URLhaus Database

You are currently viewing the URLhaus database entry for https://kingchuen.com/cgi-bin/KQ/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:533029
URL: https://kingchuen.com/cgi-bin/KQ/
URL Status:Offline
Host: kingchuen.com
Date added:2020-09-16 14:45:15 UTC
Last online:2020-09-17 02:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-16 14:46:49 UTC to hostmaster{at}twnic[dot]net[dot]tw)
Takedown time:11 hours, 16 minutes Good (down since 2020-09-17 02:03:22 UTC)
Tags:emotet link epoch2 exe heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-17e3cEVcTT21fqeP6.exeexe 3fb4ff39ce5a304188e64b1d30fc311523de045be1c8174fbbde905e0dbdf526n/a Heodo
2020-09-17g.exeexe 11a075eb8ae7d4ad76fa308c67941e8dfe293e9b1a0d19ffb416d4fb2f841564n/a Heodo
2020-09-17w8RK.exeexe 4e162e98728b7859e7c56d8bf3b69f3bbea0b5c8bb58ac16da366241d4467e39n/a Heodo
2020-09-17csImfvhgtcnKT11h.exeexe 1aef96b06f02040aba2964e4244a36c17e13756ebd4eea56ac657da1098c2849n/a Heodo
2020-09-17sl4D26b.exeexe e4d8e947a12cab4bf5e68b7725980bda91d01661ed8981b809312f4e236031f2n/a Heodo
2020-09-17oG2u2N30gXezjk33CsQG.exeexe 5662002d1c828bb49a0ff4e83b867a4a6af642c5e6c5fd94a223b54395df319an/a Heodo
2020-09-166.exeexe 4af369cabddab043e41e47c17296d0218ddef7cbd76db4f02bc4cd4fb953ecd1Virustotal results 14.71% Heodo
2020-09-16OdOdZ8zg.exeexe 4869ad5bc7b8356fff0cf3583bb4ebe03516949b421bbd9e81b9de343ff5e4cdVirustotal results 14.71% Heodo
2020-09-16knCvjgw.exeexe 464d39b1e41a0c0c0eb33d94ff78d360f79065ac84a2b904f7e64907b4cf3c29n/a Heodo
2020-09-16IOkIzebK.exeexe d4e1bff621161e64681cd707554f6c864b85d6a4cf64c5e032a60efb80a45ecan/a Heodo
2020-09-16rclY8x.exeexe 77ee23b33d4426aaf700cdf06aef0630542b58aa753d14ef6a90b697d1392698n/a Heodo
2020-09-169CGgnR2.exeexe 54ff86b071ce523e3fa351d32395a4d363dd38522a60e8f6c1e28dc911647bc9n/a Heodo
2020-09-16cxnBAOE0yX.exeexe 9d945f0693fde3d5f42ab1a6703305ae79f362c5c1f5bdacecb49b116b2a4d85n/a Heodo
2020-09-16d.exeexe a737f05a011ce62ef322a8f9ce9c35a4be92cd1ad447e05bef68069795a657d1Virustotal results 8.82% Heodo
2020-09-16pP.exeexe e504ff11080ee3f7cfe9207fb459c0fa2a14de0611056b580ed7126d810e44e8n/a Heodo
2020-09-16uHZzbo5a3o8xbqr.exeexe 04bfa2b9190c9742c88aa1b0737bd4435bba8005963b8bd7331b6abb7615f834n/a Heodo
2020-09-16cVoZI9JqmxlHeOhv.exeexe e3767632190719f7e8a86e365e6ca6aef9fd132e984659d4c6789ccb396de6f0n/a Heodo
2020-09-168CotDpcBL9dNErnmb.exeexe 60510291dff6ba6cf24d5bbc36af6ab2183a6be63d0b6ef9a89315a31c3143afn/a Heodo
2020-09-16N2uDsT.exeexe cb5b89390fa82c26071ed4a9273c599b035726043dfcc0a84e961e9d7ae623f9Virustotal results 20.90% Heodo
2020-09-16lgiS4K6pI15Y.exeexe f8d23d1c20a080897bdb7f81f5846b05ed94354953bff46cb8c9f8a66a4f9503n/a Heodo
2020-09-16Gwb7ChkFZK7.exeexe 7c30bbe896dad808c46a018deaf5700d75ecc8f6cfe1e713b4fcaa9b77f06b5dn/a Heodo
2020-09-162.exeexe 128c5e84bd59dbfd6bc1f720831a5261639d9f20dd0a2f9f6b71e2994e564558n/a Heodo
2020-09-16iX7Lfph7Jus04zP.exeexe b07f070e7654d9e6ba496a1d4a5d5d7a77bf662f9fb133cf31dd28bf2b3b7b22n/a Heodo
2020-09-16N2YyCRxVyor.exeexe 7bfad86df9563e291a9e5d3942c67692ae1923dbfeaad20658dd49c6b10656e0n/a Heodo
2020-09-160oQsvQ3YMxRA.exeexe 9c39c506ad630233cddfacf4b2cf193c6ac5cfa1901ef4843893ddfde9da5ecbn/a Heodo
2020-09-16sTRaFNT.exeexe 53475d14df426de10ac8c7c2fd3149deab00c629c8f162c93efe2c9ce3501617n/a Heodo
2020-09-16kZ6rHHhpTKuVz.exeexe 347ce8cccabe55a5be417aa03204788aa3217677632bb52fd0cfc3c3ae24df5fVirustotal results 17.39%Heodo
2020-09-161g.exeexe c4b9d610ed268d1c2536edae4ebde77728093292acf1476156393353f3ae193dn/a Heodo
2020-09-16J.exeexe 91c741e2246d5f58e2563f187fd6f7bb780084698b385e5034beeac6dea18f1cn/a Heodo
2020-09-16iV1B.exeexe b54b050a16d6418e95aa8829a6aae88831f3ef84dc19f9489916be15f30e5822Virustotal results 14.49% Heodo
2020-09-16U.exeexe fecc6866f95c5744fd1345128d84df9ff52425e8ef7f343424b029cb5eada5a7n/a Heodo
2020-09-16iARahhl6O7mMwzVwz8.exeexe 8f233c640178298c63dd8117525f464f190980f477d80cce388991b80b17f0c7n/a Heodo
2020-09-16C8iEfIfbk.exeexe 7fe24885183cab41915299b5c72a79142c492d4e8cddcce76bc81d48b04a6ce6n/a Heodo