URLhaus Database

You are currently viewing the URLhaus database entry for https://cmnivaria.com/wp-content/dXg/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	698495
URL:	https://cmnivaria.com/wp-content/dXg/
URL Status:	Offline
Host:	cmnivaria.com
Date added:	2020-10-15 20:39:07 UTC
Last online:	2020-10-20 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-15 20:40:36 UTC to abuse{at}axarnet[dot]es)
Takedown time:	5 days, 1 hours, 1 minutes (down since 2020-10-20 21:42:19 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-17	OwIjOLhW.exe	exe	ddd9e498f35ee4f6389ea3ea7c869cde23142011c6971c153a0e22ea51eadc1d	n/a	Heodo
2020-10-17	d2Lhu.exe	exe	ba4d44670e34acd77b5f60b55aeb7834f0d6094a1b74869424515d871ef22094	n/a	Heodo
2020-10-17	cKKrX.exe	exe	7dea1c3601bd4a25af2328697dc74bb692dcb20e7f53c898028e0f9db0ee6ce2	n/a	Heodo
2020-10-17	kAhajsmCdDDzW34G.exe	exe	ec8324700db5988ceae2b1139f3aef3f16613b61170173f0faab0c62f1619c34	n/a	Heodo
2020-10-17	mhAxSJM9WxVJS.exe	exe	f32ac0c7030190679e1f28762a0347c7441d75cc5f2ca2c475f79f4e830dacb4	n/a	Heodo
2020-10-17	z5JiVpABMbj87P00.exe	exe	bcead10c194ac9be6c9e736a8bacca2672eb8699ece646feb492fd2bb2682e53	n/a	Heodo
2020-10-17	QbhECyXiGav8M.exe	exe	16c10132c8ebb77ecf241052ed7a3a820784b9d3d943b38282001d4e79e9fbbb	n/a	Heodo
2020-10-17	l6mc.exe	exe	291c2a9caba77f11db0a1c75c9d4b365be2de67c5529e8c6d39e2471a655156e	n/a	Heodo
2020-10-17	LN84UsXL4akzaripCTE.exe	exe	486db744c54da4f922d9be29e28667594eaf508be8a16713bee4d9efdea23da5	n/a	Heodo
2020-10-17	EVHGL2.exe	exe	a237131d162e6deadab721444683ff30ba6147b702b0b71799aff304b01eb74d	n/a	Heodo
2020-10-17	I1W9S6TK1hPs.exe	exe	c1727fd645075e9e0e30a07b3a1bfb138cb374f1fccb7040b9f2738106c01cbf	n/a	Heodo
2020-10-17	J4DxMzviB40.exe	exe	f2c35e9445aa612b721cb2fdbddb2b3a07f96d8aada7e0b8edb5d81554e5535e	n/a	Heodo
2020-10-17	7aq1ZGx.exe	exe	38631d49284849a8d796f351e5976a3710f3b7aca093cda23a3b8ebe929728ed	n/a	Heodo
2020-10-17	7VNkNG1k.exe	exe	1a082e62d6cea18397e7766cf1e5079472270e2a47729d339a1c1f9259bea997	n/a	Heodo
2020-10-17	xYs7LwonOiWu.exe	exe	946a49d9a7f29c34cbff620375fbf2eec028f3c75e91693045a9110df7804b8f	n/a	Heodo
2020-10-17	8e5oYu707s.exe	exe	50ae8b47d2b75d1b56f52f52ba189c2acdc39a057761b7a1d8acb56eb046c33f	n/a	Heodo
2020-10-17	cDLGY6aV.exe	exe	ea8fd786130221e15b390aeb61728d62a7443323e6cf3bf8fbb02cefe64182cd	n/a	Heodo
2020-10-17	ftKiSM2Fh.exe	exe	bff5fbd32167993dd4d01909feca17c89866c1c52a5fdfb28084d73e20499e2e	n/a	Heodo
2020-10-17	RAW2aukSucSwJbg4.exe	exe	8aca9493ac68695992922a4fc3179ac42bedb0d460ac4edf190399e1ec6e68fc	n/a	Heodo
2020-10-17	yiLlnv.exe	exe	222dde4d1ab94afcf7e261d3b0c0d9ceebb4b2b91a6d362ecec3793d67becccd	n/a	Heodo
2020-10-17	Zf7Tn0xCw6h3YWRxh.exe	exe	f14a20b810f2233312ccb1d0b456f4cc7165c02cb8e5265dd9f41891b7e08fbb	n/a	Heodo
2020-10-17	MFlcK64JdV9do.exe	exe	e55433b9b93fc3287cce1ede574e1154804dac34bf180962574662e903d2ae4e	n/a	Heodo
2020-10-17	46hienMaVYPPF6tn5ZY1A.exe	exe	7610cf81280bc35c6f9d3e0dba763132a83479e5e71ae3d6cea9ab4d2c401620	n/a	Heodo
2020-10-17	3xsQMXDh.exe	exe	33b79811c8ce0f12f7ae715711a16d707e032006228b910bacdf6a94f374444f	19.12%	Heodo
2020-10-17	LZ4sf.exe	exe	4421eb49e87a69fb5721ee7c7367ee91f5acd7138b8c679fe9949ebf51b838c7	n/a	Heodo
2020-10-16	kEiaaaE0vL.exe	exe	d7c07b74bda93b9046dd57641a7b37921413072b5ad1cb8b217bc7ed345f1ebd	n/a	Heodo
2020-10-16	rIMdbHETdW.exe	exe	4d7ada28bb5725b68c6c37b88111b44aac4bbf3a2777e5f15f71b5ce7cc164e3	n/a	Heodo
2020-10-16	6azZeKtQMFIiDbmlt.exe	exe	edc55a7de0769c4dcaf9cbe1695eba9dcef429944c12aea646d23ac224686321	n/a	Heodo
2020-10-16	M5figGPbQS.exe	exe	a93f0fefaf1fc5232879f4065df855732970666296639e3cdb7dde64c626c3df	15.49%	Heodo
2020-10-16	Mllj3rkbDkX1itR.exe	exe	7f08106a7e4d8632cafe5b3debd4b99a5a0c4a09c72ac9149cc7507b8b813e80	n/a	Heodo
2020-10-16	jynG6Rda8YvqiZZA.exe	exe	6f8fff4c1e50a65e10fcfcf6982afdcc52296250bf5593e6b8c705f3f5c3b651	n/a	Heodo
2020-10-16	NjLQSQ.exe	exe	fd09fdf89074ca7bee4def4bf4d48d1b4a8a50f7efe125a2d662dadcdc4095e7	14.49%	Heodo
2020-10-16	dKdgQ.exe	exe	a2118e49549bb23125a830c744d3b797ee205fe5a45bcc7db6b68db5d0d66464	12.68%	Heodo
2020-10-16	d2fqV4NXtVwvnIm4AP53d.exe	exe	d3c9afa068c4cf37cbebfb21fb398d6cc23a554c221de14374d86f501868d403	n/a	Heodo
2020-10-16	3yf2QpfAi0Aedhv.exe	exe	7e2666b739c4e6436d3cea7192f2d60049b6110e8d9a014768e225204073b865	n/a	Heodo
2020-10-16	MqFNEt.exe	exe	eb18e26dfb8e7cf0129d3962502de59aed09e5a72b73fe5193b5a9024e7ba2e8	n/a	Heodo
2020-10-16	0W89rmLDsz4WOb.exe	exe	26322775ce093ec7040390b2804daa06ebf8c2fda97885683b35ab8e318b4753	27.94%	Heodo
2020-10-16	K1IYaxeIKDTISrYMpRRW.exe	exe	60ca081f4c52ae145012ea6b0a70774aac177e97deede0538d2566fcb49cc345	n/a	Heodo
2020-10-16	aeRd1k6nSmUTZ.exe	exe	4264be7a3d96646fec07c2c8d47a46925b95729a3ae90e38739c9abd7450c40a	27.14%	Heodo
2020-10-16	m8dOm6Sg8mDVp0kPN.exe	exe	220932790a0725576acaf7520f6a7c3fd2c72cb44fd814667c3b6c4a5c02228c	25.35%	Heodo
2020-10-16	3FuG7yojC6ulIcek15Y4.exe	exe	fd1cd2985af0d6d99aa2b9f72ed484aab755bedeab27966c467d633cf0dd9a00	26.09%	Heodo
2020-10-16	utdVHBWVIMJPdRG4.exe	exe	629387bc35991a8dda43390afc211e177f768dce749c524aeda557064e378dbb	n/a	Heodo
2020-10-16	dFFiqZ.exe	exe	77d0c84016dfa3bc74f0aa1ba7506b7748af6b13423f8e58dfa1bfb8e7c489ac	24.29%	Heodo
2020-10-16	EJ1Zgguu.exe	exe	a594930330fcb95e4f5a555556fc023b6c149539b47da9b5f118c270dc5d3249	n/a	Heodo
2020-10-16	Dy8yXQZ5YbD2YcS3pmsRq.exe	exe	2e2774ed7144f426ca0d58862b08cfdc8243b354e884c18c071314184a4c0e29	25.71%	Heodo
2020-10-16	o4bGDoAbGtmTMyA.exe	exe	e7ae06077f864658a424cd04317f42d86ca60597b3968871c95f41babd8d4408	n/a	Heodo
2020-10-16	kNwp.exe	exe	cf0c25796fa8683e9d6d17cfa544e66ded5550c440155a8fe701f523583e7c04	20.29%	Heodo
2020-10-16	pJqng9y.exe	exe	fa57f3401ebbf442191c090788e6e7132f04c789b5ced473c9eedeb956be1e87	21.13%	Heodo
2020-10-16	pxTGlY1zyNZVVLuP90A.exe	exe	9a9030e7834a8be29aa9e6d9c251b9fc604283580010dc3a331e792c8ea25d85	20.29%	Heodo
2020-10-16	ZnV.exe	exe	cc9a8238e8b7be22e037748a171cc4774123240c2708418d03181b0216af3ca4	17.14%	Heodo
2020-10-16	oyG1R5yZl5.exe	exe	851ad90bec9ba3d1fdcabe2658a41565c227bf290c2efc99a627034f5bf115f9	32.39%	Heodo
2020-10-16	c5EIhdbriOiBJFXSeQj.exe	exe	55d95bb13a832e17d5e70e0ade98045cb2a0f867cbde02d75d08fd4c6224c164	32.39%	Heodo
2020-10-16	M735hwZ3hTaB.exe	exe	59633885af35ae5bfc5d387b5622ba8dde1a3bd5afa566116d8e9b18be3ff709	n/a	Heodo
2020-10-16	84whsDd6fivyq.exe	exe	0f551b11c2e74726523f262232cb0115d24aaf8b5f168f4b19c8211362ed5fe0	n/a	Heodo
2020-10-16	CY27fJx064flcjpREff8.exe	exe	685a3ddaae8dca2782c2c89f39be89d814523e59d360e6275712c43902f4d8b2	n/a	Heodo
2020-10-16	y1X6nwWx9qXQ.exe	exe	da409a9d46ad10b7b0ecc84feea3212a2339afcc0d1edb0462a63b96ec9eca80	21.13%	Heodo
2020-10-16	2gY44.exe	exe	0ff05d3ff6d93eb407291f1ba6342759c239bd8fb269162a2c58cb03e2a4cc77	n/a	Heodo
2020-10-16	8DuBOwxxg1w3q.exe	exe	258723ce50d13a7871c7f3e7858334157352a6592ff8cef940bdfc80ec9106d0	18.31%	Heodo
2020-10-16	Z8ifMTCM2VBWlfeSZm.exe	exe	1fb02e0f43a1ed726a292bff3d1a3d8f66923f34795a41cdcd3073d279157b60	14.08%	Heodo
2020-10-16	kwGQIbBKtgpl.exe	exe	722b7cc25fad4422e339dad7a594fbfb3fe78e0dfa23c48ffd08c64dcd1b405e	14.49%	Heodo
2020-10-16	ODY5xg5lP.exe	exe	2c1c830e37cbd202dc9791ae609969bcbbc28d26aea3ac2a3c638f011a065bdf	14.08%	Heodo
2020-10-16	WvsadlQD5HtreHTAU.exe	exe	fc0cf23f380eedbbe90fb8fb11ccc6ccf6a0994d20b4c0932ddb62f7c84b963b	12.68%	Heodo
2020-10-16	3DJUCRyG3940ZjYlvMd.exe	exe	fb1d5e9dc7d0cccbdddda0386d453d7bea9dd6fd773807a33e2173c56761c48d	n/a	Heodo
2020-10-16	BbWbi7teuvxEBBDW4Yj5c.exe	exe	642fe3f6922c38a493dd8c975e3e5f2afc216ed642ebdb4034c21340ad408e4f	n/a	Heodo
2020-10-16	Ud7pQIG9Or5JZlfrMoXUo.exe	exe	e37ff398f289f6715ba1142e76f65311246eda6cc117b5bbd045dcfd9cb4c818	n/a	Heodo
2020-10-16	krA9qzPg.exe	exe	8baaca4bfbccf3da8a71942567b3b727b7daf98b2c6b32f582ced4bd3cedeec8	14.29%	Heodo
2020-10-16	KSU4k4jnii5R92g.exe	exe	ebd3a0f5af7f22f1c40468ed08614deb809e7866e5c734079f21f0889c39d0be	15.49%	Heodo
2020-10-16	jLK.exe	exe	4ec2d6d8b5377a6f4a73b7ebdcc617e6e2232bf904cfd89688ccebe62b2d3a45	n/a	Heodo
2020-10-16	Jn0TW4sCCXkCxP1K.exe	exe	1e5583015ac86aaaf30808ce9f938b64dbdfec7edc3158b95b561a66d38d3d66	12.68%	Heodo
2020-10-16	qwcsWnNufALkFYaO.exe	exe	6fa0cde3ef164cca4c4f8a135425775e0f7e93d7205f2340898ae74e2134d038	10.00%	Heodo
2020-10-16	FZuFoEP.exe	exe	28d3c69157ef958bc33922ddab129dd0d1db8292f71da71ea5e0ac086875afbc	11.27%	Heodo
2020-10-16	UVrnHDe4hZ34lCv.exe	exe	f337007cdb3fed940b57296c552f2a5148f466a27442842c405977fb7bb57929	n/a	Heodo
2020-10-16	0Dc.exe	exe	fa3128237296edb63b79f7c8aba8237a680cd4dcb9b17649b38bc9ae818cff77	8.57%	Heodo
2020-10-16	yiNDbCc4VVzzCrZ2XBHGt.exe	exe	b3f8eca734c50c7fa49f3fdb16f79e44c9f80eb345a79767ad9dbbbc0cd5b90d	12.68%	Heodo
2020-10-16	F1h.exe	exe	b8bc8ef56315c5233de48b409b376d99f750407e8360bed1c4c1d17e03cacf5a	n/a	Heodo
2020-10-15	ksH28mDtFjGRpPZAK.exe	exe	a22e87915a2642dc2cef5721752b6fafe09c54f9282f62a1778ed2c5dfdff7ea	11.43%	Heodo
2020-10-15	GEgAnkfmKUMNkkdoV9C.exe	exe	c15849df92cf79dbdd070089e07982c1188975d1faf1eeedafde56cd791b4b3b	9.86%	Heodo
2020-10-15	pB3d1oVMFnu.exe	exe	e4700747e15fcd6bee69a5297d2390037645ce67ce46f681a2de2f08f582a2c9	11.27%	Heodo
2020-10-15	8SynlULC.exe	exe	cab268576af22102dc5ee1d04b72935d408ed7506de7a12d208295231c2a18ab	n/a	Heodo
2020-10-15	uygcAIt.exe	exe	371abe5b080065439fa626cdffce6836034d94fbac2080d47f06e13dd3fdb30a	18.31%	Heodo
2020-10-15	hlu3h8h.exe	exe	1d1d2e443c2eaa24e937d6b8c635cec0face4f9a0a98cac0ba229d831f922c0a	18.57%	Heodo
2020-10-15	IW2x81xGPExMrYCY.exe	exe	2c2d509105850bfc412cd679eafb7b6ef60319c21368d7bdd4108134dfe096f7	18.31%	Heodo
2020-10-15	6MG9RkAemZLB.exe	exe	d6537bcdd298243eadf2966fe6c4c39ad92192919cf127260797338298db9ae3	n/a	Heodo
2020-10-15	dcEwK0.exe	exe	9d9ff4d4f55c44cca266e05b577b13bb2641fdef34193bc95f3f44049983b5d4	n/a	Heodo