906b20b67244554333832dc4b48094a5772b67e46d9f264a34814	n/a	Heodo
2020-08-27	mYcc.exe	exe	c6605abb3679d2a115dd65ce909842db860292c64d1a52c0aba81359111cf475	n/a	Heodo
2020-08-27	6VzhHXzqMuTf8TKKGt.exe	exe	802a509d62f824ca0da90b58e0537fe764b9a905be16f1a93c804f81416590fb	n/a	Heodo
2020-08-27	C8Hbo4k3fGYh9InhNA.exe	exe	d7cd0170eaadf3bd20954c34248f8d546fe4fd0a76f6dc6d2cdfa37261e12927	n/a	Heodo
2020-08-27	87sAI3RJcMyQJJPAQF1.exe	exe	8827c2cce0a734516f6e9bebb8c0da9821a1377d7728c61d995f0977291e7763	n/a	Heodo
2020-08-27	3kdaivHWyDaa3lcc7f.exe	exe	86f1c3ec62875bca16b160378d2fec6294d9044fc756318a0d398467f8267dca	n/a	Heodo
2020-08-27	1xU1DuYpLA9WpSXzzp.exe	exe	129cce9b561db71521ef5e0a4a56548bf4e71bdd83cbdf4639376f4510209596	n/a	Heodo
2020-08-27	R16.exe	exe	1205c14dc13f6512beb9e3770806ee9a3b87a5437867b96c85fc98516abb634b	n/a	Heodo
2020-08-27	F5G6d1IsmY.exe	exe	a8d13fbeeace0c571ac8650ea8b5ddf4f27cd9bc1d21097837fa3866f2c0e0bc	n/a	Heodo
2020-08-27	FzG2Lbdm6.exe	exe	1f0ea0a1bb20a6409d9f104079da01d6c095f6628763378582ebd664b95c2304	n/a	Heodo
2020-08-27	CDzxXMBs3xg5w.exe	exe	55f003c2420a447e920678d3d0b083afb00ceafb69e57d9556de7d261196ddf6	n/a	Heodo
2020-08-27	dOpOG6A3Y2UNFELT7.exe	exe	557e020f2be75550187e7c4773af24233584c1e3cf5f8686570f28af431f8961	n/a	Heodo
2020-08-27	7nVZC9.exe	exe	a80092b1ba550976aa913b1159a8427712bbc674c88badc8548ae0de578ff16f	n/a	Heodo
2020-08-27	x50vizQ8sVZPoMS.exe	exe	9ba931e5f30b8268f04925f557ae62ad052a4fc87b616f9340922e878053af46	14.49%
2020-08-27	txURkImTqRoWFZ.exe	exe	2695b80fd4428deb92e0d9706b8e3d9551249ee538f9f7d518b2e1ceb123c9e0	n/a	Heodo
2020-08-27	ygkzp.exe	exe	e5993769797c4c1da27ef5541c050e0fe2264347bd8f1be92214a9e2abd6d110	n/a	Heodo
2020-08-27	36op9w1EC5R2lL78vhi.exe	exe	901db779c0d8863cc0d7ba16edb5c39a34e355427402aff344b5997a59a46b4a	n/a	Heodo
2020-08-27	rPwdURY8bnoI.exe	exe	8dff7e929a71b3ad64e2f0ceb687262c7b16c08d37f79958cd521e01aa119de4	n/a	Heodo
2020-08-27	GlFkJ.exe	exe	9734299bfde2d86d267066edb7692be24fc1faf80764a3e9a5c59de81dff91e3	n/a	Heodo
2020-08-27	WFLfE.exe	exe	6ad63a4d1bfc50edbef57355223e3a734988e60fa679de9fb8fdeb5e14c7b4f7	10.29%	Heodo
2020-08-27	IIZPEPT.exe	exe	c19cd94f90ecc6e64ea21486023dc53f2b00469a6fc1a41c349f6cdfaf113890	n/a	Heodo
2020-08-27	5LPfrD90t5sGmHVubPlS.exe	exe	c94f84ec31b9339b23cc8099c530c8d9de8992dfc6ae5af5a48ed693d7f71777	7.35%	Heodo
2020-08-27	cb4zUNexNFaVELjGb6.exe	exe	c27ad58ab758ec01c3627c8696ced15b0e4b06a0b47d19a22b295599d225f8d3	n/a	Heodo
2020-08-27	x6uZF0Q7DeS6wA.exe	exe	5a56e5ddc04e5007cf1b05d18ec34e2aed17d12bbac161782130f431726bfb3a	n/a	Heodo
2020-08-27	1jgq6IFpPR7YVjTLSyB.exe	exe	a4164ad540c46a26f65863c1f651c8aea3ac14666c27b4b228d7684c5b95d95d	n/a	Heodo
2020-08-27	Gxi7P6I.exe	exe	e7490504f704ecd7bba8cf265b9ddfa3cfda288a24de2d0107a385c75ae15a5e	n/a	Heodo
2020-08-27	Je4Y.exe	exe	624388b99a1ff116f4dc70b94dda58f8d517efee8fbe3f759e351c3a87e20702	n/a	Heodo
2020-08-27	Jfdf2yeeGN1a.exe	exe	1932debb9553e9318adb7a2c0b1b3693a946a1ffe554f5844c768d6992c9acd2	n/a	Heodo
2020-08-27	yQTuYDSjqGZxPI8l.exe	exe	3dd4727efd6d442d16f67a312caa287e34459de4b172c5922b3fcf31d255dda3	7.35%	Heodo
2020-08-27	H5rHoSHMyzmkKoQzA.exe	exe	c038896b38dbab7484ffae7b706bab457b76081d490b79e9046ae0bc3edb7e62	n/a	Heodo
2020-08-27	fESvevljtzUdyyMOWlXQ.exe	exe	43bf46a973277028329c52fe11a77ac7ea42d4c50fb23dfabdbc59f8c4ffad8f	n/a	Heodo
2020-08-27	54Bw.exe	exe	638b9bc4b421843c13a5a0a553632d056304b3e8cb027d6b7e8ee4488adc887d	n/a	Heodo
2020-08-27	xTKeW7RjDycqC1Wuv.exe	exe	f6c3d1569eb81d28231b16cc6dec95900bbae6e43ae4aa596cbca572428f23d9	n/a	Heodo
2020-08-27	S22r.exe	exe	6f86b4ac4e3fbd4ec64f6f5bb41f481a822d0bac4673e118d06c80cb3be710d9	n/a	Heodo
2020-08-27	KTwGm7CDHG09lad3wr.exe	exe	448e956f0e778e250aa3a15c021def5ec1468cd2a37cb32b5cc7a426fb3fd455	n/a	Heodo
2020-08-27	9B66L0OjhMcyHeTeiojG0.exe	exe	84b41503583dd29c4d1ca992bb04ac20f5dcbf513a0e75856600932a99faa8b6	n/a	Heodo
2020-08-27	GD3PkhaexdOLX.exe	exe	dbfb04a5829b75187484ecac21143d9388c27287672379dae985f8471862a76f	11.43%	Heodo
2020-08-27	QSCOxROIdgI.exe	exe	47d629a9b4cfe33f95820ca8a4518bada272aa60411b788e3f422a9861f14b78	n/a	Heodo
2020-08-27	kFkxkkzYBNUw.exe	exe	c9f1e7a7b5a04dd82252b0890118223d97996512815a389eca3d81873d3d7471	n/a	Heodo
2020-08-27	BWjnmoCJJC8HcSZZ2haXq.exe	exe	97ea23848b1e835a250e131b120d1c5fe420b8b3e9bc743884dddd3acd6d323e	n/a	Heodo
2020-08-27	KHSXiHWUXiPYuetp.exe	exe	83e619b51776e242a0b5c68879fc01ac1c25c5ceb6abbce88c4c7c53ccb572bf	n/a	Heodo
2020-08-27	S9Zswtgr.exe	exe	f7d2def44f27039517d060c47c7571d738d5a269fd1770eca7469aa874e2544c	n/a	Heodo
2020-08-27	2IHvsl5.exe	exe	cdc0ded7ffda25329935e6837473b803e719d18b2681b2cd3f4f193f7208e3b0	n/a	Heodo
2020-08-27	z1k7XElOfB2mPuVis.exe	exe	8cfe078ef55b9e46ea35220fa19b40146f8423afe3fdc0a6c0682e00727ae672	n/a	Heodo
2020-08-27	y847zP66HHJCc6zx.exe	exe	18d3189ee7d082eb0c516954126a9c0af4ea24195efd1a20882ea44c2dc39198	n/a	Heodo
2020-08-27	H555gssIAjR.exe	exe	44fd366c98bb9a0383e65e88591f7f2abc6affb2810a3b0f9258649938aea3b1	15.94%	Heodo
2020-08-27	jvFX.exe	exe	0a669deb9aad7898d779eb635b5fb0da1c049b72bf1806d4d1790109e25ee36c	n/a	Heodo
2020-08-27	txZ6R.exe	exe	193d233ffb10a39785ac5a0e562a989f02e977cc6862c032ec05cce16ef87ad3	n/a	Heodo
2020-08-27	FgQ2fIGkkk7Vggx.exe	exe	9c2d7d67d07226086e51152e3710e9d3b0c4e6de87f43f5722cd2a8b9fb94703	n/a	Heodo
2020-08-27	19zPjqM8Gt3FHXg.exe	exe	ff345bd58d067c08197086a9db0cd5c0940686a51c3d9a54dfe649af3c2d140f	n/a	Heodo
2020-08-27	qGnnvJ.exe	exe	9c030163916a674d99449ad11d90afba06854f2c580aed159677f83069fe1d38	10.29%	Heodo
2020-08-27	8rdvvMjcH5Fep4.exe	exe	e91bc397e5831382b444847bd505053eda8cce26329da8388be373fd83f6e9ba	8.57%	Heodo
2020-08-27	w6xOosLzdSsts5jjH3.exe	exe	7b34b4f24ddd91a76bcf1b19a5602610fe545bc651886cc3584598cce74c8a40	10.61%	Heodo
2020-08-27	DRrTEE6MIs0.exe	exe	4d782423a96e70b0ac2328901af94886b68e0b4a77625bbe6199fb82ab5f9e4d	n/a	Heodo
2020-08-27	0kixXlLcbPsZ0FAdP7v.exe	exe	ddc4a176e4823b19f68e7f74f01df277e9a454e8122ae1339ea7f5cd1ab937d4	n/a	Heodo
2020-08-27	gUiG8.exe	exe	34f5ba258892790f6ede83284487cb8f59fa5cf315034ca89570de988f8bb18d	n/a	Heodo
2020-08-26	oaaSg.exe	exe	b1e8c832ec06835c161caddcaff40be9740a33ffe0aeebdada7ee62141d7d05f	n/a	Heodo
2020-08-26	G872YxBFq3a.exe	exe	6162cc5842f91ca1b61af2b58e5bf04479afc73246a45a7c8aabea918d228870	n/a	Heodo
2020-08-26	lXINn.exe	exe	48316d1dfd7dc68d6f27bb4062906083021fea815da252d6e1ebf1318d1e71bb	28.99%	Heodo
2020-08-26	bO6TTy2TaEUy.exe	exe	4536a55e2bd1fb09639cb84df7dd12e6ae134fdd83d54f8a93baaceba696b932	n/a	Heodo
2020-08-26	grwCmRKdeeBBOiK.exe	exe	00553d958c3a20c31c699802a3eb16602661dd234e95f9ed76893d2cd1104463	n/a	Heodo
2020-08-26	yh22mZOg.exe	exe	4ac3a15b94666705d3031bd3d583a20c46c75c55e389215d87a63e3484bf19b2	n/a	Heodo
2020-08-26	8B9.exe	exe	d69b40d7c9249fe61f095852aa34ce102b8464d10669b5d49e9b38c13696fd4d	31.88%	Heodo
2020-08-26	5Oj7vzz8GPM7hmOOkRxLy.exe	exe	d2c37be13209a1e578b705191dd2214e22b74656e193e8cde7113051584d81ec	n/a	Heodo
2020-08-26	7ChsANztQDT9.exe	exe	39d167d7feab06e86dd756c9113baa3266f785adf0f91c41a9399dad17c3a476	n/a	Heodo
2020-08-26	kRLqui.exe	exe	e0ec8b5a1e8876284704cd46f7cab0d87e5771e476e292e4183f362056725398	n/a	Heodo
2020-08-26	ZRubIGv.exe	exe	a0bb59716e31f226901cb9f79f1cb1b5787fced6547a0b3d29f1e37ab20095c2	n/a	Heodo
2020-08-26	XCcx3vFOT9fKWJaHjTD.exe	exe	72f39d5a1bcdb1b76ab6bca3014d8ff1819b7dcc96a1e08ef61bc45044d75e36	11.76%	Heodo
2020-08-26	RWB.exe	exe	d65f3e59aa0ebdc1b140ca65d3ca9371a50e3f4a931f1c683758145ecf88254f	n/a	Heodo
2020-08-26	IQ2RtPYUpP.exe	exe	df0c31250ded0285ddd457bc50ce6ea56934b3963a109477e898af8d31d5d593	n/a	Heodo
2020-08-26	jA8tsobPnj7.exe	exe	6c04b46c43a75a1c79afaa83bae6379aff4e38175a65efbb7be7f4a5422801ae	n/a	Heodo