URLhaus Database

You are currently viewing the URLhaus database entry for https://gngtur.com/wp-content/mw/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	445195
URL:	https://gngtur.com/wp-content/mw/
URL Status:	Offline
Host:	gngtur.com
Date added:	2020-08-27 12:23:33 UTC
Last online:	2020-08-29 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-27 12:24:10 UTC to abuse{at}ni[dot]net[dot]tr)
Takedown time:	1 day, 23 hours, 25 minutes (down since 2020-08-29 11:49:50 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-29	oQi2Ta.exe	exe	5a94e15942e3af9f7d9e2f7ec49ba9ef09b6d0a84f6683640cc22a4970e07ba2	n/a	Heodo
2020-08-28	KsGUGuAR1CI2ncFUU.exe	exe	e8b09d8d7a51c3a8a5dd59dc62a4e227811412cdecb5748e368961b9be0a5367	7.25%	Heodo
2020-08-28	Fpu.exe	exe	0104c96fee7233bf207dcfa4bfdb46182e447aa790c02703b92b8315ce801e4b	n/a	Heodo
2020-08-28	byQr62lrCTHntsbYurrPn.exe	exe	0287f53aadc080232867554a82392274b79d8c2d18a84179832e6852043bc3aa	n/a	Heodo
2020-08-28	TKP.exe	exe	eb6f3a71b0abfed80badba4b98868f35c14053b6634be24ec12f9cdd92206e41	n/a	Heodo
2020-08-28	QPdrw0WeO.exe	exe	6ef9886e72bf085c810e01cfc51b514d0809e08483808415286cb1ac012bdd32	n/a	Heodo
2020-08-28	j2vCX91.exe	exe	6b7f10af3826af390e1428eb29de1652169b7dc0c3a9eec267b4240353ea3f9c	n/a	Heodo
2020-08-28	mBX7aF.exe	exe	d5ef6b74fd0618c9cf90e5aeb397f45e5d0409303d46bbe6216a7cac1309c0ac	5.88%	Heodo
2020-08-28	Ho5aj.exe	exe	37a863b038b244119d71627f795ce2f1a14fec3ff8232741b2064e6714f01410	n/a	Heodo
2020-08-28	10JqF.exe	exe	88ec685b4bb5f9f89ac0a99c80d643b71b3bf93b2d484c47021213f8e80a6d30	n/a	Heodo
2020-08-28	3a1MYAY7xmh8VhzCH.exe	exe	fcf3e1ae3346e8667e430c94f933c120bfc9df2afc49d1c7382696dd35a7e0c2	n/a	Heodo
2020-08-28	1LXchbC.exe	exe	0d717259210ea15c3265f6ac5ceb7addc55fee6a5cc3919907bbe6f3f04d437d	n/a
2020-08-28	8PUvOzxvhHgwBQc4.exe	exe	9a044d472336a93010b1c093d731ac1fa333a132fd1abebaf53a22a06c1417a0	n/a	Heodo
2020-08-28	A3Rpl0.exe	exe	ea745096eae46fb9bb7a4847e6bb2e71227fb8d2f16af908ebc41c364c05d12c	n/a	Heodo
2020-08-28	QVNxxSPcx8rMSVi1MbdYV.exe	exe	f521250fa52c9856e0a1022c2d8909587a8774fcb1449f2c0b0e9eed9d2bd96e	n/a	Heodo
2020-08-28	c98tuc.exe	exe	21def29800b2bbcdcb419566b7fa0b0e4fce8cccd83a1dc559e46103eb366bef	n/a	Heodo
2020-08-28	lBmgLMzrJ.exe	exe	33a4532f83aaccb42cca130629dd8ab79619e3144de27949e3af191ea4c044db	n/a	Heodo
2020-08-28	Z9NLHoR.exe	exe	7312baf58bdebb4e7de291cf0b7c5c42e362ba6bbe73fafb39fcc7289e9f5f0c	n/a	Heodo
2020-08-28	oUqMf7uCN4vxw311xL1a.exe	exe	855a0f3766a1e222f877be8996484cf88f30c9db4e6a42c2df1a04fba3ecba22	n/a	Heodo
2020-08-28	IrsTX4a3WQTdyBJ.exe	exe	eaaf387237c804a596257d4c39eabffd0cca267b515cca276b79f9d11091d073	n/a	Heodo
2020-08-28	Pk3NfHUaJs4S.exe	exe	c17610bd4cfd56ec7d47e5f659f0587077c27d423a158fba32e79e8425ca83ab	10.14%	Heodo
2020-08-28	HoO4dbQKNxijc.exe	exe	c0207ad6ce16ace46041a998dfbf83e6f1d688be5aefb9b8d94750cd5124766f	10.14%	Heodo
2020-08-28	DLC3D10FXF4.exe	exe	f34e8481d1a121b52c0af75a17462d45d32b5b544e615854425c3d56140521db	n/a	Heodo
2020-08-28	wKkV984Ybf.exe	exe	209eb4aded84f0a4e5fbd54ef52d6fb969728fa84f9941daef0c79cf6f08fcf8	n/a
2020-08-28	CfHO.exe	exe	8a26e9eeb700bb2261a132094489230617eab888cd6bad9ae10ca33c6adeb7a9	n/a	Heodo
2020-08-28	DoyAEzddTsgMAigy3q.exe	exe	a8ff0923f4f9c2bacaf6a3dff9cf184d209c5e1692357bc2637542f51823f87b	n/a	Heodo
2020-08-28	NXzzHbqdAmE.exe	exe	8f5d87f1dd344fffeeba1a742f7b57e4ab79f6371274525361027f18cee803cf	n/a	Heodo
2020-08-28	c4rw.exe	exe	f45bfbc4fa851b7f95d8229305f93255b5834b3e0781a16b68e5357df77dcf87	n/a	Heodo
2020-08-28	c4rw.exe	exe	f45bfbc4fa851b7f95d8229305f93255b5834b3e0781a16b68e5357df77dcf87	n/a	Heodo
2020-08-28	3JaYYOmr9GLCVvjk.exe	exe	2448c00bce836f39c6042da988f0faf0928dd4bef52642d448d1e057c7078668	n/a	Heodo
2020-08-28	IiRJ.exe	exe	d48c0f604b45eb92f0c348a01e4b828bcf21d13d5207c3e5760cbc82ed027178	10.14%	Heodo
2020-08-28	iBiTqVYx8x2dbDK9BoB.exe	exe	393b5c6225e26d4034d4a90089cca8ad04f2f869c6129c8dcd0ce14735bd7de7	n/a	Heodo
2020-08-28	issQu3211aKdOb.exe	exe	12988932cd28e00a58e8152715f1f310eda25b75651f41e7ec37aaab78728f4e	n/a	Heodo
2020-08-28	SUUDpRAcUHw6.exe	exe	29dd2fbf1739a923477c473942510a5eb4b4bda1156d37b79310911433f3cbeb	5.97%	Heodo
2020-08-28	5WqMZcDA1IN5X9VeLXHH.exe	exe	d4aa4c321725230ad42a791238c00351d09f1c5f6d94608b866d4021022d116c	5.97%	Heodo
2020-08-27	Wv636S8Tij.exe	exe	ffde0194d218432ba86813bb47d9664a51fa324425b49584153f7d901fbaf4da	5.88%	Heodo
2020-08-27	zq7lYL.exe	exe	8d581be1f9aa2f1ad39f1e83e4ca53aa5735e9da335d810c402fcc7ca657da1c	n/a	Heodo
2020-08-27	vrBFsH.exe	exe	5084e39143407b3c0ef649f2c3253d1c74457078bc089dfb67f76ac9c67f9336	n/a	Heodo
2020-08-27	wf9PISepf7dNVVPRtkdMs.exe	exe	98490836876143419cf4fe3cd22c2b7e61e2de974625c408a100e5195d310855	n/a	Heodo
2020-08-27	dYqgtIQUiBT.exe	exe	db76182b98e0838a8a33219e257aac103dc1a547ae7673a084b400ab4e62e142	n/a	Heodo
2020-08-27	TV9qL4RsZKoqoeaDBoW.exe	exe	22888bfbec6d634478acd2682ef68ef43078a6870394b8515170962c5bd95a2e	n/a	Heodo
2020-08-27	MywReo.exe	exe	30a71a3fe8e83e9ae1f3d2b126e1c9cc1bf8ced6fd7f3b81f201fb3e7ae88eac	n/a	Heodo
2020-08-27	qMFFQPB.exe	exe	240e78733a9798f86c8cc981a400ec9286e9117d0dd97b63e75a2f374b926bee	n/a	Heodo
2020-08-27	z9ibOADCuzfCZ.exe	exe	e5966708c4d07accaa18b6d6979e48c91e0adbb43f514e7abf472c45f6eaa8ee	n/a	Heodo
2020-08-27	GYRJzdX1.exe	exe	58a1d6a810b17642e28519b9210c990960e9cfdca17d3328f7f4d18af5e2a567	n/a	Heodo
2020-08-27	EgR6yyAXP.exe	exe	d1e2af4b1572275a4a6aa47860e47828fcbc1fbf95e01193abecc960d65ea291	n/a	Heodo
2020-08-27	UXjAvLN.exe	exe	ba59a9fb1a96d04e1b3cbe8d0f3f52d9f59f6b5578fcc6138e3c176c0381d273	n/a	Heodo
2020-08-27	aHnha7yhRYvgXq.exe	exe	bebc3e0d53ebd8ddd79efd221a0e6558b3727d9220256aa05374a8451e7b163f	n/a	Heodo
2020-08-27	jJAtdPjvE.exe	exe	fac3284bfe7a256ce372db62b6aa5e6b99a22b77dbaec8e05e1b299bb64430f6	n/a	Heodo
2020-08-27	urJg52Gzk.exe	exe	b83a0f0d9587cf936ea86e4e74c4f55167bb30727c5b1d7e8ccfd611ddaf9572	10.45%	Heodo
2020-08-27	n8U5sYUQKGje4cipvD.exe	exe	c85258e5df3fa1e5022a0d75a9e177b50ca506bc792f406aa7cf558895b54cbf	n/a	Heodo
2020-08-27	Ac4uPYpo0yYSu.exe	exe	c552d0acbe1bff9fb973fe86150f7b17102ba3d3be9d2c9e5c61c39c4464c6b7	n/a	Heodo
2020-08-27	PTXWbti.exe	exe	79d26ff994126d0628c698b5f69581cc04ee4be28bd3267164324965534e5fa5	n/a	Heodo
2020-08-27	iflPSqOD.exe	exe	67d0a944a764efc369efb764ffecc38e7849ef00cc278dca418a61f45491001e	n/a	Heodo
2020-08-27	CiW7ZX61bm4G4chJgIuZ.exe	exe	cb91d694e0311fd7070083101008c9ead7e5d1688d3250b0e4ff8a922019282b	n/a	Heodo
2020-08-27	y3SJBJwG.exe	exe	135262dfc0276c78c95d49ae7ac9c21ac254a88253b57fdc82089e2a7d38c85f	n/a	Heodo
2020-08-27	lUkE4SBcBNCicZ.exe	exe	b321505ce6c0d8f2449c194bef4dc7fbfbfa2f1f7ed379d4bffaf541e67bd2d4	n/a	Heodo
2020-08-27	88EI4NS.exe	exe	f6213b4556fdff34d5c10bd28edec9e545550ed828d9eaf48c453de9336328fd	n/a	Heodo
2020-08-27	MCNFwjYPS.exe	exe	94005159fb858d7cea767e25c0ec0de3bb648063270d0332b39f9db55e5e5208	n/a	Heodo
2020-08-27	if5gyRGVy35A.exe	exe	c935ce78284b5fe9ec1eb00086326a4699c44397ee31c260038de3c090bafb1a	n/a	Heodo
2020-08-27	QuGh9Hw3mTMzWPwCcjuE.exe	exe	88a4b5499bfd1cad8e2b8999f3142947d7edfad6ac478d8aac5131924a1e3a6a	12.12%	Heodo
2020-08-27	nzgpQvbVD2G5V96a6doR.exe	exe	4c2bfb5761cf878b2432f2b746a573ef19f12d076973b4e09edf5edf4c1f3e31	n/a	Heodo
2020-08-27	TELVx144U9SU.exe	exe	be715c94ecb29f3e44ad3b023ab7d9b036224ad359ee9d41baac9d8f19d095b1	n/a	Heodo
2020-08-27	DlarAv0TOLxxpN09H.exe	exe	c8d527a0391a03a2738640716360e9406c8f0cc3f1947199f1244da977e9948e	n/a	Heodo
2020-08-27	8UTovDX8.exe	exe	1a56c3a38e31eec191c1bdb170fc3b0f9815be2fa1cc662509be554be01879c1	n/a	Heodo
2020-08-27	ted65ff.exe	exe	ecbc3ea0c09d1fff7831d9d6aa39a65c908b6ef0f71d00525ee24eca1e8969fd	n/a	Heodo
2020-08-27	xnQoGkTMdI1C5m7.exe	exe	2a4fa3d5bf32000acbefcde6ed03cd1db3f4b761e57e38bd7805a603cb91af19	n/a	Heodo