URLhaus Database

You are currently viewing the URLhaus database entry for https://www.kunstefan.de/cgi-bin/ZwGV/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:450898
URL: https://www.kunstefan.de/cgi-bin/ZwGV/
URL Status:Offline
Host: www.kunstefan.de
Date added:2020-09-01 05:02:06 UTC
Last online:2020-09-03 05:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: gorimpthon
Abuse complaint sent (?): Yes (2020-09-01 05:04:11 UTC to abuse{at}strato[dot]de)
Takedown time:2 days, 0 hours, 13 minutes Poor (down since 2020-09-03 05:18:03 UTC)
Tags:emotet link epoch3 exe heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-02QRrkjLOo7LIe79.exeexe d0ebb0103ccb5be299bfc6765ff7c04b08f72fd315b6fcad1985a466606a53afn/a Heodo
2020-09-021.exeexe afb93c1de1f9ae5dd726150721df384819c533251cb57649bacd69a6e35b700dn/a Heodo
2020-09-02H2XC7GzdF20181569582.exeexe efd98eed8c0e6dd1dc3058dffef1c37049625bd656c33861c9f0bbaa8972530fn/a Heodo
2020-09-02PbrgqgkEAo.exeexe 6516e181e8bba5d43aa381715b2ac86abbe1e69be0917149a3679bde8f56a301n/a Heodo
2020-09-02092225LXR4yndMe.exeexe f49790b4c8f5cfdd961f6838bd0ad6ad9e366d94e5be076603a8d9f16dc520e0n/a Heodo
2020-09-02IVi808264478663254.exeexe ac6c416d8b9004aef510c95c32fdf9f45aff550dca9246177f0d2c8089a0c5bcn/a Heodo
2020-09-02asf0207692.exeexe e4c45a28b05a55b998346dcbe9f7fb7c2281883119d8dcd033b2883c81b66c5cn/a Heodo
2020-09-02BR23782618.exeexe 36b0bb064f6815f339480a1f52b88dabb0ea04f3c30b5b408039c1babc60fb54n/a Heodo
2020-09-02Eu2V6jCyVJ000681129.exeexe 11da060ae813a9103273a87e546300bbcdf94ec0caed8fc0c9062c4ecf5a08e7n/a Heodo
2020-09-02WxVUe0948664730.exeexe c26134d16cbb69a41d67715b9198a81c5d78e446357662bc1612621555dd0aa7n/a Heodo
2020-09-020006545896390GJ7Paq.exeexe ffadfaad1fbc72da0bb97456ccef1bc38aa276eec20a2b50fadb8a86799f1732n/a Heodo
2020-09-020000294312487439.exeexe 657d29356c09410e1e0f30066635a5456f4cc43be5fbc87993a24184e2208c53n/a Heodo
2020-09-02Qymtjz8s1513148.exeexe d45af3e871dda58ba4a8dcf8c669060cad4c83b859c6379dc9dc0f7c7e53a75fn/a Heodo
2020-09-027xAjuIb40Yrr.exeexe b39b6e245fad3bb18763e8fdaac0cb1e48b68d136ce00efee135fdd767215b35n/a Heodo
2020-09-02000136.exeexe 10ec82d988b15d13c78d0d1aed688f02c148f45e806e3ebfaf053ce3dc05991an/a Heodo
2020-09-0200482011123055GL2laWAyi8z.exeexe 748c7789a73c09570bd98d128bc0f00eb5b885f90b4baa8637c8b55437d0ba00n/a Heodo
2020-09-02rn059958880.exeexe e027076f7936ad022398e3db544b64a878673abb36804cd2097a2400c62e8af5n/a Heodo
2020-09-02DH00043.exeexe 7e08b4b2f17845f2c49d46456a8bb5931a505e3c6690299b25d125367016a514n/a Heodo
2020-09-024RSpTjqi.exeexe 875b3da8e777760e22c81125c424aceedcf33b207f168987c5a85a79549f65aen/a Heodo
2020-09-02fLKlei6LBiu098229615.exeexe e18912fbc29ef6ad9402aab00285cee6c4adefe11995de83777a5924b366f921n/a Heodo
2020-09-02032481.exeexe 93b56ac18c84f2e245232dde186ee7b48b4370b7b394485efe7c0369f80589f0n/a Heodo
2020-09-02hlvqP80003135.exeexe aa04112de6a5392deb56a3fcc5ecd74eed1f0128b58d26f2174f384ec1d7eecan/a Heodo
2020-09-020000380lmLB.exeexe 08595b5100d01b9d459a1fd2c2d4634bfcfc9bb0fbdcde807a592e50f24fa7d2n/a Heodo
2020-09-02OEqnlIJ2267.exeexe 73a7d7cfb9b691707bb6e964bdd79ca367e99685bd9d5db9dd719504c271f623n/a Heodo
2020-09-02OY1gTAfga00005354.exeexe b94ec12448c50b8c415304d9e89c4850c9b81f1b3c32c7a37e99a738006c9d2dn/a Heodo
2020-09-02ouPmc2vk000563.exeexe f5141e28e56962eab67c43c0f476a622397bd058c1672209c059c510189c843bVirustotal results 11.94% Heodo
2020-09-02YFIdNlv.exeexe fd6aa95c2ca7a2d0a07384882ba1bb5d4ecb642217ffa1bc1eb4e77dac3ec8a7Virustotal results 11.59% Heodo
2020-09-02X13n7I8sk98678976466.exeexe 79ff4a025b28a0a478aff973ffde760de6a10848a40da0da68c63ea981550d60n/a Heodo
2020-09-02RGMhu005960072899.exeexe be3f74718fa3f3d384fdfd27612147e6f20d956fc83fef490a4871331b5e9c6cn/a Heodo
2020-09-020385561353GOXCQ6HA1Y.exeexe 54fc3e499fb00709e2c7575a42c4dd566a5277f2dfb8549442a193fea6e8c928n/a Heodo
2020-09-020000362s6VoSyoUs2f.exeexe 6013b7bfb1e90d9be3409e31de8ecfc399bc048917e05d4522ce12162a1c571en/a Heodo
2020-09-02zZ119222.exeexe 338e41b44eae9f71e1b12133673ed02a390f370f579a19827ce3595b820cdfacn/a Heodo
2020-09-021L1970572174776.exeexe 09086b7bc54faf1156cad421be690312928bf71276af5adece3b0f2fe17f5044Virustotal results 14.71% Heodo
2020-09-02M3EpK34LcF464.exeexe 1d333238d0ab9e6a77631ec4ea0d3ffdb2c471b8cfd677bd4f3554c8d40d6894Virustotal results 12.31% Heodo
2020-09-02ad001411448.exeexe cab1e64b39d5bb8eaa49a4728daea97b684b5802115171887e3407cdbafaf1a2n/a Heodo
2020-09-02qXcq9713318.exeexe f0b8b22a369a554c21cf1ee80451a88849f495c1d9fd006e99ff0c56125a95e3n/a Heodo
2020-09-02000009992261LMsZf.exeexe 3874173c275f09977576433c267a083e02f5b7e260b73eda2634ff249205ea36n/a Heodo
2020-09-02eO2weEqjrg09.exeexe 3f023b144b88726eef4625ea117646c3129ee504e1094db1c125729de9a28a8fn/a Heodo
2020-09-02fT7VFjJV6l08.exeexe efe9c2eb09227a52f96723717c906123ad731d9cbb6ff4fbb7fae2de7e6a7834Virustotal results 8.82% Heodo
2020-09-020am9968973161253.exeexe 5589b33413f9dd936edd48a8c37c2771b1f76495a42934d8571db8a33689d63dVirustotal results 10.14% Heodo
2020-09-0268hPI99697.exeexe 2870a0b3cd2f5a040436c3d33b559ec5af220009c29b15b316ebc2aac8bc423cn/a Heodo
2020-09-020096351553529803r2kjIMBPF.exeexe 0826ebee3538968f2bec472f65dbb9d592db1010aa69af2d4f5577da18c5846dn/a Heodo
2020-09-02f8NcVTeGfd0792018566.exeexe 44cafd6002f0adf39a5c8b7f2ec0bd31ef715bb2057ba9897af96cce34ce4e51n/a Heodo
2020-09-021953202472862.exeexe ef816ae922fb2f3834f3633c424aa7c3aabc3d6e9dd594a2bf5b84ed519b60cbn/a Heodo
2020-09-022KcSo00253358803.exeexe b2f68bdd4ccb6978f8228cb18a3fad958bdfb602f0b6fc3e6c5a5111afc0fc8dVirustotal results 8.82% Heodo
2020-09-025vO400006591.exeexe 230652549d19a52942a5d3bfef04ce8c3fbf9c1608ae5c7dce57729056d5d66an/a Heodo
2020-09-02sFEnf.exeexe 7a2ebe8464c31399170f56d00f2534dd3d9e41ed868d2aba6dbb175acd6b686dn/a Heodo
2020-09-02m5uwBXQ3Q0882227836358.exeexe 912241257b81c10a0cb2564b24405f0e6e157cf6b711b98c89b7669260210892Virustotal results 7.46% Heodo
2020-09-02m7TDgwfC0Y22.exeexe bd3dc4657de66d33ce2f2cac43529cef3d5da66258c992cb8d9674f957e84473Virustotal results 16.18%Heodo
2020-09-0200006250.exeexe b6c7c65fcf04c8cbc8b9be5e4e6cc6948239df9bacd6230d5a22a341e5066c9dVirustotal results 8.70%Heodo
2020-09-01Yan598GPfZ00.exeexe b9cae66117965dd38dbce964d87c11899129e576754f98af23af9f8d7e6266c7Virustotal results 7.94%Heodo
2020-09-01ViAneD5I8aps31453912779.exeexe 43f9eacf99a6289eb8d428ae5ad0af1b0964f13c84b562de78ef47b8d6591ca5Virustotal results 17.39%Heodo
2020-09-018UtR341197409024.exeexe d919a2ed95a4dbf4bdcfa15f90b6eb1dedecb4faa050be4fae2c49834208f96en/a Heodo
2020-09-010000200.exeexe 28d7d854659aee59cc780247aa484d8fcd66f3047c96d0393d23bbb33dc08805Virustotal results 13.04% Heodo
2020-09-01000613.exeexe 750f6265bfc9fc3f415b76a634f168865cf50823755efba02a3412c63a54b419Virustotal results 13.24% Heodo
2020-09-01001251044jn1rVN.exeexe fa19b820e18e8e101d8f13b58eddc994037aa963c87283dbabc4758d151a82c1n/a Heodo
2020-09-01PZxwM2W5.exeexe f13768f1016312a27917b18062e6b0d670fd55974ce55764bb42cfcc47b4c96dn/a Heodo
2020-09-010048864aui1kn73u5cT.exeexe 1220bc615a52f4e704e80d148a65988be6978edf565f1e30f324d33ae83080cbVirustotal results 13.04% Heodo
2020-09-01Cl5ppt.exeexe bec7c9f40be03a88beda153f1f14b1a6c211c46b41f731788569458628d7bb28Virustotal results 13.43% Heodo
2020-09-01odV0865580693934.exeexe b8bf6d9e99fc6d9e8d0fd76ddca498c60e7b6af20a7b4d53767c34a782eeb65cn/a Heodo
2020-09-01f600527560.exeexe 24ee7aaa53f5ff37dac6c0891b8bcdbba934aa2d4fb517d87acee35c00e8ba00n/a Heodo
2020-09-01uuDI1W8oee000039393.exeexe b8c57398ba21ba818094abf6792d6cd07b04bbd5068394c905368ec415a4ae2cn/a Heodo
2020-09-010442221926t1f0Tj.exeexe ca4f6983c8290a518aef09e39f19e77ec326a489583e3759071eb70583d0f035Virustotal results 11.59% Heodo
2020-09-01kTyf0UNYZbp804.exeexe f953fd3f4f985978359cd24df5ced105adda2812671157be072f51151d6e54ebn/a Heodo
2020-09-01000648KEIg.exeexe f4414daac7e5c7f1461383d9cbceb0a89f0d7801944d75fff6a3dce35a6029d0n/a Heodo
2020-09-01vD508371324567.exeexe 0a445833a736bd1b3c6b64156178715184fe9a3ee8f811971511281a7b44b1bdn/a Heodo
2020-09-01OZK636.exeexe 6d43fe011db3aaa5224a923b0bab2acae897083b33f74d897c1a8ed66e44319fVirustotal results 11.59% Heodo
2020-09-0172f3zxfJgEWb12478353.exeexe 954d6641a4c87690a5c673243f7659d0a172205ea79e9a55d42a2aaa2483a94en/a Heodo
2020-09-016tdUleVB65849498002.exeexe deb00fab72042bfa89ce74553c3e982c63ec1d0095adda905735e8f4e13b4a17Virustotal results 18.57% Heodo
2020-09-01000028326757120dV0NxI.exeexe 45d0e4961da541aa812f1ed03f676b776013ef192622938b4ea55197fe10cff8n/a Heodo
2020-09-0100002332919G7.exeexe 030d47adb70d08e8e5eee829901c525a712f61b608547d59dda51ac66e4bf523n/a Heodo
2020-09-0107594719600382.exeexe 4daef1633c058677a9805986cfdd835401d3b0d2e432021fa3b1da1ebb3aaf54n/a Heodo
2020-09-0193419271856OS.exeexe 40928c20e287a7dfa25c03c9f971afef6340cad230579a067644bd1505323968Virustotal results 18.84% Heodo
2020-09-01gB6IXAo1xK0287.exeexe 9121df1e1ff2e6e5e5355b45155edf574ee855ab923c2ef03426e234884d3290n/a Heodo
2020-09-010067076819.exeexe c67f96445c428c27ffc300dfa0f2c2a833b87aa4a56f1d7f8e596eb4f4a5754bn/a Heodo
2020-09-01prb0MBL00033483.exeexe 38c95b5e6ef7e0577de6bb8c3231e677f058f25cc094e57917b117c5a9ff7377n/a Heodo
2020-09-01BeWidjdq639.exeexe 01f8c58b6fc247b119aa11506700bae68b3f92b4ba2e7e7a98177149c643172bVirustotal results 18.84% Heodo
2020-09-0108860591086vCx0VCiiNMTc.exeexe 8d30787aea789c2704b73f856898822249734679e9751895e5454150a10662d7Virustotal results 18.57% Heodo
2020-09-019517.exeexe 84174a0bb921b730f835f21b314de6003d4bbf3f0f0457922a6f33ef87beb1can/a Heodo
2020-09-01fQR0008872444665.exeexe 8c993307882db017d94da7d5d2f06c233245d3059ef653457c05dd03ee4b6c5cn/a Heodo
2020-09-012966483917.exeexe 3266993424499a71ad09c2a84ecbb5068a2e2e2cf4fb12d4d601ff56784bc278n/a Heodo
2020-09-01iEoGJyiM50.exeexe 936d84b247751582fcc7890d4acc2719b7fcc95647ddcf62c6b4fd3de1fcd22cn/a Heodo
2020-09-01563962nJZxep5fM.exeexe 765f2f50389dcf8ea10d95c70b712b5e449aa47661474a3cc1eca0d90655e98cn/a Heodo
2020-09-010007737328859398.exeexe 76efb7157474fbd6d06a4da8f92d2413e8392ce20a42e5f7e70a83ae92485b65n/a Heodo
2020-09-01T9FFooY0009689507.exeexe 3f7a446e58ec43483bb5db7c96363b561110807cd403cf463b33f16f0a90576dn/a Heodo
2020-09-0109335757098.exeexe 2d6e3c9645b348517b55e282abd3b7bf33bb479c93b76cfd4e8875ee47d18605n/a Heodo
2020-09-01c0deerQ.exeexe 0a2e65bce1591739a70461738255b3ab76f4ea9fbfcd296c761b3a9178056396n/a Heodo
2020-09-010004964979652293L5edvd.exeexe bf3f9a36384b526a0287a6a08d5074c8abddbc02d8044167e5f4fb7421935cecn/a Heodo
2020-09-01kjDG7qFfFUFr08.exeexe 31128065b2be344f607ea88fef0e84176a7abd280443d7842ca4b19c3a993bf9n/a Heodo
2020-09-01W10000815096136921.exeexe ea55b56d7ae8874a194f087a58bdbbd62dd57bc406ad42f39770702f06310363n/a Heodo
2020-09-01000344902IfWs.exeexe f6e2b69b31ea477984c7ddfdf49748ca8c4e45d780b3205bdfc579b919277c6dVirustotal results 10.14% Heodo
2020-09-01iQbbr19790149423.exeexe e56bd0b046c8eba6a506b267f360f8f28bb714bae9bb83c52e6462a24d563e7an/a Heodo
2020-09-01002685430297.exeexe c865eece78dbab141b1577da83205365fdf9f1d690b82acd00ef965cdb58fd14Virustotal results 8.82% Heodo
2020-09-0100005932978nnH39Ux1HMr.exeexe fd2c96c0ce52d20c10a5f97b6824d09f2cdf1b850f12fa204f342f50359f981dn/a Heodo
2020-09-013F774d.exeexe bffebdc528cd9ec678f8ebd7167b822d398534abafca0704669a0f169aff2467Virustotal results 28.99%Heodo