URLhaus Database

You are currently viewing the URLhaus database entry for http://mommafi.com/wp-includes/S/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	725644
URL:	http://mommafi.com/wp-includes/S/
URL Status:	Offline
Host:	mommafi.com
Date added:	2020-10-20 21:33:07 UTC
Last online:	2020-10-21 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU003024560 created on 2020-10-20 21:34:09 UTC)
Takedown time:	1 day, 1 hours, 5 minutes (down since 2020-10-21 22:39:23 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-21	0cgLa.exe	exe	c58d4396cb5ac2d3c0926d72ffcd42abae9638d84d6b8a776e4b8e5facc0b0f9	n/a	Heodo
2020-10-21	TraDG.exe	exe	52171cc8eee93dbf1d92b8c994ed443d48f1532f414b3fac32210fd9f6db1289	n/a	Heodo
2020-10-21	ta69.exe	exe	4b50e6177e4a5be6f5ac2b2ad9c9300d88beb83911caefc7199eb1afa2c820d3	n/a	Heodo
2020-10-21	ifk.exe	exe	a4d40fd1a242e950b342a1ae25f255d3f52574e4f72af84b4d19d34a5d41c783	n/a	Heodo
2020-10-21	Q4n8QBb6jEKkKT.exe	exe	e47eb108d2ee031deaf6a45f9b6986d2f76c6d33126e74c0e4d5660cc5732d9b	n/a	Heodo
2020-10-21	USa06Is4U6NZzP.exe	exe	043fd9055e150bbb7dac5626570506e9aa108a4bb20936a26171e9da581beb58	18.31%	Heodo
2020-10-21	GlXBzpVAbomK1QHYC1S7G.exe	exe	bb4aecce0fdb17df67dafd832b3d04fab67654eb0f91015622eb052523cc4068	n/a	Heodo
2020-10-21	DinTJAxX1.exe	exe	99037da1df5aa2492742da11cd9b31549c82905d07dfbe0e0c68ce940f1054ba	n/a	Heodo
2020-10-21	KDp.exe	exe	ae3cb35c7319b040044610130883dd8a42b2e3d4662501babd15f8cb043c46bf	16.90%	Heodo
2020-10-21	lofEB1rYXRlUEB.exe	exe	7741b35a8a7276dd4edad6e2733350499d9bf592b350f0078aa935456fb3d0e2	14.71%	Heodo
2020-10-21	SUPjNWJBGb.exe	exe	719aaea85fedac2f75e5f182f1f10c8ddc2695435ea51f30802c4f11a042a4ca	n/a	Heodo
2020-10-21	mznSz.exe	exe	c5b2203bd7dd05b90eade4b3ff0574c92c5e8276c70b3220b885c9d634743ace	n/a	Heodo
2020-10-21	Yti.exe	exe	939477faea7c7ab6560d360faee52f21a798d773ad2a428285f80a868380ff0d	11.94%	Heodo
2020-10-21	vuC89ahJs4lWW6jS2LX6I.exe	exe	8293ec9134e1c2bc7e56a94282349706b8f5920fd8238def9c48e55241580902	n/a	Heodo
2020-10-21	tr9aPsUTW5olbtuD7s.exe	exe	fbcd0bb9d11aeebb304212e20aa31c586a60296e9321708da4b89b2178ecb0c3	n/a	Heodo
2020-10-21	CDPC99ynSe3.exe	exe	f51f5b8e8dcf7fa0b807332ca009fbb5806b990a2a10ea39f327c03befde83f8	11.48%	Heodo
2020-10-21	pU6rQ0Ym.exe	exe	bc117625d1803e757fcd7574385ec121be0db70edb7dfad744d0da078575c530	n/a	Heodo
2020-10-21	aC3uMu.exe	exe	8530330a7092cbf1770f1e39ef855db8e118887601a938c5ab3de931fcdb40c2	n/a	Heodo
2020-10-21	b44jwanCvQE48oU.exe	exe	890398d115c3dfd79db3940fdc33053170bddb6d23ca05972b5ab7294bb91dba	n/a	Heodo
2020-10-21	nhHPeyKvkENVNOfHO.exe	exe	735c9dd1b08e9c246a740e38cd4863c33365fdaee8832ddd36291595c98f5c2a	18.03%	Heodo
2020-10-21	zTAOtPkKFo0vJeUckKi.exe	exe	857575b5a473cbe7a8fe58472c198a74709175cacac004bf5bcb560b8a5a5c63	19.35%	Heodo
2020-10-21	xQRtEEGFFL43YA1kb6RUU.exe	exe	a6a744e930cc4e8b27fb4f95ce9a61b8b0910f959b0a83b8c96086fab8825f7d	19.35%	Heodo
2020-10-21	siH0MCMJNKFFOw.exe	exe	ab70588ef8bf1da4db2602076bb64006307c1a57ec4caacf240eb192a9b025b9	18.75%	Heodo
2020-10-21	dg9B2lep.exe	exe	bc85d2f821669dce5843bdc86685838fb91e7331af28110efd9bbc302a46b6fa	19.72%	Heodo
2020-10-21	nU0495HpdHS5.exe	exe	d82918aa205406754b4fef404a1efb9d29c8e0cdab249fa5315dc8782a9b1319	n/a	Heodo
2020-10-21	vqrZuE0tyj7vwh.exe	exe	7390db1158447219eeef3e60cfff2fde8eb11b2a53377649ad8edb7b0f7bb7e6	27.54%	Heodo
2020-10-21	kkZ8ilddAWN.exe	exe	dd0f23523ace3c2e4e5cfce3a509e5fad12f6644ec21a50dd1ab7b794a732ff5	26.76%	Heodo
2020-10-21	PQcPopWTlXxT4iwnJA.exe	exe	ecd0aa3312383a55921743801f3dc88978f7d87f49c8578ee4af053ff3a0cb95	n/a	Heodo
2020-10-21	fNTHwd2uNSv6j.exe	exe	abdc00d10511be36e504d0fae94bc4a8f6bac62bbbd4550dd91a36992a92ebf0	n/a	Heodo
2020-10-21	kmr9Mc.exe	exe	80ad28cb162fd5d4537956508bbb5df59c11bc66cf91d906556e02b4ed8d9d85	21.31%	Heodo
2020-10-21	08fnDeLrWCXlp7wWEt.exe	exe	bc858fa6f0b1275aacd2bc7dde1508e8239c6558cb229cb8bd913b7f1cd912a7	n/a	Heodo
2020-10-21	g6dduYok0T3LxiU.exe	exe	b3bd5234537b163bbb289145e4aa39fea62d435fc7e81a4d1693ec9536958d86	19.35%	Heodo
2020-10-21	qavGcr.exe	exe	e3c53d341717a415da08c6b23cbd1c5f579113fa90b22f01b44d1d817d7c09d4	n/a	Heodo
2020-10-21	3Sa0BVmIo.exe	exe	62af79d5c725ecef8f46d325d06134517aec2c1c925e0adee988e284e5a20c47	19.35%	Heodo
2020-10-21	qTvJH9.exe	exe	17554d1b567766a66f096a7122a797f9f326c8a5018a71d8971f03e038501ddd	n/a	Heodo
2020-10-21	DCA3VQsg9GTvT.exe	exe	816574177e46524eb203b6f95c956cfbf854350fa63677104f6c4da2d0e8468b	n/a	Heodo
2020-10-21	oNzl.exe	exe	2d1923b20d68bc02bad3b6c50f2ee02b3534bddd6b391ab3aa879b4d0c40562b	n/a	Heodo
2020-10-21	a52713dE.exe	exe	3d330c4b72b2a00c90e665c71dc6e4192b952444d407d838046f3bdac00bcd52	n/a	Heodo
2020-10-21	0BZHBKYxLboXhSG7b.exe	exe	6bff1ee25faedfbab3eb216e3857926b991e46deb3c0a298f89d791a031dd6ba	11.27%	Heodo
2020-10-21	N15lyH.exe	exe	974580a0bdc7996130649ab64ef4651095420eeb99ffaace4d882e97e9c62b08	n/a	Heodo
2020-10-21	eVH88TiPpmncJ.exe	exe	0d8d398beb9e6673bd3000515cab2f7e5dcb01cf728abd8b7eaaa6ed683507d0	n/a	Heodo
2020-10-21	u5m3qj70jbsPY8UPt0J0x.exe	exe	d3e62bb1e87625e05b2f4a46940e02c31ed5dc43ff01e3c19d4df2927066af38	12.68%	Heodo
2020-10-21	ceHlB5PyRJvhHm.exe	exe	a4b89176d72e95b10f0f7aa3252693011730299ef2655dbb59a30b64f7ada758	n/a	Heodo
2020-10-21	vxkFFGj.exe	exe	311e001eae63f786349839188ff75ffb6d15bdde6c772479464a3c826134e176	14.06%	Heodo
2020-10-21	66FbJxpIBcmgratTt.exe	exe	1606b9d520b623d93a30a79f2b458a74778622ef544d4a68bf71d38ded5d2fc8	11.27%	Heodo
2020-10-21	Z115yif9H87.exe	exe	339414dcd128b0e32b418f70c16fe7592aa1afa789278dc2c8452910d5c49a01	11.54%	Heodo
2020-10-21	VgkxTrVXG.exe	exe	37d657738b8eb1c5a875c3f536db1f2486a9906d9acf79e8759803c81fd69af9	11.86%	Heodo
2020-10-20	6d8iUiRR5eWjYeaNMa2U3.exe	exe	14aec4e16452960e442f3448212ae51d7977ca6e1245f2da70e8972eb54786e3	n/a	Heodo
2020-10-20	hbVs2JnAkW.exe	exe	ad7f264f0c2370f0009cfdfe3b7865e890e731785a96fdb13d0766d34d19ab23	n/a	Heodo
2020-10-20	fKdgCGcTn3TUQESdkuXn6.exe	exe	5125cdc2165d52b9fc075f8c5ed2954a134472ee6d6d9e8af9590c4894042b62	11.27%	Heodo
2020-10-20	IXCygiwk9HK9zrq.exe	exe	c75d39478f0817636a7381e745a46d245e8c42c5964b7a213b9b6540ec6344c1	n/a	Heodo
2020-10-20	SN3xRjE0S.exe	exe	efa06a42d3b6fb1216c8adedcae6934d891144e4a3e4fa230ff4690306d1d3f9	n/a	Heodo