URLhaus Database

You are currently viewing the URLhaus database entry for https://zagoradesertcamp.com/templates/u/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	734562
URL:	https://zagoradesertcamp.com/templates/u/
URL Status:	Offline
Host:	zagoradesertcamp.com
Date added:	2020-10-22 12:28:18 UTC
Last online:	2020-11-09 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-22 12:30:15 UTC to abuse{at}hostinger[dot]com)
Takedown time:	17 days, 19 hours, 27 minutes (down since 2020-11-09 07:58:03 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-28	2C6Ms.exe	exe	2c078f8a8f1714c25cad4a158b6b2949a1a046ceca7fe0dd68a6c585d42cb638	72.58%	Heodo
2020-10-23	gLbDMLXDUvahSW.exe	exe	c4c0eefadf01e582e32ed24f36e92881e97c119a6d85404e34f93ec8dee76dc1	19.72%	Heodo
2020-10-23	9NBgybseA09n.exe	exe	5eae1a823a128e30eb726801353097f9b05c194dbb426eec9894685e428e449a	n/a	Heodo
2020-10-23	BdRMmv8.exe	exe	24e314db968d3c5c1f4e0e55737dcd1dec40603ac3bb4cdfc09985ccca2c68e2	20.29%	Heodo
2020-10-23	4CSx7Gv.exe	exe	3938fda22910bff2a67526f41608158dfcbe2c786fbf96bacbbfc3209206a79e	n/a	Heodo
2020-10-23	hwlCZnMt8xKr6CF5d.exe	exe	ab5ded8b327c385b0f909b5e7f9f8115dd18f59e88c5d874c1ffc6965e7f6d28	18.57%	Heodo
2020-10-22	GYY.exe	exe	9cdf7fc3340a0a92e6454795fae58f00088318ada2e79696092a7a40e79e7579	20.63%	Heodo
2020-10-22	7sTT71SIgexpe8TloYo.exe	exe	830692abdbc77543ca2e79e99319c78ae0ff701f44ad17d2670b3ba19ec6a78f	n/a	Heodo
2020-10-22	78HFtCY85.exe	exe	5a3c620b24ce2400dc7455bbc06e2ec9beb013b438f1855aa640560bfefa08c2	n/a	Heodo
2020-10-22	TUD3kkeszMDE4jLZHqFLl.exe	exe	a36f1d7f93bf54ebf55b66c02d0e6b219403cbaed52ee85f2d17098a7f59d4f3	n/a	Heodo
2020-10-22	upYjOzwUNA.exe	exe	46375bc2f053d41fc06b23cfd0d9125f8e7de7093aab758ebde56c4d00188423	n/a	Heodo
2020-10-22	xoPSIomb6klsyLc6R30wJ.exe	exe	6586f098e61045644953ea49b76ea790cdf46c1a5fa17b96536a266b5f12f3dd	50.70%	Heodo
2020-10-22	ONcLIvkBbzRX9W.exe	exe	b3f4da9cc3c0cefd95616c0cc48061cfe1860e5b1eeee870947491a125a417f9	n/a	Heodo
2020-10-22	JmzKPJKU9U9RxuhqdnP.exe	exe	bc1a90bef5a454384388823d4e7f16ff5c5f9299e4f444b71bf0b9b73c468401	n/a	Heodo
2020-10-22	dBfhuG9UGV.exe	exe	ec5d8d5fb2b277010da8e33e634e897cc863c1864864940604ef09a77e2e0101	50.70%	Heodo
2020-10-22	OxhdKpc7McERiuvlHq.exe	exe	ce372accaa49ab17b2688dd372ca30b838bee617f8e2f9e31b15157ed0a48ac2	50.00%	Heodo
2020-10-22	NMrcWCN4l4KjToc.exe	exe	75bdc13f136fe16c628c54e43c5963f14638f05098584fb080c9abae6198dd91	49.18%	Heodo
2020-10-22	TiFru.exe	exe	0a7c24b7d35454c149fefcf4a9f8753b3490ed0cb97c8f587563e7cfae4a94d2	n/a	Heodo
2020-10-22	h5xoQaO.exe	exe	73eb1fc3bb33f73af3c612040209c1d792361cf4d259ff5e0b25a7a8c80ea735	n/a	Heodo
2020-10-22	i4EaZnaa5i8.exe	exe	837a72c670432d697b932b65c2a60caa2442f6b562c054a0802fad2b013d93a4	n/a	Heodo
2020-10-22	iZnSW1xGc4.exe	exe	9bd683d6cc9fb95a7447f666b672997dd5c68e293eb55d7d168ddb70187c3a16	n/a	Heodo
2020-10-22	klzG2kKfYZunCqpEd.exe	exe	c9a09d667b387f0ed9305d6ec3ba6fdb9a4ffa6270c7bb085e0dae94149ef969	n/a	Heodo
2020-10-22	Xk78sWWKZy6d.exe	exe	470df6ba3f41fb5bb19b18bc3366eb61cfb9329e51233ff0042323195d297d0a	49.23%	Heodo
2020-10-22	IApAcW8QSA.exe	exe	d1786119bc4ca0159d15c17893ef8ddba3293972d7292a8f38ebfaa60d4f3d78	n/a	Heodo
2020-10-22	fB4lr13m3.exe	exe	24a1f5ccc609672715cfef95bc6ccf6dd3c5a09e9becdc0daa177c6e97a3fd69	n/a	Heodo
2020-10-22	qo3uqOgGhQBmQxlURjr.exe	exe	4d903cc83d3e190bb2f86366328be4deed77876221aecd776ad163413e5cb129	n/a	Heodo
2020-10-22	MdQ0L2zNk5n.exe	exe	d25a113d139187536f3ea45525507d3e3aa6339dabbeeae85cfb63018d708498	n/a	Heodo
2020-10-22	fCrLEiogHe18YLnSJw.exe	exe	d94520e9048c60e29462563cc777d76e89783204e182d4ad8ef5a9b4b719a712	n/a	Heodo
2020-10-22	9z5kNKokSZrL7N7V3TWZa.exe	exe	5751e74bded1bc889a3aac19b5230909e422f39b4978338743e260820bdfa899	n/a	Heodo
2020-10-22	XMsWPG.exe	exe	9a7d7f84bf75f5f784e58a9ef73657b4a19ba228a7786d9be5a17a2034d3bf72	n/a	Heodo