URLhaus Database

You are currently viewing the URLhaus database entry for http://gnlsafety.com/cgi-bin/eAD/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	692342
URL:	http://gnlsafety.com/cgi-bin/eAD/
URL Status:	Offline
Host:	gnlsafety.com
Date added:	2020-10-14 12:24:08 UTC
Last online:	2020-10-17 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-14 12:26:12 UTC to abuse{at}amazonaws[dot]com)
Takedown time:	2 days, 23 hours, 5 minutes (down since 2020-10-17 11:32:08 UTC)
Tags:	emotet epoch2 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-16	s3kyf.exe	exe	69e415a6a536be75a427f06f90414b83efc6a417e177b64a5b6976d9219d9e21	31.43%	Heodo
2020-10-16	gphbuoFn9s.exe	exe	56b3738cb6ceb872343d3db96571c3535a6f5efc7377cef1bbbe835dacb791c1	n/a	Heodo
2020-10-16	TlmItiN1ZwkhBE3Jb.exe	exe	24682195bb09d6896ceb61bd304065cbde793e49961aee36ebf1aa664fffbe39	n/a	Heodo
2020-10-16	UOEll21nc.exe	exe	6ce26c45e0eebb792fa3e2d839ab8c326da34cddafcb1b2bc477d3be4c97f304	n/a	Heodo
2020-10-16	8eX2.exe	exe	08fe34bf4bfc795d39c39c91a46145d6555d3df446c7c0cf42e54bc6e0dfdd22	25.00%	Heodo
2020-10-16	i6TOK22vqp7R3.exe	exe	d4899df7e3de5dee47664fa1a9119360fcef21cc4ecc3a1411d8a1eaa3f9182e	21.13%	Heodo
2020-10-16	BPVrQiqdA5.exe	exe	5cf6a192fc8847cd06a500c141893c3b2bfd39583c1ee7302c2c4a45c3048a7d	n/a	Heodo
2020-10-16	5nybn2oDEyztAwkJwkY.exe	exe	aa6a97f97d8966195a0f45a9f133c33bb06c751a9d4a34206423cfe7d5b355c7	18.31%	Heodo
2020-10-16	cL5PAF5g.exe	exe	d32d85c045ae299f466a77ada83fe7b251861b36d14f78a89e0293efbedf11e8	n/a	Heodo
2020-10-16	MFgmmLWVOw.exe	exe	5e57c72d407fff4ba350d0df04af92020c3ebbdb8ba712ed10de916cb8d3df86	n/a	Heodo
2020-10-16	Zljk.exe	exe	850190dda1c50bdf1ae1453269be2f4878c11463a963892677238155491ffada	n/a	Heodo
2020-10-16	xlrvB4hF.exe	exe	612991ab46bcaef3ac0e1655875fb46e7227fbf743df3fccbfc22774dc0ffa21	14.08%	Heodo
2020-10-16	8KNH0bWQbm.exe	exe	2e738ff9baf854eaecad76653c1cf10035cd720f33b84e0f587aebb82ca9048f	n/a	Heodo
2020-10-16	QsWMvGLT7cXN.exe	exe	c9a11b8b797432c7a3120f15e17bfc6e71cf79f488c6052a7f02e028001155bd	n/a	Heodo
2020-10-16	WYrfqmMbGymCs.exe	exe	699f1b0a6912208769e1e0fa05fa7db609f0e24c05ce0e1a11669b565edb458b	14.29%	Heodo
2020-10-16	9XniIw98mcv.exe	exe	4a0f0c44a5754361b43a184ab5e345e6e0d9f93dfa585f1b4f49e78e6fdc109e	15.49%	Heodo
2020-10-16	IIsCFjHS1W4YeAo.exe	exe	b53bb8a5a5848139a0b45cfbdef3ed5070748527807695575b4664a90b10c481	n/a	Heodo
2020-10-16	RUlEdP.exe	exe	4f9dd628d68312c7a82f44a4e33ab38e1c623a61a08e3830531c91e3470b439f	12.68%	Heodo
2020-10-16	qO2roOzfV.exe	exe	ec8d76d210a5933b1de09e155fc0b3f6550adf0e68382a7d9f735567b7c7116c	10.00%	Heodo
2020-10-16	tdhcbAAN8w2O603ExUg.exe	exe	64739e47269ec2d620ca9cda4a1178a896d7aab72965c2787e91279f1afe479a	7.04%	Heodo
2020-10-16	3hA9cU2BfJao.exe	exe	f198af1cf06f9b8c491436e1451ad218ee5e54f7c55ed4040d24d2e1c09695cd	7.04%	Heodo
2020-10-16	9KzJb989CwC38.exe	exe	954d0ec56a27f91de049dd5068c38c79bfd25060c99dd6467528530746c11872	n/a	Heodo
2020-10-16	A.exe	exe	6a3eed270757733e4f746ac4921d44fb7b642e8798c5087eb004778a3e787031	n/a	Heodo
2020-10-16	PQN4.exe	exe	3030a2921d171dd37c586b39ade1582c40c12a99a276ab724f56bfb47cba4e83	2.86%	Heodo
2020-10-16	WLkUUHxFjTDW7KBL5V.exe	exe	343df77c8de5a60bb21f0131aaa4d2e3a3cab889e3da692b64926a7b11ac4758	7.04%	Heodo
2020-10-16	kn.exe	exe	2a4c0d459184e35cea9831969d11830a5b226b352004ee9cb3da624f0a5e76ac	n/a	Heodo
2020-10-15	HdxbL.exe	exe	d18dcf9b7fab921f44cdc1d672f71166d6eef89d432ee459d5e746c1382b1cf8	7.04%	Heodo
2020-10-15	v2xsxS8ctblrzhFwc.exe	exe	72be8d7513ce07e1c2292e6588fb8f9db44fb9436d13296bd4f978ea252c2c3a	n/a	Heodo
2020-10-15	66rV3cOzqulNZPDpdwQ.exe	exe	045a87d8b932c2de60841c3314e926170c795a4398fa26ca02c71d93369485f4	5.63%	Heodo
2020-10-15	Aye0BFDVL3Axo.exe	exe	32104572d54a4b01d143aafbbbb5aeadc04751d6583d5e71df4e0678d7168f06	7.04%	Heodo
2020-10-15	THboHdf2ll2tpoF1rTCY.exe	exe	c638a57e25eb7386e3fcb33f12f4dc4b853da114bbdd5523b9b2cd3a4c1361dd	n/a	Heodo
2020-10-15	ROQf6Ptjc3CSTWMVQD.exe	exe	a3da565de97d3e04f041122d3fe1ebe186e8730af8b5d613ba0ae84d4b3ec2fb	n/a	Heodo
2020-10-15	9V3N1vY.exe	exe	52fb342bc731132cc242ed4fef3d08bd020aa92387f1f3cf3c1c191487aa2064	n/a	Heodo
2020-10-15	ZcFdT4Jwx.exe	exe	65edb900843214a1f39ae95830dcb7eb0e9f8c4de231e2ff002f7c3a2fdeb3a3	17.14%	Heodo
2020-10-15	j.exe	exe	8fbc6b3e9b5540c5cf1ea7ef52c573b3c5f815e78b6c0cabc1b4dc6fc54bc713	16.90%	Heodo
2020-10-15	VO72.exe	exe	827efba261eade70e8f3be1c19404956601bae1ad2ccc752e5a6e4c57e1369a6	n/a	Heodo
2020-10-15	yXay32fEd.exe	exe	bcddabfca6d1f29278b5b3582fe1af9695f9c691001e181441888a7167f13179	n/a	Heodo
2020-10-15	fIR4yHHC57w.exe	exe	bec2361395e8b838ead4cc35f821d557e405f89069d072fe89b5402fd518bd11	n/a	Heodo
2020-10-15	ojlX.exe	exe	d6e21c101175a4e49fddfa07da3c36a0179333b5612960b4e62fe55ad947a002	n/a	Heodo
2020-10-15	6c1a4Pii1vu.exe	exe	d0cd6a6dbd9848883b810502b405b51636082189d4d4ff18ab04850af979286c	18.57%	Heodo
2020-10-15	VH9efdDX9TC.exe	exe	145e882d4d404d70d21caa6bd6e1b5210db230df4323e833fa8bc562e714eb90	18.31%	Heodo
2020-10-15	lM6usWgJkb5bUOMp.exe	exe	fb06bc392b11456b69f7900a894afc9fb4a892dd49f3f708130b599e6bac4815	16.90%	Heodo
2020-10-15	T9qbPkETMkV.exe	exe	4d6b57754acb5074aaeb47ceb4795384ce9a4d1775cb11f97714953eef3fc5a9	18.57%	Heodo
2020-10-15	yhTDcc.exe	exe	afd209e16cb14331095ba1fee53c4dfdcba5a36ba2e932e432f8ebb5e98dc354	n/a	Heodo
2020-10-15	A73PNFp5SM.exe	exe	e31b953ed029523d1a72807c5396493d537364c3d9b0cdc9331c8394db3b421d	18.84%	Heodo
2020-10-15	JvmQ7wGxDtg.exe	exe	439f829c9321bfa0343a0fc0be31711cc3e896b4bf3d0a1f62867a6ef8533750	17.65%	Heodo
2020-10-15	RFGQnwkk2fn.exe	exe	82c3932019a40353b5824305ce0c552dc3342f2db70bb758a94aaaa8c64ed737	n/a	Heodo
2020-10-15	1kaMiYa2cO8V9JULOJK.exe	exe	927d0c02abede2c9d8d4c21a652307dfad078846642cedc1ae87b23a13dbf3f0	18.31%	Heodo
2020-10-15	pKz7.exe	exe	375162bc5dc326b2d17574b02b0096f690d571c4003db21f75f1deba79966d74	n/a	Heodo
2020-10-15	OZfajhT.exe	exe	ecc0e6da582df3a7632a099d9c5a0cb9002d5ade1ab0b2dff6f04cc574f09e26	12.86%	Heodo
2020-10-15	KisvMGY.exe	exe	9c2c1ea8e8372d1e4d2a763e6a8f3ac5aeb3ef8cd766ce4de774a900737f3df0	n/a	Heodo
2020-10-15	yewGcPUiqUD.exe	exe	e84964bb4e8c28d24db5efa0505d75015217b45f41b3b63b0d467fcf1bcd46bb	n/a	Heodo
2020-10-15	NV.exe	exe	74263f000abbd8cb5bed57db5d85001bc1c2925fb3223b006af96b19440ee489	9.86%	Heodo
2020-10-15	933tWp.exe	exe	253736e9abd040fe8912ac0d560ba1afa6b71f11fc948df6b5075a1c7fefd23f	n/a	Heodo
2020-10-15	DfmdIxGmX9.exe	exe	eb4f542b64efd22fc3277ed3d398d15b441613de6e056eefcd2aaefd025ca93c	n/a	Heodo
2020-10-15	HFwad.exe	exe	53c2af82a861d9bf6fbe8fae9712e71bef035d62327df11301d42369ef6234b5	8.45%	Heodo
2020-10-15	ZPaE7IxYWNf.exe	exe	2e25886398200bb722e458dedf39509d16b9d1913e7da1c521bf08923e7bc219	8.45%	Heodo
2020-10-15	A1Gp064Q.exe	exe	0972f447490984079592db9356ddde4d2c3dd0f4a64a61d19dac03f6d5bd6bd5	n/a	Heodo
2020-10-15	x8htsZCiq.exe	exe	89fedbe9231383fa50b8d8c983ecf0b4606ba5031ddf89425d7840a5888ea4bc	n/a	Heodo
2020-10-15	deXa5L.exe	exe	568d3a19adeec2ee1e5f8634d73faa6f3746a84dfd9d1668850f3670962ef9c0	n/a	Heodo
2020-10-15	SZCeWXGD07wH.exe	exe	0d509e76d07922c50fb22de2c7f3d524553650d65012289c3d185e61bd0d3400	19.72%	Heodo
2020-10-15	dJYHI.exe	exe	9d77ee9e30097f10d2f88e58802a1ceba600d59719ac23411b68251d41e67f24	16.90%	Heodo
2020-10-15	IruoQj0jdaKbX4LQ.exe	exe	6153904a4bdf7723b2990769d99e94482aad001b5a7c48a5143ab079a2f0570f	n/a	Heodo
2020-10-15	Z8qapzStPDEePr1pC.exe	exe	647bafb32f4536e22048e2d5254743e24628ab5eed7dc31aea388a43bbb75d3d	n/a	Heodo
2020-10-15	b1VRoBwAEei.exe	exe	f7326d3046a63c183de3fdb793e2cc4d9f870a5d8e1d7caac3ad59f2db2c1bbf	n/a	Heodo
2020-10-15	w2Sv.exe	exe	9e166f9466b3b547b44dfe755e3ca6a61c512417724ce6f3cd93b36b46a6f267	15.49%	Heodo
2020-10-15	e1Bq9DUaHIIN.exe	exe	6651dea8ecbb7eb0e1777ba1a645bd22a61d10ba54bfd74a9eebde2dce43c7bd	14.29%	Heodo
2020-10-15	224iFNUsQAI.exe	exe	1623b70ba5cafc24739b56d9dbffabe9d17c6b66eb28a76a2c7282482b6c92c1	14.08%	Heodo
2020-10-15	9yaS8BCQB6hWMM.exe	exe	0b3a0f0e45e24824f7e9e6c4ccd4b7474c4b98d181a1790e9bebeaeb46f6c7b3	n/a	Heodo
2020-10-15	LNXR72P5lzq.exe	exe	980c1868c996405731644880cc60cba9ab5fab154f5a651b8eb94479d62b7032	n/a	Heodo
2020-10-15	jNFR2X7SuCiNK75lv.exe	exe	24aa3d526e3ea83682c7ccfde83f122b45962eec75e417f76e7f6969b0ce872a	n/a	Heodo
2020-10-15	Atxum.exe	exe	9925445493f506327485abfd0e4e4b061339f972430daeb9fd22929e8782df7a	15.49%	Heodo
2020-10-15	iGSv.exe	exe	c642e33a674dcef62c0b325a73093de5ed6d66d48800f53c0d8fab906f2db29e	n/a	Heodo
2020-10-15	N2tW9UbHb8Zqig5LXf.exe	exe	d7e36ccd26b86a7c91958fabdcc2ba1b540efe547689f00b83eb0851c074c723	25.35%	Heodo
2020-10-15	wdBtPANGfLmzfcRKib.exe	exe	bac77fd2a526b2da34507cdef4f2f24b6c2c8aa56df63fc40f7b1406ecd3c2a3	22.86%	Heodo
2020-10-15	yGbhW25DjAuN7.exe	exe	490fc98db574553046dfdde7b1a8507efcc5efc37e84d4f1ed79fcb0016d6961	19.72%	Heodo
2020-10-15	71lXfqqeI.exe	exe	88e6ae84b5dec643778bc94ed12968126a4af7cda12f04bcb5a7a7575f9b9cd9	18.57%	Heodo
2020-10-15	HW.exe	exe	f8d23a3d06d43f8955b192569d82654c2769144ef6937c8a905830ed871c962f	n/a	Heodo
2020-10-15	OG68PuIv.exe	exe	e8efe6e0f09d6736ad4d5ff26fb97e0fdc2ee4c15976e01d4b189e7e95efc846	n/a	Heodo
2020-10-15	uXT2C.exe	exe	69340097dbb1311376da75a0b7934cfa1138b4537c970b9ad55db49461584ed5	18.31%	Heodo
2020-10-15	vgpGQ4lfJYBn8Ew7WW.exe	exe	85011fdd86edd5ee2df282aebb6feb4461644dc85c2fbf596e87271178974854	n/a	Heodo
2020-10-15	TWdXTXaiOvTeDNpkL2WL.exe	exe	c54f4e0a8798f2736cf2652ceaa928bf0feacbe412182f2c87539b25c6d57e2b	n/a	Heodo
2020-10-15	CNyHjed8.exe	exe	020261e1de5f4bd77de8d85fcef0a189c8db8d7e304a0a79195a9486b02e580a	n/a	Heodo
2020-10-15	7aVAE.exe	exe	2f501e0734d51da333c02b04ff4a34f0a6d3dc811d5111a96145792dc9035a24	16.90%	Heodo
2020-10-14	W.exe	exe	06c814a809c869b8d93dcdc63e37c85ea463d4a1209247cc1119c9339e318a0d	n/a	Heodo
2020-10-14	dJPC.exe	exe	11fcf1c858fe2726f6c1ba82e25825df4f06c46f2b9e41e7fef67b36de5fb1b1	n/a	Heodo
2020-10-14	sb2PCyi.exe	exe	7a4674cc5ce64311c1384e31f13787a0a3aa5d5fa9afefddd2e2161698aaae9e	17.14%	Heodo
2020-10-14	vDyJWF1vJChyWSllUepe.exe	exe	fe5b26506282b262adfb28971f4d9cfbac471b95fd73fa49106291cd68798648	n/a	Heodo
2020-10-14	k6a.exe	exe	10ba1bef121da788f22e7676ff4a1da470696f5a5132dfd5b5156146416b4ad0	15.49%	Heodo
2020-10-14	B3B9FWpWaph1Yoyqz.exe	exe	1c327b9eea6b5d828f3ddbefd78ae2aaf8d3ae68a4fd5951fc035084e4fc0c6b	n/a	Heodo
2020-10-14	bLryDi3.exe	exe	1c6ac1a277864ccbc5670c110f882a94c0a2cb72a55f657093e11872ebc56133	n/a	Heodo
2020-10-14	gyhE42O.exe	exe	02089b45c814762c1b6c4131c6efbb103aa3011329321d760117034963d1c3f9	15.49%	Heodo
2020-10-14	qPNgESZ8RS4BDoa9HYNe.exe	exe	df2af085a4b5708ff8b250c421092eee299cb589651ac255120c9ec7db2538a7	14.29%	Heodo
2020-10-14	GS.exe	exe	bfe71556149faa3b6b6091e29a781664f8390977416ea4e851b029df74937319	9.86%	Heodo
2020-10-14	1tSgMIvI3oF.exe	exe	a6e73eff857831d4a9f9d455f31031e9e547ac3234f2c2896802936f32e9aa84	8.70%	Heodo
2020-10-14	1HeOOoaPMhxDP.exe	exe	fb67fa4c17d5af36a2967decf25c5aa9d5af7362452fb658e6fcccd7ba07df99	n/a	Heodo
2020-10-14	SXJZn4K.exe	exe	02bd634a2fcfe4f36524fdd3807241235993f604d67f10ceed489cd4471eea7f	n/a	Heodo
2020-10-14	f2YgYDkw2tBSh5Eu6Q1.exe	exe	42975f4d4be23c3e57373f20297c88a31c2bef1cf0f4b2cd13b624cb6f9fb42c	n/a	Heodo
2020-10-14	hwnfgQmC.exe	exe	f880ab252823285592e11a97d2bb695c60386b6acb50d1d50353c76f9748f531	n/a	Heodo
2020-10-14	Armbcomv.exe	exe	19216e56850479571ad114a6a9dbc72f06bc66328ed22a1acd88d7d8ecab84a7	n/a	Heodo
2020-10-14	7aQ.exe	exe	8cdb86cb0ce460cc8db6d784de6ff22d5c29827f05ee9fd552cf000b6181c167	8.57%	Heodo
2020-10-14	Z.exe	exe	86e6e1ce08bff1a26df5d01be873418fb33ab6199a5d60f505ef230f89df7735	8.45%	Heodo
2020-10-14	GaLz.exe	exe	7d03daebd85b9dfdcd10e6c00f889e4a861ece85a563c3a43dac3e6e55c09bf5	n/a	Heodo
2020-10-14	7kzGhlj.exe	exe	d2a8c70dc620aab645a341b096211c5265de71a118214e50f4eb026ab3ab47f1	7.04%	Heodo
2020-10-14	k.exe	exe	fc5b80be155a6323a5a5732ae3dbc7a53fa528e910f71f0ddccc2b2c1723e510	n/a	Heodo
2020-10-14	KIBFV7GiYvioPMD98HE.exe	exe	eb33bc2a1a3fbcd793684d7cedc89aae39841808298c75e599424d05ee88a8f8	8.45%	Heodo
2020-10-14	pyFdLCmO9Rj1Cltducpw.exe	exe	d6f361292d60c26b6a3cba348c56b8ca39df541b66315b9876a2e68339ccdd6b	n/a	Heodo
2020-10-14	o.exe	exe	17dd89b2afdda0e5e9a23748d770b385b479126abfc7821a3846b9ecf8f46361	n/a	Heodo
2020-10-14	ZXZ8wzFrqVfjQ.exe	exe	dfc5652308f81b31cfe4006eeafa19462b1a15f0adbf06305dc4a3f95eea1413	n/a	Heodo
2020-10-14	zn.exe	exe	ee226f92865939db48805fa0361e588fb41e1b2962f3fe9d4c04a7dd7d16a1dd	11.27%	Heodo
2020-10-14	dGAmMP0W.exe	exe	4ff22ace3f1f886eb3ae8ead7ef09f1bc4891c9062147086bf296e1469a77296	9.86%	Heodo
2020-10-14	wot6aG9gTxy.exe	exe	47f8495a4a3b4a6dbef5c47e194657ddf9f662636fa648a384214ec482389de5	n/a	Heodo
2020-10-14	QuEXRWN0VKc.exe	exe	b2a56903148406edbb4f099bf0d23fdcc6a355bcf5a7a069ca130f791256beb5	9.86%	Heodo
2020-10-14	VyRNvaz1AVN8W.exe	exe	74ca6afd674c6f8b6be05fae6f9c9147644eb7762fa00b27b8a73678c1e38e4b	n/a	Heodo
2020-10-14	C9ereA3GPGJbsEJpluv.exe	exe	a48655301e65415f6c6b05379a1a7e87cdaf9b84ab2e71b056c844ed04d7574c	8.45%	Heodo
2020-10-14	pmhiwKyLfC.exe	exe	cd008b751e532fabe0af0003053ba18db4493b7772b6f179936df9000464fe99	n/a	Heodo