URLhaus Database

You are currently viewing the URLhaus database entry for http://omegahelp.net/tom/d/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:445459
URL: http://omegahelp.net/tom/d/
URL Status:Offline
Host: omegahelp.net
Date added:2020-08-27 20:18:11 UTC
Last online:2020-08-28 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU002895805 created on 2020-08-27 20:20:08 UTC)
Takedown time:18 hours, 52 minutes Good (down since 2020-08-28 15:12:53 UTC)
Tags:emotet link epoch1 exe heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-287gEbRYeVwClhbekS.exeexe 2dc45d892e1e139330586d941719c3e4a304eca1527d566af8ca25601d5270ddn/a Heodo
2020-08-28taF778HFtC.exeexe 5e6a620d42b7147d3f36501cdf7a7555ee3a8f02aa84b4b6db0cc04c1962c7dbn/a Heodo
2020-08-28h8H.exeexe 9e45fd16b067d0170ddf57519e42e936c9bfdb0449738e84bc28a707a174e3edn/a Heodo
2020-08-287uM4ByZjo6B.exeexe 7dd899c6103343406f75aab8aed4b77f6c2b9e6982ea4c24c50dfd7777a1e7f8n/a Heodo
2020-08-28WyjtSW0KRB5DrDgqYvh.exeexe e8003ff69621a8b8b4d6e80d2a62f325a2f155aeb787c2006c6f53f459f91ab7Virustotal results 13.04% Heodo
2020-08-286pP7wG4pL5aOCSvS.exeexe f98e350ae6041697a1c31aee81b022c3043a7c159bcae5f6e90574fd73a4a171n/a Heodo
2020-08-28pjqcIKHHLkea42dztS.exeexe a5e7def706d58827531f21d20703503381acd12a2a1b79f3e1eedfad9d7edf05n/a Heodo
2020-08-28H4ratgmALS.exeexe 526ad6b5253a55c5f33edab83afd3548b9df4900aeebb14f14d57aa190dfc90bn/a Heodo
2020-08-28YphoYa9tRou.exeexe e91304302c9816cd32ef50608c190462cc5f8418e5deaffe251e9843828bea19n/a Heodo
2020-08-28lK5atKFfp38nP.exeexe 701bb1a181173ef8bd74833707d7f7242a98d5966130ceb1e2464ae496caae1dn/a Heodo
2020-08-28F13Lco6zZc5viZ.exeexe fe6a848d2010d1090ef4fb6be30128b6822948f215d1f4026d72a7362d827e51n/a Heodo
2020-08-28QtZTrP6GzzodOtO6.exeexe 5c40cca632b39b6112bb0b302dc68bb53a590f4a9db2b9c448d9c78f6dcfbf7an/a Heodo
2020-08-28p3r28AbD.exeexe 8b3212797fcbda6bf178c79e2f1e7f3463c08a61c2383a5f002fbf4d956c9304n/a Heodo
2020-08-28LIdzkd7l.exeexe 5e442198b25ed836c2e2784bc9903884e890463d89ce58bc7735f08cbec2b7d0n/a Heodo
2020-08-28lcyl777KcfUrdu.exeexe db5563f2cc7e48466ccc6a33b6384a81381327ff260de7184d297f241516e37cn/a Heodo
2020-08-28jKcpVgud.exeexe 7c0ef35390dec9142f282ac470cd57a6e8e5f0c90e079d8ec89061f95690d7ban/a Heodo
2020-08-28WXookFyMbz.exeexe 0b2e943c81622a011a52146a58d3e286331d19a2acbb77a533e88eaa116e722fn/a Heodo
2020-08-28HBXF1LGeImc1JzNNunNxp.exeexe e9cded6029cd4e655b394bbb312440982c706932f5dc86f6f04c80a466da42d8Virustotal results 5.71% Heodo
2020-08-274f9gFWBy7XRq.exeexe e0ae3566c77c09a496b5ba810a7de05ef34d0621e8c0eda89f21d414950ae49cVirustotal results 5.88% Heodo
2020-08-27DwghCFhRH4.exeexe 325a13912f3025bd1dd74f74e999e511ab6b4c54eaad1aec46a71262ffeeb113n/a Heodo
2020-08-27taOtv.exeexe 3297133ee9cb959357885389d674b598815159a7f6df0e1f09310bf9b136ba18n/a Heodo
2020-08-27D5c14qnChd39Jo.exeexe 4d4151ac71192d25108866e5f3da896af973f938e03d892d50286790df34f202n/a Heodo
2020-08-27BUehRyiFTKe2Tb.exeexe 7e6e71f8aecebebdfcfb16d969e59b4ca23e1f9e7436e4e890a919f2f7394dcen/a Heodo
2020-08-27SOnN.exeexe e08ab3b5f6524029ff8ccdb686bb77618605064e9471dc74027ee6cc9b40c680n/a Heodo
2020-08-271DHj7m4Hmh2W.exeexe cf79e5e52511586e4d05ae59464e9c3c89e90ba403e4d111e63d37a8155ba73an/a Heodo
2020-08-27CqjruFjpxXU8NMQK.exeexe af6ca5331a764e2fbfcccaab0b72706674440153cdc07fcda30410164b7678can/a Heodo
2020-08-27ZCaU0uHUA4JHfCFY3VeH.exeexe 0e6e39759b961e54aeed033d6c9841b9c2f3812d1294240f37022dff382682a6n/a Heodo
2020-08-27eGuASKY.exeexe 883bddc8476d1d36956eaba820fab2f392b20fd29e387c16022367cf73906307n/a Heodo
2020-08-27g436fCc9NKdJfXIJ.exeexe cf809baa227a04844bbda143817b231fdfa19d30fc8a46ee8e6e05e5af34533dn/a Heodo