URLhaus Database

You are currently viewing the URLhaus database entry for http://gordon-and-son.com/wp-includes/n/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:733429
URL: http://gordon-and-son.com/wp-includes/n/
URL Status:flame Online (spreading malware for 5 years, 1 months, 23 days, 22 hours, 17 minutes)
Host: gordon-and-son.com
Date added:2020-10-22 07:36:11 UTC
Threat:Malware download Malware download
URLhaus blocklist:Blocked
Spamhaus DBL :Abused domain (malware)
SURBL :Blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2025-09-17 17:58:12 UTC to abuse{at}cloudflare[dot]com)
Tags:emotet link epoch1 exe heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-09-17da6e21ee8729c6f1404ad122e90d5d1688e2460954e3d6f61b432af1bf26cfae.txttxt da6e21ee8729c6f1404ad122e90d5d1688e2460954e3d6f61b432af1bf26cfaeVirustotal results 4.84% 
2020-10-23Xcxf2sfJOa0IXJhk.exeexe 42792dba2bd7f21988199f4f03427e9c6b073665f0dbdc9e8698210008900abdn/a Heodo
2020-10-23FnCNy3FXUbBCih.exeexe c39d675c0bd4f2cd9b30b13493cd14fae83fb722c639ec932e82c4e1839f8aa7Virustotal results 54.84% Heodo
2020-10-23IAM0zDRHr78oUzv.exeexe b27a4e61750d1d21aea85bd9f6ac762b0018942884406374bcf653121cc565abn/a Heodo
2020-10-239EqvwHgY.exeexe 1e17f8abdc4f0605f4b52059f888a42b2b064d3e5f17255d71767143cb96fa85Virustotal results 51.43% Heodo
2020-10-2314p4m.exeexe feba7d623922b080527c6cbb56a9908d31c249959c1fb47b6f6a942bc63021f0Virustotal results 52.94% Heodo
2020-10-23hBR3XQ.exeexe 5b9651affb93cb74d81bc00ff3919b36eab1124395eb1428c5aff2ec2789c6c6Virustotal results 50.70% Heodo
2020-10-23OkGQ.exeexe dd7d487387014422a174e519fd4d8eaa14d25dd832d55a3228b46f84e1cacca2n/a Heodo
2020-10-23LwDJasc4lMwbBCXVRW.exeexe 0e25189c7c1b4b6d98a8ae9e2e714c4399bae871c5b5e431b6eb27693f3b6353Virustotal results 51.61% Heodo
2020-10-23Wh16hWL0Q4b5o0vI.exeexe f16119a2fdfe74f2a24d1d2ae00ea766502b20cafd4411ecedcb6580a7bafcd4n/a Heodo
2020-10-23BqTBYGLNW.exeexe b29147632d94b8a8e3e88815ace0fd566cb83b900b97282dce0756f442e8d392Virustotal results 50.70% Heodo
2020-10-23LoJ0oc2935hi.exeexe 6718df92a24f5c46cbfaf259c6ddd97c4ce82852de35f02ef892f2cbfd12c601n/a Heodo
2020-10-23qXRW.exeexe 581ac862a8751adbe0b081ce7e724c67743af1090c37396890523cecfb1790a3n/a Heodo
2020-10-23RYYvKPk9vaTlZC6d.exeexe 05b74e5cbf2c4027514d0672fc74f111abcc4df78c775367a9c55c4752d23b2bVirustotal results 49.30% Heodo
2020-10-23x8QtTtXfbD88EI4.exeexe 126f1e1ca7a30eb19c20464c9f32295d10a4f37eff09cacf241b78b818a24ceeVirustotal results 49.30% Heodo
2020-10-23copzV5wTIlS2TZ.exeexe 75b045022ec76d1514d6af9af765a15e90d45e4ae350e9a70e981fe50531515an/a Heodo
2020-10-23gpmWi.exeexe 6b0ad5af9b170704d8080891e9fdfdc0f1decb24a4915cfffb1f9b5973785a9bn/a Heodo
2020-10-23sg699cdNx2vD5.exeexe af238ab9321fce429ad08fcfb022b5f746e298b8f274fc6d4e8b11e548644b3en/a Heodo
2020-10-23Oi7Em7.exeexe 2de3de214c3e382621d5b7797b92cb92f7656a6931f4e551f9dd17cc1f38fa01n/a Heodo
2020-10-23ywk0Puwzzphv6S20iLy.exeexe 9c3eccbb41556ac86f7cf82b0886425c98c7ed174dc599665c42e4a9de2c4e39n/a Heodo
2020-10-23bvuP0SY.exeexe b7cfe4c17737cba1ce007381376d228899334948046cd607f30e2473cb25a85aVirustotal results 49.21% Heodo
2020-10-23z9pW0uPWaBRhm3ZzAF.exeexe 40900097ef25b96f2c9a90c7b15bd21f81a2d1511a9e9ecbfc19a16f10363c6en/a Heodo
2020-10-23hDMMX6F7XrUs7.exeexe c0d06f49da8d5725f04b95ae7576c756a99b51e8eeeb730debab45535007271aVirustotal results 44.83% Heodo
2020-10-23RUu.exeexe cc77f3b5e7a25024b69fb424614c31ea3d58106f690bc1e7777555d8811af6b3n/a Heodo
2020-10-23UMyd.exeexe f2d467df6504b939ab268d0f8c79bfdf1bdf4d84c166b2a459e1b11872a96167Virustotal results 46.77% Heodo
2020-10-23Ssb2gxCprH2FVHkwwD0J.exeexe bd09d7794ccf361b429ffceddbec849eb2548db5658462d212fa1a7b16264a33n/a Heodo
2020-10-23zJJiPPRxfYJPaI1uY.exeexe 393b3ba4f5a6c227df3ec4b2b6e4ad91e7169ac66d0d3140305b4176f513636cVirustotal results 42.86% Heodo
2020-10-230oY6Bxdws.exeexe 66c22eeb2ebc9cb8029620e6aefae61f4f87361b85257878ac47ab3b11bdad2eVirustotal results 43.55% Heodo
2020-10-239a81.exeexe 466ac61218e4ae5dc69f6ab6d79f39a00a69aa37aab3ca4389cd02a979e53ee6n/a Heodo
2020-10-23TFflq7KHE9DOW0zS.exeexe 1179484893b9fb1ab8acdae996a1f5e15bb7a9029769bb735089302df3f5cfafVirustotal results 41.94% Heodo
2020-10-23iBdffJ0T.exeexe e7e479b3122fbd848eb1c6e6a39ed3993d69cd8c36e415a174664627d90c97e4n/a Heodo
2020-10-23eY7olicy4r.exeexe 217a59019f1481d88fed5e9801a2cf593e145f01cafc58527f48ad151319e323n/a Heodo
2020-10-23eF6jhIU.exeexe 8eb66a813f00a0ebbead87276375d237c6a1cff280d3ddbb5e967c3fb2272254n/a Heodo
2020-10-23B0bhGBQhJNl7.exeexe 39edc659573691ac77d8186057cb7df10682990fb039be70f55d644d419dc092n/a Heodo
2020-10-23CTMqxRY035DzEkeT.exeexe 449bc8dc5c88c0ab4121ed4ee38c6ea072ea94afe445b2d8e18fceda3c57ca06Virustotal results 27.87% Heodo
2020-10-23CJP4.exeexe a09ad9c5a7a5ed742dfbc2ca359b4306b830ac148c730d3f6d67fd63f44f8bffn/a Heodo
2020-10-23vyIta.exeexe cea1684d297fbc2eaf45965d9da861d83c264cb4f837e799f0097839669f173en/a Heodo
2020-10-23p1AiFRUl8MFEIJWKGUC5.exeexe 52dcf44febd0ca60a896d3e694a99ca0b23fbdd5449ad8b5bd55da8851e6c4b2n/a Heodo
2020-10-23wvlvtbfGmPPPuvSRYdmW.exeexe c3fd6c55f94ffc2b26564df3916da150b19f69af1933969ddceb84fe8584ab0bVirustotal results 24.64% Heodo
2020-10-23EtSvChhpVxukjiBfCORp.exeexe b1e0d88132660eb66bcc8845e451a4a9c5a33c1d5b0a55f85dd6e8d83fb592d8n/a Heodo
2020-10-23xqpiUUZxGeFcmPwRA2AGP.exeexe 1dab903eb0ea083a0a08111be23557cb4656f6f40f94a58618d79383c274b681Virustotal results 21.54% Heodo
2020-10-23Y41SmcaucGetx1zMZ.exeexe 91f9fff1228e7fc01549882448104d341231a89c057010a110af19ceaf64a09en/a Heodo
2020-10-23rrsYa8C0yWhzYc5Gy.exeexe 4d001e6b75b56554f0eda9ad8ed214285cdd7e4028ff572015aae713faf42db5Virustotal results 21.74% Heodo
2020-10-23HDLn1jNgK3XKiUxPmIEh.exeexe ac0ae66b2972726dc6f1544eefe89e7e863f313bd4f6408088ba9790ce0b51adn/a Heodo
2020-10-23A5MEzqb00qLde8.exeexe b86c6ae32bfe3bdd65c0f031c38a52b14f236652f406cd2ff8c0328bfa3a3197n/a Heodo
2020-10-23DSu.exeexe 33229b2aa13f063e38db9983241b05eee24be446971a266aadfb3d46d3ac2fcbn/a Heodo
2020-10-23aGsxsYQbycgECFBOr.exeexe 5d830fc47e9a26344d0f3bf69a08d4acdf8318d69500dc2123bbd6e83299eaf1n/a Heodo
2020-10-23uR6Gy7pkGNsStJdfrO.exeexe d42b1dc0df9b265e1227a5b947cdfee7f857ef525f01605ddbb6533bdaf30257n/a Heodo
2020-10-23sxG.exeexe 5f7626971192fde1168876d7e625931d5a715e0144020d51bdf6a58247197e71n/a Heodo
2020-10-23IlLphCxxJfSeJJID8ngL.exeexe a850c57885ac2aaffe4d59484e5652c1588e61e98113cbeaaa94e12e619fde47Virustotal results 19.72% Heodo
2020-10-23hhRcvH9WS18mnw.exeexe eb82368ae9753d72728dd72b681d6462e78c281fe20a8a201f6aff695e6cf2a9n/a Heodo
2020-10-224lnD.exeexe 9cb3708858543e04e8220dc1ce3e6f2b28189961966f973d706aa81dd6c81ecaVirustotal results 20.29% Heodo
2020-10-22f6C.exeexe 742cccd9f0d6f3d413c982aa350bd74aedc49ba25ab870fde2c194bd54ec6ad4n/a Heodo
2020-10-22mn1WPr3K02cLqhjHD.exeexe a43f934f4f02ce752f995a750794583682fe3123ef80332d48df4ae7e50b3ea6n/a Heodo
2020-10-22k9t91.exeexe 5577aec209449bc69bf50df6b9fdced105edc176bfec374234b667d9fdf0879aVirustotal results 55.00% Heodo
2020-10-22oxQgCe1qxmUKmCy4by.exeexe 1953d3dbfa6e60dd9a1656440a1f530a172665941e82a9e6af9646ee2f91c81en/a Heodo
2020-10-221SGACBtnf.exeexe 632d9386f5648aca926b8e64109a8a7d7fae2ac062bc21e95e7632e7e4fed39bn/a Heodo
2020-10-22poYLoTn9pc.exeexe 938d38307fbe780ea24e9edb7b86f3d407e6750e27b8395731be91c4acb21b2bVirustotal results 52.11% Heodo
2020-10-22wScvkO4ZN3V2WM2US5.exeexe f6d7d01d53ec71a2707721836c94989259b8d8eb19e1cdfac0a0c4f71ecf2ff9n/a Heodo
2020-10-22D89HTv8xv.exeexe ba469cb9cf1d13c7cb25d8f11bb02502ff71c81bdc025561fe199180263810f9Virustotal results 53.33% Heodo
2020-10-22FpsNDn3OpjL1.exeexe fcea9e69e59dbf68c0997174ee6e1fad055dc8920e0e2bfe1c387a839e0d245dn/a Heodo
2020-10-22B7YRiHHxa.exeexe 0c94bef04ea9bedd17bd6452a5191a530199c22272b5f254254d78fbf30cc0a5n/a Heodo
2020-10-22s9RsCmnBDT.exeexe d713c2834b3e1770a6e864e12a1539704effa01f3efedad6c21e245da3addff1n/a Heodo
2020-10-22HopQfcdnO9ztN1t.exeexe d15142c954f7e84087a597c28b9877ffd08f3c0cee0f9cdb974155ca94109c28n/a Heodo
2020-10-22uyNHrwzpvPAbZFN7h8jO.exeexe 6935aa8b404bfff94379113816c657f6cd7e4e276db7f57f0322c81b883ce18an/a Heodo
2020-10-22lLS2bm8URR2k522PhqGW.exeexe 006b37ff3e5107e2a05152050aae4f1e809d09f92d03a60c25df29c154ef6a82n/a Heodo
2020-10-22B9NeWn.exeexe 2efeb4a6fcaeb3a0f995080b995c3e69f1347cb82115b07a30e9105d0bbb19a8n/a Heodo
2020-10-22nbJ.exeexe 412cce05c27159ec009e0fd1a7c3b609181c09d3e1e1e6c388e4821ef4117a44Virustotal results 49.28% Heodo
2020-10-228VMBnJd5SLzLb7l5.exeexe 725161cc12feaa107f7b506724e6ff6515e67771aa6931e0db0ba99682f5ebc3Virustotal results 50.00% Heodo
2020-10-22zSmUYUV5Bm3eYFssTUx.exeexe a199018ac586064044eb798ba8650d4f275ea79756037000442159683b3348ccn/a Heodo
2020-10-22qOt7MweZZ.exeexe dbcf59f92e60c531aedd5845ea5a75b39ed2e46e95907bb94e443a9db606f0efn/a Heodo
2020-10-22v1L4pAf8h7YBf.exeexe ac62703467293139679ecd28f9207d00cc56e296d964975e7adc539778348158n/a Heodo
2020-10-22hNyVj3J.exeexe 53b821acd515a048fb858c7f4974408061e741117c82c616316160bebb63d774n/a Heodo
2020-10-22m6VhBy55dWQQMT7am7IoC.exeexe 773244921016dd6a96554c67d2a47086b45bc991906f134a4829bcfa6340bc4en/a Heodo
2020-10-22Z69y7DsAM3H1rJ8Sf.exeexe 0f437d2ecac7af8a3e0262f6697744af3beea5d3932ffafa15b9bbadc27647a4Virustotal results 35.82% Heodo
2020-10-22v1xs.exeexe 93d9038e4cdbaedb22792f9622bf8c6df9b22d562c50dd026946c3cea81a35a9Virustotal results 33.33% Heodo
2020-10-22jfp.exeexe 7bd046eb83fca2de91a97b27cf6f37646752984bbf2dcc3fb05f2149fd0d7355n/a Heodo
2020-10-22V0u7o6.exeexe 86e40d79a55a7dbad03a6789fa87d1a29b2a224f4198f57a9f490230991491f1n/a Heodo
2020-10-22NwkHzz23aN.exeexe 50ceaf663c5fd963908822669e49420aa6afabee4d5f04605149f9d126614805n/a Heodo
2020-10-22E3gsx9MzoEhTNC4Z.exeexe bb9f507f67aad1fe182d28d75dc76888e19a18c26b168da2aeee17e598365600Virustotal results 26.09% Heodo
2020-10-22mQFVKxpYX.exeexe 93289e341aa33f6d093c180ea630dad8b7bff6ed62161c9f015d7eb88272c987n/a Heodo
2020-10-22ass6.exeexe 668569a05b9073d7f5d3c3366f929ca19594815c0051ef94d7ccf13c67116e35Virustotal results 21.43% Heodo
2020-10-22tvs1KwxyNSmRUD9FR.exeexe aeb5a9383b895ea3fd2cf386a08134a991289e6483f903f04a5605832f7a92a7Virustotal results 21.43% Heodo
2020-10-221HrE24JJ7xZivwUKHVcg5.exeexe 55341ede02200fe8fa75bdcebb7035596808ee73475dde927f5ad0cbbcf4fbe5n/a Heodo
2020-10-22lik6l8E7X1Dtv0x8n.exeexe e2c3494e1d0dbd32401df4eb5af90d33c1bde8d8b8979950bfa0d0addc67195cVirustotal results 18.31% Heodo
2020-10-22wuCvCMvP.exeexe ba4161fbb4dccd2075f051ce4ce0c28d6a7b404bce7d16a5e7daaeb154fa78a0Virustotal results 16.90% Heodo
2020-10-22KbMetjvJWwq.exeexe ec19835c25d6755b44052cb66c303f261fcde7567e2157c90a404b6710cd5b25n/a Heodo
2020-10-22KnKbQTFNyjRJQueEj.exeexe ed90c53a8ba3f143245c68fa4501e21333d3d1cf1e0399c31f3cc510736e295bVirustotal results 19.35% Heodo
2020-10-22MwAsRgDB.exeexe 53e2e002a61b09919d9e419d253a8790199326e7296ccb21db1df2bf315469aan/a Heodo