URLhaus Database

You are currently viewing the URLhaus database entry for http://odeftg.com/odeftg.com/S/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	610657
URL:	http://odeftg.com/odeftg.com/S/
URL Status:	Offline
Host:	odeftg.com
Date added:	2020-09-24 20:45:07 UTC
Last online:	2020-09-25 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-24 20:46:09 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:	23 hours, 49 minutes (down since 2020-09-25 20:35:16 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-25	wliPKIx2CCqDQ7ymL0HC.exe	exe	69dfd99823857d50979b5d1e7072cbf33f1c96c36baf789cdece01bab3f5f1bf	n/a	Heodo
2020-09-25	Yb3FDPs3.exe	exe	b765cbc4fe01f767647ea4169ca65cf95f212fd9c5e41f3de9201b811bbdb84a	n/a	Heodo
2020-09-25	yhEAJYjGfSkscmvIGa.exe	exe	f8a2be8736933ff7a6e6f834ee9bb060bf04a79f40b2c4e510a8e41b0fb9eca5	n/a	Heodo
2020-09-25	HYFa1lMA8.exe	exe	bfc33e656ce369256a724cf2a17308e77411faae8549ecd003b07d497f6fdad6	n/a	Heodo
2020-09-25	pJfGc0Uvqur3kYiBQTb7e.exe	exe	393166bb86f2e5898e1fed41c02e1352d4546a31f72683621215e34310e3b75f	n/a	Heodo
2020-09-25	SIXzNBylfV.exe	exe	dec3f082b53531b73d6106ee47cdf29c30b3de6e7e79f2ea9c9a180ba5a91fed	n/a	Heodo
2020-09-25	NyyHmpp33quv.exe	exe	fa9f884edf1f52ccda058488f1c0d5fb8e4d0389fb87fb4f021b7631d6fe36b2	n/a	Heodo
2020-09-25	5h9.exe	exe	795f89e04ce1be0e8296a2a70b4f7111416b7fd2ad8b19f6ac77099ce8bc0fb6	n/a	Heodo
2020-09-25	aUjVUvF6EJOyVExWQhR.exe	exe	97498327c6912bd62c5b9720c25ed94e5e8623bb732ed5bfc471441ce06a910e	n/a	Heodo
2020-09-25	iLk0vMKiiFdVNYxdTuxy.exe	exe	d32a5314c4c3a8cf481c070e29d84ea69ef277a95a1dde45992c5f215cd97b07	n/a	Heodo
2020-09-25	NMFpM32.exe	exe	112c4d7bfaee8978cb255b4ffcbd3d06fb0d0b7117e1bb2e7b3244247a9208d6	n/a	Heodo
2020-09-25	flS81UigfsjxAplff.exe	exe	9b49dd6dda2aeead4a14ee3650117d879fd04a6a8fab568063730c0af6257818	n/a	Heodo
2020-09-25	VJRqnY8uMdhgeL18ds.exe	exe	8d4b96d5e239de26cc53d957034759cee3502ac99de0642fb66288d324449660	n/a	Heodo
2020-09-25	KwyVDpP8tDlcdjTE2.exe	exe	2e07fbcc83e40724c95a9348158811ad6130b6abe3ab861d6e34a3e4da42c9d3	n/a	Heodo
2020-09-25	to6cOfk.exe	exe	63ebf2c39c687eeb0802f72a6f5790325810b584ae3671e64da681d0e5856139	n/a	Heodo
2020-09-25	zbzEccLtzXhFHCB.exe	exe	3e67d755445402a2d621d01b77412605228230999e5925b177e1d0a4a61ca863	n/a	Heodo
2020-09-25	qwbLgQ.exe	exe	a89e3aced9ed71e0852d7885692464e9690406e3805ea6c490e9c8d7237d7437	n/a	Heodo
2020-09-25	kvCHBndcqdE0bFF.exe	exe	bc77a3c5a8e1a30da6bd827a27e11b3705e4459cbe482e7d3f44923d36f251c3	n/a	Heodo
2020-09-25	mzCbNHVDfutFBajt.exe	exe	ef8d595187cb608b5c1dce2c7d048b17de04e999ed2d0c3f405da419fef4fbeb	n/a	Heodo
2020-09-25	PVTy3aLbQ7gti4mXkr.exe	exe	af35c7b7927eebb43e3f41d777b50fe66d042eb594883133c86d659fecb78c13	n/a	Heodo
2020-09-25	0N17j45H.exe	exe	1f355cfc0532ed2ba04a6c5c9a20807b3e200ef722dcb503084d59e7d1151e89	n/a	Heodo
2020-09-25	06J6UJUovgU.exe	exe	4c4091216f9d403a7c37a8e45c8f033469ed9842b09818f1ce67573cc4dd8c59	n/a	Heodo
2020-09-25	RvvMehTQ.exe	exe	c9e0f3b46aa37dc761a95397127132241e44b8e99268f73bd396a9981cb1c2ac	n/a	Heodo
2020-09-25	MANhN7l.exe	exe	148a69ac5cbb83a2e0c8990f3f3e3dc65f2ce0ecad62c9c4ade7530894ada818	n/a	Heodo
2020-09-25	u8G.exe	exe	e1a302bb05334c05037c878683448f2786e40d977b9d1bcef3c881d557662d30	20.59%	Heodo
2020-09-25	JQ4K.exe	exe	466f214e31cf3cf657dc958eb39ae91b3590d63d763cfb072f4f870ac30cfb44	21.13%	Heodo
2020-09-25	PCf82zacLlx7a4r8.exe	exe	24d1eac72429bf1321b25098ba2b178c3acb3266191360806a6da8cd10497910	n/a	Heodo
2020-09-25	Ip7gddd3PsekrumYtIX.exe	exe	0f1209cd9909ecb0bd9bc8b504d98b59b717924b3324b3968a9e6161519e1811	21.13%	Heodo
2020-09-25	RIccTP.exe	exe	11e6d69411e7952a661e85ee7fb62346d81f3d21dceb7ec01f6deb42d98300d8	n/a	Heodo
2020-09-25	tqTFjP0nnljy.exe	exe	7adcd640fb272d57c0d37f68c92d75a5db65f44b548cab2482ce16e80345e57a	n/a	Heodo
2020-09-25	QtwW.exe	exe	2ab26b9eed583fb86a8439b9a2c3ecd4b54144f14802cbf271e505ddce60cf3c	n/a	Heodo
2020-09-25	0anFoYcKwUr5FeqiHBmh.exe	exe	3c164ed171d4c6f33d17a0bc5ed21fedfbaedb47bf8d921f97a44eecf48bd734	n/a	Heodo
2020-09-25	j2m7HH.exe	exe	c8b62a6bd5e849a8d0a0bb2ec5ab26fd039df4f5bcb42d3b23390eb436fcb473	n/a	Heodo
2020-09-25	thLld8pt144b44EzL6W.exe	exe	6d9ea7f05e7a4bac471b77101171d02981a9e2875d9968d76a5e6c4688e6937b	n/a	Heodo
2020-09-25	YotGGzrr.exe	exe	8fe9e6a4d8206cf1f91fdb16b9800179c07c3154ac33a3724e84060e1dd23695	n/a	Heodo
2020-09-25	CGeqgWvdjvdaKjSs398P.exe	exe	aaad30c5e829bb272cf87ad507db36060dbfcb23e2563ff06ab0a56a808d9428	n/a	Heodo
2020-09-24	QL3xH3A9l9ZpLdO4.exe	exe	d9250aee486b6bf9c5d0459d1b7c977ae0dbee124fbe17b25f6d6c8557052d6e	19.72%	Heodo
2020-09-24	4fELbJ6nwYao.exe	exe	7908b4e4bd09168f728deb36e9b12570c3c7f2a122388a12518300d8a39d4673	19.72%	Heodo
2020-09-24	RCqaI.exe	exe	af504abc6541b15b312a208f7ca44131c914e0af41db137562fd45444d506b73	19.72%	Heodo
2020-09-24	SOBg1lQ.exe	exe	2ba7fa787ba4bb069b279002b0333b8b50247bce97621a9484d6e286576873e2	n/a	Heodo
2020-09-24	7SEbXvQjaFEN8lj.exe	exe	e2ed5df7b56d6f887207f037ced723030da4cb8a40871a3268910b366314259c	n/a	Heodo
2020-09-24	Tdb7.exe	exe	4f61f2fbe908d2408bee917ed62e56c3cba1f6137faa42a9bc99f65673da5e38	16.90%	Heodo
2020-09-24	x4rh.exe	exe	9f41ccff8ed64a5e9f09b716fad17617b50b0b24d76002ba51bc850add4202d2	n/a	Heodo
2020-09-24	oO9Rn.exe	exe	31fc17ba79d9ce86d80be3e5d14d349f4b09a2bd74a8a13bb470ebef28a3131b	n/a	Heodo
2020-09-24	SmBM.exe	exe	507bd7586b62afe31e011e4d1985036d2d44725ed6bf308b305bf62937e48294	n/a	Heodo
2020-09-24	Na81YU2JyC.exe	exe	12c9458a06a8a5fc134b5fec033cff242f8597791e5b127fce51bdd19dd2a444	n/a	Heodo
2020-09-24	94MJPm0WYo.exe	exe	565a155caf4b8928ea417e3214f0e3d1e03669e0e1681504bba921a0bf6d6e42	n/a	Heodo