URLhaus Database

You are currently viewing the URLhaus database entry for http://wetzi.de/cgi-bin/file/heLeDqESyV/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	451217
URL:	http://wetzi.de/cgi-bin/file/heLeDqESyV/
URL Status:	Offline
Host:	wetzi.de
Date added:	2020-09-01 16:19:06 UTC
Last online:	2020-09-03 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-01 16:20:08 UTC to abuse{at}strato[dot]de)
Takedown time:	1 day, 18 hours, 9 minutes (down since 2020-09-03 10:29:42 UTC)
Tags:	emotet epoch3 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-03	000120285112.exe	exe	69459a47918ed6baeb6ec093af8fb6c209c99d2a7c4c1fa5a7b4584d3bac9276	n/a	Heodo
2020-09-03	ZIPNd3Gb63329004176.exe	exe	10a9dcb33f17cb30a89eea624e23770febe9627693414d8daa5c0048b840f459	n/a	Heodo
2020-09-03	64867068379.exe	exe	97e9868cc7a7cb565a9ca53e59d2357b8cef0408c94ac56cde605ff83930afac	n/a	Heodo
2020-09-03	000042XC8A.exe	exe	b43c889c759f99c521d2cc4f0b26d02e3446a12586884c190a15c77a0755e276	n/a	Heodo
2020-09-03	84BzV07tn.exe	exe	b8f06c49beec5ebc8ac0dd57e68e3adb513c0778139dea01026d7235919638f8	n/a	Heodo
2020-09-03	l01geBOLw6B.exe	exe	b006e61fcdb6053bc4b6d5e3892769626fde62895f6d2a0784aeaee4a557af03	n/a	Heodo
2020-09-03	0081108797.exe	exe	77b7e0e1fc23f23141c42e42f9aa4f222f4a632dcd08989f146966d1ac7cb90b	n/a	Heodo
2020-09-03	bbSvu5p772xk00082633723.exe	exe	d335d3f4e14387feabfdc8f6ed4bc9149101123de66c91afef08fec9da6681ac	n/a	Heodo
2020-09-03	0000645498077417.exe	exe	0e7e5cbb1369c3f2dabc5db7f36062f67397655daf9fe6b12b3f0e1549911f07	n/a	Heodo
2020-09-03	wN49927812.exe	exe	e96b9086ee86ea96abbdd33173cec3e3b1429501e4c2d7f8da20507fa1fe0ae2	n/a	Heodo
2020-09-03	041635907QNm8k.exe	exe	7ad85c0fa09617fd5116bb0dee31627892e51bc5a0be0f5830e52fec08c33fac	n/a	Heodo
2020-09-03	38115549.exe	exe	e129e91f3a02d857439b32811b77a9c9d08304253e41c8a8aa3b02fba1e2dbe0	n/a	Heodo
2020-09-03	0Khx407797591210.exe	exe	6512e0035cf2688f1c380cd9dd4c079c223aaec33d3abb7e6e5d867e430e59c7	n/a	Heodo
2020-09-03	yMsL5.exe	exe	25b2a2219d08b123e058682943a9c18857b949bf8fff9c0b784464f3ad16608c	n/a	Heodo
2020-09-03	l6Dt00506508291.exe	exe	abb879ec5aad858237f3b3fc52ba107a4ef79ba99297f0d3f580e52e9a79d777	8.70%	Heodo
2020-09-03	xYEgp5262351276.exe	exe	3cd5f8a162cb5445a4799dc72652fac4aa06aeeda44e27ef780325b08be94724	10.29%	Heodo
2020-09-03	tZn7cLptNp5A.exe	exe	61e84830a763e77fac009738f364e2b48100d854f25d7ccb63864b77503322e3	8.96%	Heodo
2020-09-03	00554pArA0wvYw181.exe	exe	c7be8124974d949e6d0fa664c4fd1ceafc2d5671a60d2d33dfdd83415264080c	n/a	Heodo
2020-09-03	0059299248rgi.exe	exe	f7f9312aa253f7e355e48750f3dd2f45c9811b0a161f9402a9342b61f8f9f7c5	n/a	Heodo
2020-09-03	cjeoYD.exe	exe	44e79c6ac38fca4ec4fe2144d2c2b97610e7181bb172aa13ef96499dcc516b56	n/a	Heodo
2020-09-03	00001.exe	exe	c0581ba04e3e1543f160970669e6d7bc47607ee12dc06c257232b10d42ae8b40	n/a	Heodo
2020-09-03	0000977011.exe	exe	60b1bff3b746fd606bc55b146f99dbab6baffbfc3ed7468d04496b99dba975bf	n/a	Heodo
2020-09-03	zZTu6aikjlN.exe	exe	2a7b21a98bb18de2b554125bd73b40d377de01724f061c5ecb9384bdca6a0329	n/a	Heodo
2020-09-03	000060846400578C8ZW8ezE.exe	exe	7b859c33f54e4995b856bb170f973f7b18211e560979f87c4c5c54842e7fb669	33.33%	Heodo
2020-09-03	haYaFGA2bOF24.exe	exe	d66b7d1437475b76936cf05aca53bfa47a9132ce9302ea86294b93fd70bca0a0	34.29%	Heodo
2020-09-03	0IjZ9aWze918324.exe	exe	993cf8ee7679f03a5defb5ac3f2a394bcad058205e9df2d49fb2a9e56efaa18e	n/a	Heodo
2020-09-03	003439udMnnu.exe	exe	b746cf1a6b0f8ab8c975b8e31f98e3eb46567dbb512ec9aaa88f794cd34fcde0	n/a	Heodo
2020-09-03	0000524907260.exe	exe	568b445e58002048fc1f4d27c50432c48b6d4766b3705d3bcb6842eaf29a4c07	32.35%	Heodo
2020-09-03	00055604367.exe	exe	759a6012ed4a70a9959aa2d3707414fafddfb3afe8fe0368d8d88f540052f072	32.35%	Heodo
2020-09-03	DHRQwb92218.exe	exe	f1a8e80e73f04437d89b781b8d8a73e472ba1e93ef83e081fd3f2135748a8ca1	n/a	Heodo
2020-09-03	rh.exe	exe	d0a23366e598c9ee23b20f3e678b901a2c6441391f80be4806d3cde10b9167fb	n/a	Heodo
2020-09-03	0009059583938.exe	exe	f6a7dcb13b5ef109788f09800abb0c7be9733b5125f2102e6bd52a2a6c05c528	n/a	Heodo
2020-09-03	D7000363150326369.exe	exe	e8f99c4814da58c8fecbe6e05a921f048bc562ec8e4760d0b376ac68aac37331	n/a	Heodo
2020-09-03	00000.exe	exe	8ac91bb7cd20190386e52f8fe75832bc4c7853ccbbd370e9f35416fe33b01ed1	n/a	Heodo
2020-09-03	KJ.exe	exe	204211d700cc6282b8686aca40b40aac3e1a827f9a32ee5e734b9a38c2dcee6f	n/a	Heodo
2020-09-03	nFY8468245.exe	exe	adda22f767a33408b699296ee3f51f1e920bcd7f6f66b4cc95e956f8217d2cf2	30.88%	Heodo
2020-09-03	00009.exe	exe	d94efeeefabfc19ad610818e516df036f48d5d6340bc1cd510b3c95af9876408	n/a	Heodo
2020-09-03	aDwO8bhEgc000307968192466.exe	exe	4b727149eeabfabf747df06b7fd40cb143e128754c513d1cfe78bcf432834412	n/a	Heodo
2020-09-03	dSVR7WE.exe	exe	f71fe3cfff03adcef2171526bb9cd72347868547b97555c7b7d1f641a61aefb9	n/a	Heodo
2020-09-02	0000273694730hKTE.exe	exe	d3fbfb2fff96c99ae3d4ec29d9e487a34394b6f2484e2dd18815cfb5f0a7b010	n/a	Heodo
2020-09-02	ICSYI00493.exe	exe	9f304462280dd0ed60b80f20777f078cf8e21ad98b1544c36e09b3db04d5d592	n/a	Heodo
2020-09-02	rsINjfDKBQ.exe	exe	5be286d358dfcef691b3305d83aa5dc57457217befdb7bd88728335e96ec4dad	n/a	Heodo
2020-09-02	00062429502UUUb1.exe	exe	f126db7c9785da343be1aa0293c46d39b16e615d1c19499f918c5fb29571e0ea	n/a	Heodo
2020-09-02	lVohdyIpVO.exe	exe	9d598f295a6cff7f3a6f92e2293b76c37e0f56e2800ddf584276c7859146df0c	n/a	Heodo
2020-09-02	025BO.exe	exe	537a92c4a9757373f1a45c30d0e1e2fba427b5acd575ba7ea8787bfcfa619209	26.09%	Heodo
2020-09-02	000096698sa.exe	exe	3c824b9ef64cc637491ff81e4e6bf18df5d879a8c57e72129c1794ab12f0e1bc	n/a	Heodo
2020-09-02	125180684.exe	exe	5de3306ddeec8264c76615a854482439527b46f3c166f9978ba198c7e23332d1	n/a	Heodo
2020-09-02	5408359122204.exe	exe	6aaf31eeabf3bd26100a46b490838d8448eeab7e0227a349d86754b1baa20f9a	21.43%	Heodo
2020-09-02	Vea7WH85810779.exe	exe	a2c1305f9312018c8bedc52407e18d2aaa193e6824ca4610be2f0e4e4e4e9314	n/a	Heodo
2020-09-02	020025562604.exe	exe	3d2ea7bfa47c6a441c82d0d2fb86355f49531ed9e693a0e5cd24974d69c3e5c9	n/a	Heodo
2020-09-02	002638.exe	exe	21ce5bfe213ac5114e41e3b29db20ada078a6428572c5319f1bd653f66150fb6	n/a	Heodo
2020-09-02	631008568.exe	exe	b22db75720f0af22879fa05b0400442edb770c6b5c304aa48833d0abb9d789c8	n/a	Heodo
2020-09-02	003562047.exe	exe	eb1a2e703502ec9d81d748cdba9d8c3d0b018d00ad90399e2fdbafb2132dd19c	n/a	Heodo
2020-09-02	0000948799028238.exe	exe	d5c3c61493036696d599ba2ad8611911a16da273c187b319cbbbefb5de89e5af	14.29%	Heodo
2020-09-02	meqSRXW00093001729.exe	exe	4b8449e849c00d091a2ac5a7da7a25a5c0945887d24abaafc9c46e8bb0f7a734	14.29%	Heodo
2020-09-02	52500232yLPE.exe	exe	d29e6ff40f2d1e524ace6c6b019d918e46a754f275212ca72f1ad16ef3d5d267	n/a	Heodo
2020-09-02	06ET4EC.exe	exe	097a118cf9ceac8706ba5c9bb50c5fb681180f79d2ac6320591095542aa2cfb2	n/a	Heodo
2020-09-02	000734mXHuQw7ESDH.exe	exe	407cd5b8c2a45734cf7a07d114dde71c3b9287135acd5b31d3269b417353499b	n/a	Heodo
2020-09-02	AUuSsGEHz7860043.exe	exe	901e63321a2a873cbc3c00b79e98be86c7cdd5547cd3ba78d5f066570a57c93e	n/a	Heodo
2020-09-02	u2NxjZcRhQX07533118432402.exe	exe	68e0325cdb09a8b85821b5b2929782984623b61d9bd9014570cfa4ea7ac7525f	n/a	Heodo
2020-09-02	00075L4W.exe	exe	2ea269388925bacae7bb793055611064af1db1926ad4519c6aef2add66ec0fa0	n/a	Heodo
2020-09-02	0128479610965.exe	exe	ec5107b5414cb461be216449e2ba324c62369059b7f85f3ade962d1170b2fe18	n/a	Heodo
2020-09-02	8DkNhN.exe	exe	853dccbd8732bd693fd35cd58171ed6f14eca46982c127564b76c60ba86f0d14	n/a	Heodo
2020-09-02	9725116gRJp.exe	exe	3082016d9e35e853e451e654689eb4fee6a4061955f098141d8f0d843103e63d	n/a	Heodo
2020-09-02	FBKk1I7vTlEb.exe	exe	d7b2faacbf77a440d2cd456940be09d308cfdc6bb2b26dea698c3c0c65912c09	n/a	Heodo
2020-09-02	T800000413418.exe	exe	05b58bec5deb24ff95a10f3a91443ccd6178141ecb33c564290367cda72680b8	n/a	Heodo
2020-09-02	oVPXbHH2CDT.exe	exe	76b1866bc259e3c64671a52d3a4a0e584eefe57b275cf830aa7096c47f91cfc3	10.00%	Heodo
2020-09-02	000449285034.exe	exe	5699df8f5be1e4b3af3c5fe865ce41dcf8a65f7bd5d0dadad53a8427b059bca3	n/a	Heodo
2020-09-02	08C4hVcoKUz7.exe	exe	209557e5ef633ff696b6ea36dc0380913d841b11c754faeb2bf41c8f602decdc	n/a	Heodo
2020-09-02	RfP2uZRx6.exe	exe	3831a47456036a4e8ec5420ba4d73d728c38dbe65a148503f36fe8a0a7bdad2d	n/a	Heodo
2020-09-02	00040098.exe	exe	0424d0b57697a7b88e1be54ff8245853dff3a2a8f34d61cdf10e333af677de74	n/a	Heodo
2020-09-02	VfMIy0886221.exe	exe	21153a8bcb9e592f726debf19ce3a7b81546fc59360195758d2eb0fffe760b96	n/a	Heodo
2020-09-02	000059691034h3YNshD.exe	exe	15cb49ab792aec0a7b5ecba98d38104a56962fc48b6e38a8920e1be7b38f382f	14.93%	Heodo
2020-09-02	5QGSd57fn.exe	exe	70c47e7da37d04e4df30237367c7bdd8e49dcb824da4b5bf5d11b3326904de45	n/a	Heodo
2020-09-02	0057779620349e.exe	exe	b62517d1931209dbcb424960e61a82c8c0f38b05da1b8601055f05b42316505a	n/a	Heodo
2020-09-02	WsxxVD30oU6I523053515.exe	exe	849d2fd16423d8a18db0fb9a24cb684574a536ec3aa087ada02e6d1267b2ab78	13.43%	Heodo
2020-09-02	2p000687681.exe	exe	1f5947b97f406920e719e6df844473fc411ad8def4f2c7cc9bdaec4e8a7e5159	n/a	Heodo
2020-09-02	HHdPZFSxazn.exe	exe	c0a7774d52aa8d155f42cbe92ced0403bb3490ae33fdd016700e10693470f1c0	n/a	Heodo
2020-09-02	000573453.exe	exe	1c0bbb1d6915b545a47c1c595135d6e64ad0c392f91372631fd6c3bc3a8bcf91	n/a	Heodo
2020-09-02	51Of3oryqf1J4501.exe	exe	98c914624e239a210547642addb1c133dc546935b10cb4fc3de1ead4d6cdfd34	n/a	Heodo
2020-09-02	0273563.exe	exe	ee5ca11db4411f9797c62377820111a29f1799ba96203b9bcd36b241a8c0615f	n/a	Heodo
2020-09-02	IKE0qjvkwfM0036721833.exe	exe	26ebd8988c919b45db6c3beaccc4b56153431eb7cf8092d2672d1d1e10acb4ca	n/a	Heodo
2020-09-02	VQXIpIcURKl0833816236729.exe	exe	aa219aedb9e969b210392214ff58e291cece91c21235b7bdd38b4baf6d49a7f6	n/a	Heodo
2020-09-02	029.exe	exe	c823b2e3758ca50c21058c7de49269b7d868f176b110aedb13f9b020ef601415	n/a	Heodo
2020-09-02	F5000958956.exe	exe	472166979aac1ac63be65a425d7364dca6c117372b0c10d09463dbd9dad7a7ce	n/a	Heodo
2020-09-02	000198161.exe	exe	23f95306085cdc5202ae455003fee10d5752dd650d6ff71a7b2d016d7db7e2ff	n/a	Heodo
2020-09-02	033.exe	exe	8957023c7cc29fec139a15e2c287edd328680d0516aee7bafce0023d6be27c7a	8.70%	Heodo
2020-09-02	epr4906517706076.exe	exe	e2058674705b18243e1c8b56f47683913f8cd17738a62cf640e38eed825a21c7	10.45%	Heodo
2020-09-02	PEMPzhISunt53.exe	exe	a378e5beb74d9591d2bb4dfde9ab1f0c84c37f2876f753070edf7c6da560c5ce	7.35%	Heodo
2020-09-02	000855445403856L.exe	exe	3892fa7343bcc5c4819772d794e1d3e7e1a7932494d07e83c777ae105f635943	8.82%	Heodo
2020-09-02	hXc000014659549424.exe	exe	bd3dc4657de66d33ce2f2cac43529cef3d5da66258c992cb8d9674f957e84473	16.18%	Heodo
2020-09-02	5007112227.exe	exe	b6c7c65fcf04c8cbc8b9be5e4e6cc6948239df9bacd6230d5a22a341e5066c9d	7.35%	Heodo
2020-09-01	00077651.exe	exe	b9cae66117965dd38dbce964d87c11899129e576754f98af23af9f8d7e6266c7	7.94%	Heodo
2020-09-01	bo2bhGxwdAt00091321998495.exe	exe	43f9eacf99a6289eb8d428ae5ad0af1b0964f13c84b562de78ef47b8d6591ca5	17.39%	Heodo
2020-09-01	412180199.exe	exe	d632ebb664af916695fbc4d4efc9ccfb1b02ad017826827097329d533f2263e2	11.76%	Heodo
2020-09-01	jVLLgG60.exe	exe	65ee2a011e93d237e80a4a04b0b561ae0bb4c6e48a60a44af5b368b5df730833	n/a	Heodo
2020-09-01	00074091691.exe	exe	40a8fcabdd48e76b02b6a117b7e08b7f321f2d1e233d1a3d6449aaa1565ac0f1	13.04%	Heodo
2020-09-01	007283944479K56tkn3HYOZ3.exe	exe	8ade094c7a91b0a597360a0d0e501cf6123ec13a4603a857426ae5bcccb018d3	n/a	Heodo
2020-09-01	kJAY935764244.exe	exe	270d4a7246e64216c5005be5b9cdbb599f2e3b21fa92641755ffa73fe74795cd	n/a	Heodo
2020-09-01	ALMqtK6nSq8v633215.exe	exe	0f4a9856741eeb0067f76bc1aad1095686114120292e2437d1bfc7b41e0c966a	n/a	Heodo
2020-09-01	0250116.exe	exe	2e5188011fd4f615dce8245437698f249d99393e7fa0ff42785ff9d71aa68d81	n/a	Heodo
2020-09-01	xXiE39.exe	exe	691462f02838fbccc69f82450b1c5161cbd6e84d99f41a28964617f8380e5ce2	13.04%	Heodo
2020-09-01	Wm07.exe	exe	a80192a37406588b55e67b20dc0aa29525026ccd39678412430c74a667f7a080	n/a	Heodo