URLhaus Database

You are currently viewing the URLhaus database entry for http://lennarz.org/cgi-bin/XRW/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:447486
URL: http://lennarz.org/cgi-bin/XRW/
URL Status:Offline
Host: lennarz.org
Date added:2020-08-31 16:06:16 UTC
Last online:2020-09-02 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-08-31 16:08:10 UTC to abuse{at}strato[dot]de)
Takedown time:1 day, 17 hours, 25 minutes Poor (down since 2020-09-02 09:33:22 UTC)
Tags:emotet link epoch1 exe heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-02VfD76Ho8Gx9P9hq11.exeexe 6dd5d673725341b0790fa4f3bed96e49d656118994b0b19c38e62fd53defb39dVirustotal results 14.49%Heodo
2020-09-025zJ8IFrsbkyoNTj2j8d.exeexe 598bea746526d6eae854e126eac4b4b22e1023363875c53142ef4b05491fdcb2Virustotal results 7.35%Heodo
2020-09-01myGomxiD2wIaRfUFon.exeexe b6f2457e50dc2fdd2cf809ebf63577c7277e0e26bf8e87188572c01d96d48f97Virustotal results 7.35%Heodo
2020-09-01BjeIKJ2bwcipjNI.exeexe fb13df8b0a039ba2084a3a5e4214347716b56fdbd7f3c708717bb439acce3656Virustotal results 20.29%Heodo
2020-09-01rxlBrb91iwVU4WFW.exeexe ab531a85f9cd8dfe045c6653fd19d386eb4d380f5051cb8171362a7c11abf369Virustotal results 10.29% Heodo
2020-09-016hBkmDSfA85.exeexe f110cead36ce69529333fa52eb015836d4532db514dfcd94cf86c9f3d2f254cfn/a Heodo
2020-09-010BTEDNybPtGjE7s1.exeexe 2c1686e759dbbd5bc9d8ab2e42a0f4ba25864da3a8070e96c9d5267214b0cb05Virustotal results 11.59% Heodo
2020-09-018F9ox.exeexe cdde68356e406b3cbc4ec6b4115e1d39500b1cdff3bfae70a80571e22e60007eVirustotal results 10.14% Heodo
2020-09-01lenq.exeexe 70fb173d79d46a7d93995eb273a9f5ea8b094d1d7170267304cf2af9f60f45ceVirustotal results 11.59% Heodo
2020-09-01ibpbVALj.exeexe a783e6d04e03f59a8700ab7f43f6fa2e0c766cad8636b26232d695a73ffce7ean/a Heodo
2020-09-01fGb9qK9Wv29m0NHi.exeexe 0fcc4d8e44bd9befd0e39b6509cae0f9ab1a96ed6faa69efa591f5365ef7b78dVirustotal results 10.45% Heodo
2020-09-01hAlQiOGbrPwYHUN.exeexe f08f87bcf8e0a6c3e83f4225c524f64b65166ea3d98fbc0162c4d4f98eb03760Virustotal results 10.29% Heodo
2020-09-011XNyX7F8V0cJ3yQ.exeexe 30f394c5a4330f0c285f6c9860f354b569b27eb3c808587ddc22380683167dfbVirustotal results 10.29% Heodo
2020-09-01mKEVQ8lIq2.exeexe 7126c88e921c10922f86ab8318ebca51723d95bb99ab4482b8501820f6ae5582n/a Heodo
2020-09-01cbjr.exeexe 3f4690cfd69f12cfea4d2f06bf4bdb1a82bf5f6a743a36cb58a27f4f153a0be8n/a Heodo
2020-09-01LHK6.exeexe 785c23bf6f8216398ab8db531f523051614348215d6bbb3596d17858cd614d62n/a Heodo
2020-09-01Ae0Cyd52oZBpy1rATv.exeexe 27827ee9224ded5877035f0a89ad499d953c48c51516f123403916c23bfa5f06n/a Heodo
2020-09-01Sa487NZ.exeexe 7344f185b59bcba3a74ccece98d0bde3414262ce98d13e7b8ca8346077e09818n/a Heodo
2020-09-01U41lLP3u.exeexe 37ac2806749250e326ba770de88aaddb7e6264be2b60603c80fc03d06812c5efn/a Heodo
2020-09-01Vw26HFjTUKORss.exeexe d85a3e4f9c1537443434349685b34b7432172592c93d55de871fa6cd087a1c4bn/a Heodo
2020-09-01UgYHjTRphPZ6V.exeexe 7271e6ce824688d65bb99149f558f7d195a12bf7d5ce62fab1dcd2eebd120fffn/a Heodo
2020-09-01FLstNUwbF1t9XwMTEZ1.exeexe f42b38b74220cd621e2922ccdbdde5b2ced3c7682a020fa2f1cc264fd96d5224n/a Heodo
2020-09-01p3cZniHMJlCvWjl.exeexe 3cb36715b4646e8ec823546811db52b56ca6abdadd07354bb0ed94d702bb442cn/a Heodo
2020-09-01RRNnNN.exeexe ffd738b9352c11c5d53583c2babffaaa598e959e3c8d1281b5da4a46d1316189n/a Heodo
2020-09-01dtS.exeexe 32df4b0ba13d96fd249dde7e303fcf9ab9116c6ff871b96266bc05924c1baee8n/a Heodo
2020-09-01xBkPoyGd4PVXJ2r8Nkq.exeexe 3a1b04e761a3aa14a531876a9fd5620cc20a704c57bc9fd3f00491655eb79eaaVirustotal results 19.12% Heodo
2020-09-01N2ATD1hm1wzvS10c7vR.exeexe c67601bd787fc7067ed7e37e82a5493a831d3eed8d7325c83ec2da1d1cd0b7bcVirustotal results 18.84% Heodo
2020-09-01dmff4GLp.exeexe 0fc82c2a808895f9ed708ba816d268a9f7f793182a2dc769f68b17454730b421n/a Heodo
2020-09-015rjCMn4.exeexe 584d67d500e4201488d6a9ec7c0a2667af8e7f1663ba2e5b126f549451173c32n/a Heodo
2020-09-0145q.exeexe 454d403ba17aa58726c18a6b8c60bd0d344f131ce7f8d5f5008aa0ad29514cceVirustotal results 20.00% Heodo
2020-09-01Acc.exeexe dae01ebbf46c3ca0d003e0907d87334e21653b59a091f4c30d79a8cdc9c2d493Virustotal results 20.59% Heodo
2020-09-01nYjHb19Emn8lp.exeexe ee9ec7393dd2797f59357c3f5a52dab0e4ed424d88a11c416e242e6032cd9e2dn/a Heodo
2020-09-01GMsvZ0wQc2JjrStk7.exeexe 4930169bd82052d6f89ffdf79787c7b3e969adebb486e3827a80ebe14cc11c0bn/a Heodo
2020-09-01zxt6u.exeexe eca9f8a4ab538969334839d8f60675dafded964a0b5c46425fd82c62a92fbcf6Virustotal results 12.86% Heodo
2020-09-01GuscGsacdHYf3pTm1.exeexe b637e2897a433526e71c97e75b7a2054021240ddbc29830ed8522278210e913en/a Heodo
2020-09-01yU3EwRV.exeexe 3b0fcf6ea6c799df29751fa8089043194e312b07fa9e80f51e29376057b17df0n/a Heodo
2020-09-01Svg5QUS2imf2IUq8jKjw.exeexe 5730958c17aae1f826396c7e1d32437bfcc39f087627fa3059b9357e932d750fn/a Heodo
2020-09-01yXJSaL0yxUjOr8bKBe8.exeexe 4e3fb1fea7000d551ab0e758e600c67215b34106190b0369ba6188f287ace1c5n/a Heodo
2020-09-01dLBwO0WH7YCJFBtA74CN.exeexe d4b63eb330dcd2cdfd77629ee49e3bf7f3a20c4f47801059adfbf7ddcb269ff2Virustotal results 10.29% Heodo
2020-09-01j95WUq5MYVFcKJqLU.exeexe 28d2c3169c6ed9d514546c51eaabc1de70773e2ab67f89f530cc79779ebd6a5en/a Heodo
2020-09-019awY1VSO0N9aWujjw3zT.exeexe ff65bbcfe09035fe43019f9fde6edc954730fe43cab3643d7573da006e5ca867n/a Heodo
2020-09-01WclCTF.exeexe 4b4df15f29709c3a3f7eb38b19406f85d6ce2142e64bc4bdb649f092b7689934n/a Heodo
2020-09-01O4vQBb8Qs4G7JElU5uGTS.exeexe c54055c362c3ca5c559c832f96a5111c73bcdeaa07734b029a64672cced53120Virustotal results 8.70% Heodo
2020-09-01QagtWDidxQ.exeexe 554e872959ad3b6bc990796c3fe92df2bfc029b0cca023788088938243e2ba57Virustotal results 8.82% Heodo
2020-09-01q975VYQEttVl.exeexe 5ed4ba643a325a0f51e028599e74594215cedf5b65f5a3c8d977297c03713e0dn/a Heodo
2020-09-012YkB1465.exeexe 5b693aec596b3e7408fe37e2300c5681c70c5a08ed4506c936a63a4507721b95n/a Heodo
2020-09-01FdddA2OpOMNK1i.exeexe 752d7637cf1b7e8c77f338144c1f0b76ee6a32841d3c09c0320dd5b443fb2d5cn/a Heodo
2020-08-31CLZ.exeexe 2db0758d60d1e61b6c69778283df5dde77c84cc771b29953c9821433f348b336Virustotal results 16.18%Heodo
2020-08-31BL28q.exeexe efedcc357becbda9b72bf2ce4c4886bb66c4a7560a60286961d39a5e28db46c4n/aHeodo
2020-08-31Vrt.exeexe ea17f66ea1428d971e73160197d768fd962328761e683b29a222b76c3fcf7649Virustotal results 14.71%Heodo
2020-08-31PeLj.exeexe b7f07a690cd50f5f722ef1b5a7a940a5c64e341f6a46f94c4dcbe10f18d6b516Virustotal results 7.46%Heodo