URLhaus Database

You are currently viewing the URLhaus database entry for http://4ghandloom.com/indexing/d/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:724277
URL: http://4ghandloom.com/indexing/d/
URL Status:Offline
Host: 4ghandloom.com
Date added:2020-10-20 15:43:07 UTC
Last online:2020-10-21 05:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-20 15:44:12 UTC to abuse{at}dimenoc[dot]com)
Takedown time:13 hours, 27 minutes Good (down since 2020-10-21 05:11:14 UTC)
Tags:emotet link epoch2 exe heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-21rEexkZND4qckYIBg.exeexe cc57c7ace883a947df580469ad34bcd7d00c04feb958ff7b8f027cb93072a8dfVirustotal results 14.49% Heodo
2020-10-21AlUpqQC9.exeexe e53afd84ced11cec7489b9284257560ac942c661fc5b1c736047c430887693fdn/a Heodo
2020-10-21cGeC7nH47.exeexe c7998a98131eb5fad20ec7f05497dbc2f7405707aa4946dd4c4fbe0d1743e6a6Virustotal results 16.13% Heodo
2020-10-21oaYJ21v33.exeexe 9364a07103f954af86a1b692bc9dc99aad8a8148d1baf872cc5639824c1473f2n/a Heodo
2020-10-21Ge0NdvFZglk5vqzga.exeexe b3e6dba77391d579155ca21a17671e138c0724f81dbb29512dd31e0d35776644n/a Heodo
2020-10-21stc1tVyA.exeexe e16a2cdc9b5fad0a8a4f752a2ea508451bc989ebccb637dfce10a0ec6aa461a0n/a Heodo
2020-10-21sh64tb.exeexe 58148b662975c47a5897fd0b5d4366a561d63bc63f910fd7f08b5b61c72e336cVirustotal results 14.08% Heodo
2020-10-21ZZC3Y1xUvee47EeFa.exeexe 49c69eeb26ac8edb2f9f48b927398f7ecf006546dfcfde7532af3ede000d881fn/a Heodo
2020-10-21Da8RK2o6dA5N.exeexe 564cb75188852d4eb9650be42b26781255124174d628cc468f3a7cbf0f335e9fVirustotal results 13.24% Heodo
2020-10-21x.exeexe 11f5a5d3dca7cfd480fb6a4733d017d3577b955599937cec90d107a2e61f863an/a Heodo
2020-10-21FfOGOxAB3O.exeexe ff971e701436a7690cf3cf419a57605a0925adb209056f7c78285021f555aa50n/a Heodo
2020-10-21LBlDOIb8DHEQQglzXut.exeexe 4717c393447acff53f22b8b41ce262196e0bc010a1adfdaa8eaa7e85d50e2871n/aHeodo
2020-10-204Yv.exeexe 4b9adbef9bb44c68649413e99704f1689f6615bff00af40e18c87757c8da567cn/a Heodo
2020-10-20iM.exeexe a6f28a054a1f9d38c0d2b1032999967f5ed944140758850d0b5ea9e87daab3bcn/aHeodo
2020-10-20ZiwROxe5M.exeexe 463bd11883daeb799f2ee7c43dc7707c20231a75e6b64f11012e8e965254aca3Virustotal results 13.04% Heodo
2020-10-20ro0OSvR3SlbDJ3jnVeFD.exeexe e40ce4d08d1010495f9063cebcbd00c7d1887049c22f03f9a01bb11b7d271533n/a Heodo
2020-10-204IBO2OxDYm.exeexe 94ee843a795758e99b65032a8564a6a4ef3a2359391097d707bd0bfc8cf5f13cVirustotal results 11.48% Heodo
2020-10-20qz.exeexe 3e42d8a16a0d98828d373c638e6dd617da59b27e66f490f6c90df2c08111130en/aHeodo
2020-10-20mllaCnqrmt6QX5pmh1LC.exeexe d295ff28175e430a21ad8b68bb231cb6ecd4dbf8f0a6f85a2b67be9df44d395en/aHeodo
2020-10-20B9RrFACuTeBZaXyF.exeexe 4c76056a348b0953cd82be1e87827fddbe848e2534ebf503fbc43d177653a5f8Virustotal results 11.76%Heodo
2020-10-20tYaNcLNqYtK7dSw.exeexe aee724729bc01bb4e3c01be9e304c7dfb26653453292f522c91d82722cb7c08dn/aHeodo
2020-10-20weVXOT1uidF.exeexe 3316491faaa3a72a7080ab0cc882f68067c6d729d7a19e4c4668cf86e8465279Virustotal results 18.84%Heodo
2020-10-20xhUHD.exeexe 3cf616c8eb981a6f4c9c32eee239689564cd2512849f1ca56156819fc055d3b6n/aHeodo
2020-10-20dw.exeexe d7c6b113d087d6c7a8e7fe343625207807e1ab52a937cf3cb915d77fafed3f63n/aHeodo
2020-10-20Ua3Qr.exeexe 3070ac169ce3a212143955277023907fee4bfc1fc8c69364f0f63ad45bc69f6cn/aHeodo
2020-10-20ifqtqp.exeexe 4f1ab1b21c3916befc785ab52c6aa9e058ea6ffefec04025b526190925402e4bn/aHeodo
2020-10-20FV1xuwyrfM.exeexe c8284421f0b5178e91eda40195c871aa270de83dfa4b16860ad699ce7cf2a8b6n/aHeodo
2020-10-208m2ID.exeexe 27372072cd0b51f71e70ccbae8b08cb73eca46028fcf34a5bd3e9b8434d31f2cn/aHeodo
2020-10-20yy7YmqUTWJL.exeexe f68aa2391f07eeca34527d52f0dbd2094da4d81e382bf0f77ad67a3cf602e426Virustotal results 17.39%Heodo
2020-10-20xWZ5Av11Hu.exeexe 067b50b0a592512e10e0c60775b5308fc396616956cd9377ba385c2579081012Virustotal results 18.03%Heodo
2020-10-20atbwHUONqM.exeexe 6bc926d6203966d433a8ae30e763a6d9a612519b5b2b70b0c914cc328ed84d16n/aHeodo
2020-10-20QVRtvYrNnUyhJcmjK.exeexe 3d6f71f9002a00c369b43fd5087288d618fe4aefcaa1fd9956108a2987a72e2cn/a Heodo