URLhaus Database

You are currently viewing the URLhaus database entry for http://mentoringcue.com/cgi-bin/wRA/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	724071
URL:	http://mentoringcue.com/cgi-bin/wRA/
URL Status:	Offline
Host:	mentoringcue.com
Date added:	2020-10-20 14:55:07 UTC
Last online:	2020-10-22 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-20 14:56:08 UTC to abuse{at}lacnic[dot]net)
Takedown time:	1 day, 21 hours, 32 minutes (down since 2020-10-22 12:28:17 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-22	oG6JbA1QVjoF.exe	exe	465c1e7e0659b1e099798e6b1fe28f9109d118b47c9aef91756ddf368a707ad7	29.03%	Heodo
2020-10-22	CDZ0nfoHfClta.exe	exe	5096a73a8f97031a0cd9afaf5d666c8adf73ffaf473fc27df2d5cfdab29178b6	n/a	Heodo
2020-10-22	xAwcixzHT9MZCa.exe	exe	a738955e522dea654750b363efc74f2ad72160fc39b9ca3515e8f25f5f073977	n/a	Heodo
2020-10-22	YaXv2kzM9Pi5I9.exe	exe	50b632d97239b04e49405abf41319d4708c4f3e5ded697ae1ecf571327af0c7a	n/a	Heodo
2020-10-22	UtpXXikM1TpJ.exe	exe	448031790e7aade77af93e92bfc683485e8a213c73669e6aa1ea143e23c2634d	18.57%	Heodo
2020-10-22	VuNWyHaToxZ.exe	exe	55ae226f834be2b5b1707718de436c32974712f361fe115013feb5d6a0fc5959	19.72%	Heodo
2020-10-22	0mHjhpKaP3eoRv00e88.exe	exe	0d00b822c194a49391117feb8e2efb64a3204f2f56936780ae5ae0a3ba1dd5c4	n/a	Heodo
2020-10-22	IIxDchXIKriymnyBK.exe	exe	28f293384dcdad6dafd789b7175d721c542201379ef8a6da9d62f3d245fb0c62	n/a	Heodo
2020-10-22	4Q9u.exe	exe	709f9b3334140394f0f9471b273704c4189b44533472e15ea087671791b9b7e4	n/a	Heodo
2020-10-22	JNGWAurrU3vB4pAMgpGI.exe	exe	94303142c33466db2c7291b6906eafd08506e7a48b77b07770ef8bbc5383f529	n/a	Heodo
2020-10-22	ppmqbfwHetu.exe	exe	bbf8caf257493d4ebeefeac6dda688bb5e700e783b31f291fe2eb85216eb422f	16.13%	Heodo
2020-10-22	w8ruoPNeTCQAJhNUxpd.exe	exe	23629da21c48314ecc8616d764e5e0251dc9b841246efacf31dbd929cac37063	n/a	Heodo
2020-10-22	wH5NCYLZaADKxi8dT7z7.exe	exe	ffdcc98abb09f96b535f9c05ff591e07b5cc357f47d800ddf45a77fb62b586ea	15.71%	Heodo
2020-10-22	idH8136TwpDrT.exe	exe	2862c39e10b592746022d8401765d0c95080420c17c2d7007ca8dcabc600c22e	n/a	Heodo
2020-10-22	BuZaezQI8CtYccX3AA.exe	exe	d7dcb5e131540d4c3ec4ffcd7077d88a3d8ea016d77a9ef3b6de93813b8ad603	n/a	Heodo
2020-10-22	eAXG2is9Nya.exe	exe	96ac5680d73b0a940b028d268e00ea60d91f3ceee6bdde2b85cf6bd2f3b67635	n/a	Heodo
2020-10-22	6XuWZh4.exe	exe	0115a874f49f0b7f58cbd287652eb2a8cd3f7d21c15bed665706aec5a24900cc	26.09%	Heodo
2020-10-22	0Z90DHT3wqywTE.exe	exe	e3ed0896b674559577e32dc936ae70e6fb0bb02c102ad6c0dde8f7bc85065592	n/a	Heodo
2020-10-22	mfj94ugfq.exe	exe	6240be015d48d8228dc5977407692160e5518174af3c4522b42bbfc0e2432304	n/a	Heodo
2020-10-22	h8lKO7gwAlot.exe	exe	dc60fee4a99a0c4cff2c77fe8b50e57f4d7cf1d5d91ddb6eaee98953f31dedae	n/a	Heodo
2020-10-22	Cj70ps2KlQncT.exe	exe	3e573eb96f9919b162826e3ea59e53b6b9cd087c47e9b4ea2206092249d5becb	22.54%	Heodo
2020-10-22	vD8E7MmFJzd.exe	exe	3e5718b019dadcda51263057d0c82b216ef5441193f7ce1c718c74a1e9739475	n/a	Heodo
2020-10-22	msRy9rj3.exe	exe	0cf170fd11fad63088d2432e4992e7115966f35ce93a3550fee361dfff9a6cde	21.31%	Heodo
2020-10-22	GBdf8.exe	exe	103a04549942b2b5f901e097f4f9098e8dc10f7aac26368ebd4825569d541df5	n/a	Heodo
2020-10-22	aZ9Mxx.exe	exe	a1352e3d24f080cd05818ce482eba4763550cadc841ff409f1da3317164b9728	n/a	Heodo
2020-10-22	BCdsDk8.exe	exe	a98bd1f84b2b7f12783d3ca51c1834e881d78413b2591105636a33c461b66ab1	n/a	Heodo
2020-10-21	pj1eQLtC.exe	exe	be481254db8e2aa3cf30da4a431967c72bfcaa66efa760770859d439f9d2341b	20.97%	Heodo
2020-10-21	H5wDGcpT9BYQyADT.exe	exe	6ea062d096cc5069e1dbeea38d66538db8e8c2fa3bd09c987f1b994673302434	n/a	Heodo
2020-10-21	E6Ws.exe	exe	0bab4a3f445a21b4f70bbc5353dad3d18c52d8e41d2a3b869b868c8139ace259	n/a	Heodo
2020-10-21	t6NNF.exe	exe	181473faa823ddf6ff8277143436f7e09d42a76cda9297119ef2e73517a50429	22.22%	Heodo
2020-10-21	uk4UeqOJjx7TO.exe	exe	cf43677741729b82edd5864662e76c6053b86839574e2ed75e68986ca81599af	n/a	Heodo
2020-10-21	Bzztmj.exe	exe	d8d7c6fe90bacd09858149a191f8b5f65f3558e39cbceef513e0a74953889996	19.35%	Heodo
2020-10-21	lLVEqwd0fSn.exe	exe	ec2c713547638c26e44ce28652445579cd5729cd2ddfc51ce75d6574df3abeb7	20.00%	Heodo
2020-10-21	xUGa1qEzjcokQNVwo.exe	exe	7a12c1043c5f77a9a7d422d4c17d43ae38b09c5390963ebcb4d37bd8250324e6	20.29%	Heodo
2020-10-21	eJRQrStMkEJkbGnSyIFKv.exe	exe	62bf3605f064d016cb0415f21b5c9bb52a27a53aa152b70eedebbbb7f3e25612	n/a	Heodo
2020-10-21	i38I6.exe	exe	5da4eb97da92ca9981098eb3215d46889b16442230c4bfbd6dc26a6aafb8882c	n/a	Heodo
2020-10-21	Gj3uGwhsIbuKU3Ai.exe	exe	3a0b855029ad372fafc168f5738c096d7bb0d0e8c8c5f5bd6d1fe79dfffa9183	16.67%	Heodo
2020-10-21	Hf1LOqYV.exe	exe	15874f6024336d5e6c5f94f18a97b77547c624d8e7444316516e9b85c827d9f5	n/a	Heodo
2020-10-21	TxIqAaj71L4u8TnTCk3.exe	exe	88e435739410ce919b28788169e04dd4a16c46b6eb5bb4c00ef7adf77d753040	n/a	Heodo
2020-10-21	DvnC.exe	exe	a877ccc82385f3425d3ae6091c516b4400a765e0ec0c786c86f3aaf3fe2906cb	n/a	Heodo
2020-10-21	miD1RP4wOKjZ.exe	exe	5876f96ffe23ef21dd46d468eb38dd63e799a566cc2d12e0f3ff9f1d25189cb9	9.84%	Heodo
2020-10-21	dHN4MAltrf.exe	exe	8c13aa6af93db43da75300d0eb53cff911c6ef6d4a4bbcb725824c1423a9fbd4	11.43%	Heodo
2020-10-21	E5Zln9.exe	exe	46261418050c9e5fea4f1cf57249c630ce7598f85df8bfdeec026a964004c089	n/a	Heodo
2020-10-21	tVxl5XA1tDLweGD.exe	exe	0043e95b14ef154a9d9f2357063ed04df1a1517c2706bc6de7ca9a9750c732c8	n/a	Heodo
2020-10-21	fU9EBvt.exe	exe	039ec6cb3dae97c1e364bd447af971714eeb8d0789cc6935edab85dc27b61609	n/a	Heodo
2020-10-21	rF1NXGbJY.exe	exe	9ea815e1555727838c4761c07b7594de6d6187a63e67aea5ccb69870e9b859f8	n/a	Heodo
2020-10-21	vXp8.exe	exe	389d474383a5bdc760dad4541ba6f441f5d12510151ba1df1c70d41fd1e6facd	n/a	Heodo
2020-10-21	6WsCM.exe	exe	9f54731d37397d380647be874e7405f902b6c77e7a5abe7a526f247383bec387	n/a	Heodo
2020-10-21	fcD3pDV.exe	exe	afb307f3a7bedabf12e4aa37c64d577b1bd22b62b8dec6df23878f7746a09f82	18.84%	Heodo
2020-10-21	U5kQ.exe	exe	3da50a790005240786efff32ec3555beb933799cf67a16751b5c8c8cb7927e41	17.74%	Heodo
2020-10-21	QXJLUUF9.exe	exe	e24451a89c9e23307f642cb1e11898efaec7aa8eec6ce59516324bc1c7c32e81	n/a	Heodo
2020-10-21	SvkP6PwKpL22.exe	exe	796476f261fa939dfcd85f9c8c1a78bad39d73bc2ec3ad276e4821bc9f8a5a57	n/a	Heodo
2020-10-21	jyFOrFsixc.exe	exe	c966653444912f932f93d8331a8e8ae0bc79c5e87bcf8965043539c3d6417fc7	29.58%	Heodo
2020-10-21	r0muIIc8h.exe	exe	739ecbd9f992fd34d056dba80efe4cb228f311951f7adfac270b7bdc306d7b75	26.47%	Heodo
2020-10-21	KsICBxc1x.exe	exe	6628b2c262004bd41fc2008957c64afb7d1d2e771936411088f4996c641fe023	n/a	Heodo
2020-10-21	24xmKLbZz66iwn8ds.exe	exe	5c737f01a8d3da6304ef3de3a42a33365c34b8af71dbbe37bcab942a1f1b96aa	25.71%	Heodo
2020-10-21	9y0CzGFWMTs8k4EOVq7T.exe	exe	a26dfcfd67fba3952d78942fad6391c3df1f930ae3860e6df06c161e36a9f068	n/a	Heodo
2020-10-21	XEBxk3NqTPAIIZXUJh.exe	exe	4ca5bd15cb44b89b5d60c0054401b05e5fb99c290a9061b3328c626f315f412e	n/a	Heodo
2020-10-21	gUe8KzfSjuMjsZPa.exe	exe	abd980ccf16e614e873f069213e443d4bdb39c4ec93cb1465964cc2b4ff1edd7	n/a	Heodo
2020-10-21	39BTSpMvnQg.exe	exe	c9449587b7f271ac03f879675f7eca5b2fbfd85e0e6e49bff544669147391db2	n/a	Heodo
2020-10-21	Nr48.exe	exe	cc460708a5dc9e2a28fee34856576a69d039339e15caef140872e6bc4af88197	20.59%	Heodo
2020-10-21	q2cZ4J00CLmj.exe	exe	a9c9ab2e831c82730308af00a195de956efe30bfb4fe227f1545be78e7cc9d5c	n/a	Heodo
2020-10-21	POr.exe	exe	d4dba4fcffe0b28cb03971d457c86051238cfe9378c1ebc5e68698b2342e182a	n/a	Heodo
2020-10-21	AGQP44Qk.exe	exe	6642a0efd6d2dad2281f7e1b625118c38858e1044b326b6f0699f2a0eda9fc6c	15.94%	Heodo
2020-10-21	vZBSUc.exe	exe	ab9b9711fc067ea63c4d8f31da5918a57e491f3e6d638c350391143f088fd1f3	12.68%	Heodo
2020-10-21	KDVyS9LA.exe	exe	52e1d79c26eb3eb5217fa9a76a93bc224ac3f204913c3b069262187cf1091901	11.43%	Heodo
2020-10-21	PGTrZYSd.exe	exe	713a9e4a5aa263fbf331b385f5bb8e73b775bc87b3528e2012c95fa2626dfe4e	11.43%	Heodo
2020-10-21	PeLmgJgeT3GeU.exe	exe	4e89471db272fb8fc9e8f0c7e8862b16ed37676cc14fbd5469c6dab78e71bc25	n/a	Heodo
2020-10-21	Rr8vpwDdyJpgFEk.exe	exe	7fa11edde4f43aeafe67e817ee50fb805e4f15d58ce69c2e5d1d87f6079869b3	11.43%	Heodo
2020-10-21	oppWuJR.exe	exe	cd79a1ef6e7b7b01ab4b0bad3f7c9ee3062d8da2e70c0b5573272e48d28e0506	n/a	Heodo
2020-10-21	EYYdU0yZTRo2bOo58Kn.exe	exe	242e0fe7baedff75fa278d6dc741f90808114fefafd0def54988771520a673b8	14.29%	Heodo
2020-10-21	tIgA.exe	exe	5ca89133ed35b28c95d3a6c3a75747576b12b870254c074ef1c188f308a4b9c8	n/a	Heodo
2020-10-21	z5gHA.exe	exe	8f3f3f4a022286168aed77a4455f04819350c64a015df7893bf39d2a0b29bfb6	13.04%	Heodo
2020-10-21	Nus9DDtfg08C3xsFAZalH.exe	exe	9d90dee7a040c37f20865834b1072c038bd0186d0769dc05e17eef9c2a37f169	n/a	Heodo
2020-10-21	SEXK93A8srKOOuXo3nYz.exe	exe	59cac01482765533a80831bef98e30300cc2f73a2405c23f63e566e7e8291187	n/a	Heodo
2020-10-20	STGDkLFZnMY2Rm.exe	exe	9401056abece5395269833ad11b9ab11cf848056bdb293d38c628f5fdae48d28	n/a	Heodo
2020-10-20	tpM2IFZLetFcYfhakkQw.exe	exe	64f6df6128a4796442331104201d7cff38944120f20498d6ce27c6fecf20d6ae	n/a	Heodo
2020-10-20	hL2K5aklzB7wftQ.exe	exe	4ab221b49fae36423a1538b865b08823b9d33cd36ea5a43eb01cc37495316f30	12.68%	Heodo
2020-10-20	Oc9beWkGjsa2PXBq.exe	exe	67f60aac01df25c6c58bb9a53acbc9295dc10cd2f280be1e99c4732d08fc8ca7	n/a	Heodo
2020-10-20	XgsDC.exe	exe	70019dd7499da348f796cf1acb0d34ab55089b60e4456f121286281e9dc62226	n/a	Heodo
2020-10-20	ugNDi0fMLUhC.exe	exe	30c6198a26a8075adcf8d7b5aae5e52702a8d650471b2947e02e90443873ae3a	n/a	Heodo
2020-10-20	4KV5JjY01wrav8XRVKA.exe	exe	61164171e2becd8b2cb3d5d74919e519672e001297a7dbe3613322c9a43456c2	n/a	Heodo
2020-10-20	FF0ffo.exe	exe	59bc977f012f997c341ac0006fdc5cbef08325351b85d8d4fbf779f9687a2e50	n/a	Heodo
2020-10-20	mpNZa4lgvMM2bi5bgC8.exe	exe	f19f6135007f439b683a4e667d06960d452c3dcd9b966831547bba610fa1d399	n/a	Heodo
2020-10-20	MOnZ6dkDYIEf.exe	exe	cf0d4037fd9781fa594cc9b9c4791cdfb5262721863768250607e7486a87482a	n/a	Heodo
2020-10-20	SNIHV1ae1soJnD7IyyU5.exe	exe	0c50db9a6bccd9d59e3acdfdddd984eb2f0607133b5906b507e89a20bd23131e	n/a	Heodo
2020-10-20	MJVEhYud3.exe	exe	a22f0d36bffdea0d3a146336683e45022a12aa170fddba4f39ad5864297e175c	n/a	Heodo
2020-10-20	q0IumlfKOBw0.exe	exe	aeb9b17ee3b5ee9751fac46026fa220f23e9c0933d7d56b88b0ff22832cbc0f4	n/a	Heodo
2020-10-20	L6pFd3yI5.exe	exe	bf04c58ff369a250d7b4369c2af4a9fef8039e86d0eed2ddb2f00d6736cd9809	19.67%	Heodo
2020-10-20	vmExlav4Xb.exe	exe	caacf37126a1efd7cca59a82f0fd02a8a6104f68710d98398324368325e54d6f	17.91%	Heodo
2020-10-20	KDLSvAprAMBeXUzN.exe	exe	6460b81ec697aaa4f1a2432b4227022b3e9159c0f247d439e969ebf9fbb682bd	17.91%	Heodo
2020-10-20	gccJj0.exe	exe	2687e99f5d958c4e8e8952f8d7e6ffe314a51de6855480f0207efa407e56504e	17.46%	Heodo
2020-10-20	tP6LjJMGznb7cIkvZAJ2b.exe	exe	5061552e2dab5941d7206cad4a0b82df9cbf8a2f16d3cf67541c1c661f0acafb	n/a	Heodo
2020-10-20	rl5eM6lxoKkNiK.exe	exe	ee87a06941894da30ecfb106ee3201ccd0b53e977897174c8318cc862923ae8b	n/a	Heodo
2020-10-20	HESn.exe	exe	636b83154b85f614671eb92a4dd679133d5be249312f1ed6b1daddabce0ddf3f	16.13%	Heodo
2020-10-20	DP7HZTzXkX5cDtvxgyp.exe	exe	0f9f69570cc4906448f09e818d1b723baa3b6fb39e2e34e5613bc34144eeb3e4	18.03%	Heodo
2020-10-20	93i3QDQAvUFUjN18SSm.exe	exe	db1a9966a2c13b99edbaaea24135850a195a68a205c8276332090139fd5647cd	n/a	Heodo
2020-10-20	pXJkNTcX.exe	exe	2db2e4c18a7434f87454372cf75a086a4686399abb30fff716c95c3d9c194c15	n/a	Heodo