URLhaus Database

You are currently viewing the URLhaus database entry for https://ozonerenovaters.co.za/wp-admin/VaxUg/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:718949
URL: https://ozonerenovaters.co.za/wp-admin/VaxUg/
URL Status:Offline
Host: ozonerenovaters.co.za
Date added:2020-10-19 17:28:11 UTC
Last online:2020-10-21 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-19 17:32:04 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:1 day, 16 hours, 35 minutes Poor (down since 2020-10-21 10:07:19 UTC)
Tags:emotet link epoch2 exe heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-21jjcxcqdVop.exeexe 5ce8bf05ae99269192ca93b542b88fad52f25c7183c98d31ebb1c191262be7cen/a Heodo
2020-10-21BfbF.exeexe dfdcd8f77edb1af22508b2c4c8779573aaf52b0aa33fcf9b69beb644d6151374n/a Heodo
2020-10-21pzw6sEAkAw.exeexe 24124caa7d2d9f26cc6ab5f24201ede71468e102fb372a3730cecfa351a406b1n/a Heodo
2020-10-21TqKLL3Cd6ClTN2TjaV.exeexe b4be60b3316a1255aafb0c6fc9ef3f3f6e89f1eb46dadbfe7702138d23304dbbn/a Heodo
2020-10-21Qe.exeexe ee8d3c3dab8d6eee97b16085f6f0e69bab3a215f1fdb1bb7f202907a2ff692a8n/a Heodo
2020-10-21dmPg9nhitwwliimDlIZ3.exeexe c7403d13fc0b23ab56b361c453b8699a05d171c32e6cb428aca50dc81aa7d3een/a Heodo
2020-10-21x8nLES2zZtx4R0bP.exeexe a4ba267a6060d4ebb772c1f970f354168a9378b443ac8fbe07ac4349d8aaa765n/a Heodo
2020-10-21ll9JRk8yUB2pUXAr6s.exeexe 5300941352345a73ba36a065dd3a651decc9f6a4a04827418a119b520ab881d8n/a Heodo
2020-10-214.exeexe d49e407fa2346ac49a82da2b3d8295cb611c1656136606e43ad8b46f44dd0260n/a Heodo
2020-10-210V7qqj20w9qAkDLP.exeexe 182ec98ef7a9a429ddfb7f98564045a28516fb22db00255d740dae1bcf9acb44n/a Heodo
2020-10-21NKeRlCiXrIW.exeexe 4931152fe58400f3f067d832224887cbebe168f0f65be7ee1b8740bda91e5908n/a Heodo
2020-10-21IgutPyD2zGdaa43NQ.exeexe 3e6b1f1eeec8497b7a9e8c7b60b9d2a0bf78f716b1395c7c6a86d1973aa0c95an/a Heodo
2020-10-21odo355wVHDZaXki.exeexe 5461dd050e7ae7589852e76fa16036db4560445371b4d93fda2d1925b6aec619n/a Heodo
2020-10-21HnK.exeexe da3b73aa3397b839812cb17965a6d1afcefcd2df14817d81b6ca1e70ff4ec02an/a Heodo
2020-10-216UmJIipoyIG4.exeexe 341408a3df4868985139febe7e6c5039da6abadf49caf4656afa97b462e1b34en/a Heodo
2020-10-212mLg5tX8kU.exeexe d2b85aac315ebdbe280e1c2d365e6823f2098b9616b3ee06da907cd27be31ee6n/a Heodo
2020-10-21oscoV1OP.exeexe 7eb4466257def56289972e881fe0adbd172c16cc9e2f63f864ce28a7eaa1cd39n/a Heodo
2020-10-21kWTYrCmiJ.exeexe 1c9f214d63defb935ff7b38464bafc5d4cd109939122698dda330c7b7672cf7fn/a Heodo
2020-10-21LZ2JI.exeexe 756f3e51c3af3e918478c71552bdd5d1f1b26a76ab3ff118455131fba4a30a07n/a Heodo
2020-10-21bnwSnMXNd.exeexe 323a15ae3abeaa23acb13722cdcecdd166bfb461bc79dbf54c19338399c45873n/a Heodo
2020-10-21KXgrA1h0q9hxWtTe8.exeexe 5f1dca4bc8817cf8aba54f742cb587350abae59b696f4f8435f682475c95d094n/a Heodo
2020-10-217ZDjqkQ1YNy9.exeexe 2b016f8315a1831d6ce132dcaaf3b9e5dea7da9b58af4a636fc27f9ac5fbc2c3n/a Heodo
2020-10-214rJoMIq.exeexe 8d07dc76421b6d2739d1d5ff16bf7f1d7242497420d1e71402b4d22db6b3c61bn/a Heodo
2020-10-20QC1ZU.exeexe a6491b20048e60097acfc2830b6772309733e09879edeb14239be9cf611c6079n/aHeodo
2020-10-20myyDGedgI9gBfrTPLR.exeexe 7a122e068669a1eb3c4c12795ef56453982f916dbe45058fb734913417fa8328n/aHeodo
2020-10-20qEydAn4l.exeexe 776a1105cf961c1fee7082d0504733a8c03d0c31398032282bd19efa800497a0n/aHeodo
2020-10-20XdX7y6S.exeexe 38072850f9c03ba721c530676d49c69b0dfc55327bd19c94c6519fd58431ff56n/a Heodo
2020-10-20P7EJJDF2zOf0hFWRK.exeexe 2c8dba34b554bc4dca440a8a8cb1379ca1285419699df7dbc444907e404dc81bn/aHeodo
2020-10-201oDnfB2sg4.exeexe 0045fd6df1225b6244c5421d94bb2db6bd5658248b6c6f754f34c5569b2347bfn/aHeodo
2020-10-20TsRDaX.exeexe f4f7b5d6e0a94613ae5db2fb8f962793f5f5e711ff25d1c362a16a50fefad9c1n/a Heodo
2020-10-20qo.exeexe 70c6477d6bc84e7ec9360cc21e8fe9a3e5dbffb9f00f8d0a89ff91f71b7462bfn/a Heodo
2020-10-20zQZ5KPFPZC.exeexe d3f074499ba80404588581a485b790be1bec410dd10db0541f15e983b8f89c02n/aHeodo
2020-10-20MT4ChXL.exeexe 5c23dfe7ea36c120093d367d47253d7a1a05a2d592cd38f8d6681fff7c349fd1n/a Heodo
2020-10-20T5o7LuH.exeexe ed8d0393906831bca20446262baaeaab9617d5e212f3c4292873b2915c0a602an/aHeodo
2020-10-20kzQxS3sHrciGKap0O.exeexe ec883a5bcee773da6f6406e1b3e5c596ce707d50bbcc6c45400f7330a3e5c82cn/aHeodo
2020-10-20ZEJ.exeexe 44a11c3498292c157e3df848e31d35e444743c330c300125f823e98707d0d606n/a Heodo
2020-10-200ZcQx.exeexe 32b56547710582335eccd7de47a1e473946cc8ac9ef8ddfa823a9478ae2efc48n/aHeodo
2020-10-20szza.exeexe d80af512f571934d7c419173c629a00098dbc5f83eefb6559f8eb4eb33cae7c8n/aHeodo
2020-10-20UImMb5moZtzZ.exeexe b8f0128314b2b1628ba2cab5a07492334143ffbec73386da79e88ea2d2499fc1n/a Heodo
2020-10-20RYvWeEjB3mCggD.exeexe 518c251303fa74aeb9644c9aafb8d3d92a1823f96a056e0d552fa8c5b0491719n/aHeodo
2020-10-20AEqag9gK6u3.exeexe 2e8010318cd23e3ba4384e630f8c5b53a60827a84d471cbdc45b011c04f13a01n/aHeodo
2020-10-20DfMBqb9My7V.exeexe b019bc361e455687a02d4e8fbaa888cfb0380c89601462249f9c4aaa0243914an/aHeodo
2020-10-202K5JzXsUavgXuf.exeexe 603dca58145c3069451734b28bcab5a39096cccab13d81e209126afb4d55cdb4n/a Heodo
2020-10-20EeosC.exeexe 0b2238f47ba9632987c8df8c6969a317c77eaae6d59de26acfa29e92a5b5cd3dn/aHeodo
2020-10-209z0UT6Xn6xiBi.exeexe fe6944a794be163a8d98e7836be691952d75845120c6dc9592d49820d8e74e63n/a Heodo
2020-10-206AdycHY6X7RA.exeexe 395b200d5a3df359deb5c7f55f5674b0b3ffffb2e8b2435560e95fa5326d376dn/aHeodo
2020-10-2048EEq0dbH.exeexe 5e391563cb900b1f274b635f7e8e83252a3b569cb414eaf5ae85e523b4c5f464n/aHeodo
2020-10-20d0u0OUHg48sv.exeexe 499b9384fb1a5f06478b93e19cd9f15d4ec1125e3503ca1735d9c851df84ffa0n/aHeodo
2020-10-20CxiGMRM.exeexe 8222747efa070154f4b9a079f5dfbfab14be00ae177fb6cdb1c46d81f12da59en/aHeodo
2020-10-20t1r.exeexe 368b16960902ad3be3395a2894ccda09339df6c156bf676475b89b0958f1ca1fn/aHeodo
2020-10-209THS4m.exeexe 5336d3987f4c74c3a4dd8f8ba2a3de13788c2df4cde8924913adeb102b61258bn/aHeodo
2020-10-208rDZj6i3.exeexe b6c646bbf285ebd0ed685506d858d9acaf5a40e3980d695fe6dc60ddbd7a58afn/aHeodo
2020-10-202i754XTnduAPNq.exeexe e9e01fbffc902b1e0effc298b7e518eaca6c7e756e3ce03609f9fe24b0f2cdffn/aHeodo
2020-10-20Lb69ZAe2YDel95wKdE.exeexe 7a3f8b997f9263a43969dddaff098caddcbcf83d409301d277be3b6376649c32n/aHeodo
2020-10-20Dzn38nalPwili.exeexe dcbda8833b8ba511ca09c2c46076e0dedeb78b7fddbfed349cb5518cd29ee1cfn/aHeodo
2020-10-20GCtLvqdxv.exeexe c072bea444375d2399a25e3714b6fcb59d9cc6dd02501e65a3cab1bdecfb331cn/aHeodo
2020-10-20c1.exeexe 152bd3322e076f0e244a8f6468182f37846ee4b5230fdc63852ad0f4e541a079Virustotal results 17.91% Heodo
2020-10-20WL7pcKEsFgU.exeexe 3da7efdb1c8008b09ac7d1c9db5b9d2cd9e372cc6d7199931dd067a35fcb82aen/aHeodo
2020-10-20POwrFo.exeexe 9940ff5c180710be9911ea5ebc14f42a252383c3129544eb904384ea0821ca25Virustotal results 17.39%Heodo
2020-10-20Shjlh.exeexe 14aaac212615b379a7f5f285d8346dbece9c2f0840f2cf94e41de04dc1de066fVirustotal results 17.39%Heodo
2020-10-20gB.exeexe 781b3e28b62a14b2eaccb1a80c622f82ee58af702c4da74c417596a47c42e6c4n/a Heodo
2020-10-202WIo7dkgqqL13VtrmO.exeexe 3b3baa7f331ed9e4f4208b7989bc452c62c144c398fb4af12e52d6327815becbn/a Heodo
2020-10-20Ma.exeexe 476b776084e8a9ea7d5ef84bd7f2a58f4dda045e4002886db3602d1fd0555400n/aHeodo
2020-10-208I.exeexe 6cf8b95b12a982e3abc98c9d707452f32deeff25ced56624f2d99620ae1f1f81n/aHeodo
2020-10-20Tcvai0ign.exeexe 2e5f581c16bb3bd7ef37fcf6ae462eeda5184bfb2699edfbaa227123e33b38can/a Heodo
2020-10-20GgQNe.exeexe c9ad9f953de59a0993d01f9beb529011ea80f67d8901aeb1200f7d33ef3372a4Virustotal results 17.39%Heodo
2020-10-20ir67U7aMzM9.exeexe 815f8878c8f2efbb1d1796ccc7b8f49850a0308151fb4881dd47982fefb5f5bfn/aHeodo
2020-10-20PJn2p3E4rI4.exeexe a50ee7cb0f667675e936e20ad7590e6354306709630200846b3fe718d527734eVirustotal results 16.90% Heodo
2020-10-19zRVk0vNg1yg.exeexe 7dbde9aeb33810cb3769eb27e9d385c1786d9ccbb8ee46f92d35ae9fb44af358n/a Heodo
2020-10-1981q9F7sf.exeexe 353866d986d125cae722ed4dcbf0ec1104b0f417cb1d22baba68b15f2d43a8f8n/a Heodo
2020-10-19piGhL2Rh293uDetSJ.exeexe f8541072bfdc5dcd0f37b41cc93f5b6d3b63b2f9a64db57d21a79385a6d01dc4n/a Heodo
2020-10-19Fzb6uLNWb7wX.exeexe 919bcedf2b6e1640d0cb34e842f9d3d195e038fe81079ad6110e8be579808949n/a Heodo
2020-10-19stQgWrJ5wK.exeexe 167a14acfb914d7b4548e9a6d31d1561881871e24dac243a1a53e161348237f8Virustotal results 11.27% Heodo
2020-10-19hUTFMDM0aCGzqdoG2J.exeexe 8d8fa6ef065de6ad7d3565ce4ccb1fcfc0b36d16ee233602932a205672d8964an/a Heodo
2020-10-19CcbsofFnpzn0y.exeexe 3a26b919cf3754f051bd1d9dcad2458b307714b7edf1e049006587fcef9f780fVirustotal results 11.27% Heodo
2020-10-19ZOHm.exeexe b57f4d3be065a4cde1729f9b2fd8ee6b4a76c4bd25ffe1c1ade652fc7e17bfe0n/a Heodo
2020-10-19qZ.exeexe ab076d00def988d807412786d91c261a7fd9e526de4226d58fae87f17cf7c604Virustotal results 9.86% Heodo
2020-10-19fGD3awfDd.exeexe 1abf8ca41ea9a5758aba195bcab5141219ec9d2f0302c17a78467d59561a6562n/a Heodo
2020-10-19CsWaYwnR4Rp0lAkqm5c.exeexe 5a3d669e487db1fef92959595f6d9854da0dda0da8d0d0130d2088c41d794229Virustotal results 10.29% Heodo
2020-10-19iAqpP3v4xKxlRkFPkcko.exeexe 282666cc7e19b716ea7db6e8b6d7a64443c3a57823276a00605939861399559fn/a Heodo
2020-10-19Usl.exeexe f3dccdb0ab8225934d42a1df87e6909c1ce5e3474edb61ab74472df796fcbdccn/a Heodo
2020-10-19B2QqQC3Dq.exeexe 50b1bb9421bb4627cde7601e544b19213d29e4ff36d63752fad2dd0c863f6e74n/a Heodo
2020-10-19Ar9MmF5SWJZBHSXdMipl.exeexe a2d8acecca16e04f2681f4483525d12086f14b46ede71e10577f32175d536ba6n/a Heodo