URLhaus Database

You are currently viewing the URLhaus database entry for http://ningyangseo.com/wp-admin/am/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	760611
URL:	http://ningyangseo.com/wp-admin/am/
URL Status:	Offline
Host:	ningyangseo.com
Date added:	2020-10-28 11:35:15 UTC
Last online:	2020-11-01 01:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-28 11:36:22 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:	3 days, 14 hours, 16 minutes (down since 2020-11-01 01:52:44 UTC)
Tags:	emotet epoch2 exe heodo Trickbot

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-30	SiKu5k.exe	exe	8a69454fd0f27a91123c35980e0bb2490005cbc10011e8189ed16a7e7911e64c	n/a	Heodo
2020-10-30	ksnHgtcoyyn0jU.exe	exe	784a4df90a8e5a85d0253a9208cf5ae1471d6a7d4420509d5fb8ac1438cbcfbd	n/a	Heodo
2020-10-30	71XUFXneNyFbba5F0fMM.exe	exe	cb918aa79085db6ed91fb6eb4628b4e53a38597cfb2b5e7e3860b8fcfb880a5a	n/a	Heodo
2020-10-30	xwS0Ybcw7S4CEInDDh.exe	exe	71f5154319342c13a898a430b35244845ea5efae5f3ccbe4960872a3570f780a	n/a	Heodo
2020-10-30	fnDxVdou5PmH8Ff8Q.exe	exe	c17285a9a434e07e148e18fc1d81567ab7bdc59b4d913549be89049aafd52d86	n/a	Heodo
2020-10-30	Xi7qlmXhQVrSIZi.exe	exe	9bc1db67e5bde7427f40a109938859c95be59a6076b6ef9ec2b38d11bcf1f07d	n/a	Heodo
2020-10-30	4YKseH1NqU.exe	exe	1ae1ec1613ad97bd9bfa9857a2b8295903edab1a311c7b6c22283d9f6662f797	n/a	Heodo
2020-10-30	PZCrhF9G2cNAF6.exe	exe	ad6284bc74ca31acad281968597a4a2279fcc4c502c4eed05819fda3971becd8	n/a	Heodo
2020-10-30	lRBWr3j2WGflER4j.exe	exe	7aa351a49c153c4882a11bf059da48b088b19ff5532db80fd8eb1d04cc9097bf	n/a	Heodo
2020-10-30	IevKgykWsSQ2Or.exe	exe	06b8b3f1b9fd145e68c4b1f41c229476ba4d7ba465c0bc85eb63d79200d410a8	n/a	Heodo
2020-10-30	RHR7O77LXsXuMliPJeS.exe	exe	20d18b8fc2d45cd78112e78524b9d3624182c22948cbbda71cf3ff2bd05a9ab8	n/a	Heodo
2020-10-30	HEjbnLBAEZ.exe	exe	464700d4bfbd6532ddfb001f7226d1a9a7cba2d03e47340f908c6fa940b10635	n/a	Heodo
2020-10-30	G6XDCyZWWmqGAwE07H.exe	exe	b17a832859033518f7ab666bd2d3ea77a655ab64a87d430122b60e75c7c76a7c	n/a	Heodo
2020-10-30	mo0VXOuOdBfhu.exe	exe	d8ca0b3f24da35a297cd0912e84a5617649444403add24407d47022f343d2518	n/a	Heodo
2020-10-30	WYYRAtjDppOkgQyW8Ldd.exe	exe	fd578abd373bbffc9582734a349e0b40b4c476a1406651c2fadea4db37325ba7	n/a	Heodo
2020-10-30	4eSEmkXVUzm.exe	exe	4e24af31e6ac6cef855df3cfdd94e34a1e6e6853cc8ef83bd7dfcab4b1b727b3	n/a	Heodo
2020-10-30	jROZCQ9Om.exe	exe	21e5bc5c1fed2084d21e8d20d2cba34fae516c959b853f038b23b068bdff8bdf	n/a	Heodo
2020-10-30	6g.exe	exe	3f061eaf15652bbb5df1a0053dc3c5a81150c7ee1ff0bd89ce2310dfbf49e63a	36.11%	Heodo
2020-10-30	pGajB1Bp62dp.exe	exe	e3b2e70b9070e592509fa93bba86aa95d2aa7dd843b4e4bb147a541f5e588798	n/a	Heodo
2020-10-30	q1PaBw6zvXx7d.exe	exe	f44eff30b27d85821c612eb5d3dd8fc6a74e9ec90006ce5a04d6c0018295d9ff	n/a	Heodo
2020-10-30	WQga9x.exe	exe	50a90108d36bc1b64002c13e8ed44bb862a95462f78a0b0d2641a93a0cf40c6f	n/a	Heodo
2020-10-30	i1eLT4YG4bzEO.exe	exe	46397e2b07132819f34616d7205535552d3e3e35f70d675b5d4892a9453c3425	n/a	Heodo
2020-10-30	e45YMrHcWFeWpnArq86.exe	exe	ccecf9afb3dc269dc281b61e25a15b201c169bfddbf3cb9ca0f4a09205a9194f	n/a	Heodo
2020-10-30	wKTjZi4aQWBq.exe	exe	22fdbc66b574effb63618c79de1b5cfa3c5e8b97837017d3d1ff656187567287	n/a	Heodo
2020-10-30	b6.exe	exe	69b68b64983f0e06891788168c106daac721bc729f5f2a0d35cc7055266eadf0	n/a	Heodo
2020-10-29	o7QxL.exe	exe	8e6d1188c2d8cf1dcb882d49563fff247991f9f104b76a574d61a9644fc280cd	n/a	Heodo
2020-10-29	20FJbOdSSvp26egBgjA.exe	exe	301d194d952b78d6aa51c5d43857b99a5aaa53980d2f73344a2d7bded8ce9732	n/a	Heodo
2020-10-29	Gm2.exe	exe	68456f7bad3eca627a7010881b83e610ea12298c7dc13c042268fbafb97b3e0b	n/a	Heodo
2020-10-29	CGKxUeWKdkSH5YnF0HQH.exe	exe	bba6f3f077f974afa6be21ad858b6d58acde61624eeb1b0d93f6b461ac905d8d	n/a	Heodo
2020-10-29	QW1EFNFSkcS.exe	exe	3d857482a955fa478857094d451a92748246d00afe3fcffc73d3b779eadd34c8	n/a	Heodo
2020-10-29	dItxm.exe	exe	68823a8a3e2701978c1dd9ae0b68415c5af8c48959810e669c5d440aabadf210	n/a	Heodo
2020-10-29	pejkOwW.exe	exe	fe9a16adb603028ca3ca85fcf9e19eabfbc9148a1739a9a9feadd5a4c763cde5	n/a	Heodo
2020-10-29	YJSyKbr2S6.exe	exe	35c23ac7e29e45753433d5530584aa81e5e1a12de32d88b43109ca0ed10c685b	n/a	Heodo
2020-10-29	Nb.exe	exe	f56f23618c4701b28e6db71595b365f29a0b6ee9f1c3371dbd26b234d20dfc1e	n/a	Heodo
2020-10-29	rX6MUohrHsrq9w.exe	exe	baeda7453e311445a5ffe0f72639913201c3d455eadb7be58c94b36ba5342022	n/a	Heodo
2020-10-29	t70ICV.exe	exe	874d02e1cf4f9760ec050140fdbaf249497d021535e3f3c738acaf8c44b89cd0	n/a	Heodo
2020-10-29	VzOD2r31VpfZ.exe	exe	8816bf6e147c6abf952cf291c1b2f610d687e7bcee97024741a03ad01c85bdbd	n/a	Heodo
2020-10-29	C9LEFFbPJx13gD2M.exe	exe	c3dbf1fe9296981802cf318022e0b60bdd0fb4df0fe882bbd6682d89330b0297	n/a	Heodo
2020-10-29	5oTqk5u.exe	exe	9cfd2998c994788a5458f74c7e0e233d71d4d1af82cefadc31ccda46b14b27c3	n/a	Heodo
2020-10-29	xQsSRxMoI5m60Zj.exe	exe	f5184a8e33da3e6c5c22f9b6ac0e1c210ec9c58b0e7e9c708f2aefcb911cd001	n/a	Heodo
2020-10-29	iLUF.exe	exe	208ad954dac645df113e11df4f6993a51c483d9935dbc5d6466afc6018b182bb	n/a	Heodo
2020-10-29	q.exe	exe	3c8cc52903c44459a3b6989dff46850d035cf82ce73597656ef0e0d74d4762e3	n/a	Heodo
2020-10-29	TU0crSv5JmXMZ7sb.exe	exe	cf21c8cf7867e84f12452a40ae7927582c15650096713fab73dc74dc8077d03f	n/a	Heodo
2020-10-29	fb5J.exe	exe	7eaf9c7c19c485b5ceb38a8773d924ac49ef56a5cfa11efd5faab0af1d285e10	n/a	Heodo
2020-10-29	oyCoiiP7OfHhJ3apT8la.exe	exe	0ed0e7c3a75ede04c8206813236ef1d9d583bc9794557db13009c68f826a44b5	n/a	Heodo
2020-10-29	OL.exe	exe	2cccdc020cee61e013a9471471a4e63c1026251ba0a070a476849ad21375dbdd	n/a	Heodo
2020-10-29	iAeeXv4zcvQE7Qu.exe	exe	69518ab1fc9bc372b9f430fac84f59bd98c432ce8c861d4da1603511f10e5896	n/a	Heodo
2020-10-29	pyCS9E9SjteeXMm.exe	exe	99527081ab989c6be0962b1b8a786201f1cc4e687a76c845a2d4355b321d669a	n/a	Heodo
2020-10-29	pVKUlFOmaEmWCHouV.exe	exe	549fbc6388a9b180331377e6a6795b8f28e20c73b4d4b1318642cf40bbf1645c	n/a	Heodo
2020-10-29	mDvfqtr80.exe	exe	b6eb7f1f86f81b7459e67406a0ae37559240e3727beaaf6e800ed584d25d5439	n/a	Heodo
2020-10-29	E2zec.exe	exe	1efca930d4fe7098f032fa1ed406867145e02b45f09cd975f6b7b4e0ccec8970	n/a	Heodo
2020-10-29	V5PJA.exe	exe	fb2c39ec7572c6bf8c0b83089e82bbbdd8bab0c4844d8a85d399a1f9c358ec4b	n/a	Heodo
2020-10-29	SxO84w.exe	exe	b95aa682b8808a0d05210242e991244437854f51abb1146ecd0603b1168fb4b2	n/a	Heodo
2020-10-29	fqCcSjd88HHQvdxjDrP.exe	exe	b1db4495b7452aeafb6825c390a90c1a3cbcfc0880d55f001bb4e455855141c9	n/a	Heodo
2020-10-29	99IgbWSycRGozYD.exe	exe	d7615c0e5705151250056d1501cfc2432248aa10c68ec9560439fbfab7842b23	n/a	Heodo
2020-10-29	IofVxwQ46U1stGIZ.exe	exe	398fa44b80e611f2beae0efaf1ca21e25123bca1e99caae41b26377c77ff82ea	n/a	Heodo
2020-10-29	Fuj0qqMeAzRiThd8h5.exe	exe	45a34e55fbf0a826c6549bb1348d24f3eadc02fe98c9f6faa9c9d11492a51f23	n/a	Heodo
2020-10-29	8juAZetNRk4.exe	exe	4a9fb861985d266ed1ce3ab59e4647b4c1576efe1d8bdd7b616ea58ab7798be5	n/a	Heodo
2020-10-29	T.exe	exe	1675482694b8fe031e147bcdd86588f9d6749d21bb6962174b6abcbacf76f8e0	n/a	Heodo
2020-10-29	xLyTTyqd.exe	exe	595c2f7182d981535ba55b80ee47fe6504838a5e4543306f2dcbcc16d5e66ee0	n/a	Heodo
2020-10-29	914Vz.exe	exe	38c655cb2c621730f9c07788091c4ed665951ffbadb02c31a477e529bdb42d9a	n/a	Heodo
2020-10-29	ZZMKbhM.exe	exe	07663c325bd7e033b23135c9f9cf5cb8e1d655d1340e0e47f7229445189e0f2c	n/a	Heodo
2020-10-29	w.exe	exe	b086c21072259675a879c94686dac6174e3d1862c578573f70f7289df49d5686	n/a	Heodo
2020-10-29	BO6dgOCeBFDP7tC.exe	exe	9eff4fa6e68559c74795e77ddd50f5813535687aba527216096986585bf17eba	n/a	Heodo
2020-10-29	8NKAMDzRDBPNuvPKzBN.exe	exe	03dc3809e01d041495f0dd104aef776d50ee2b6fdf562b4d067e85d5170c498f	n/a	Heodo
2020-10-29	x2ARa1SzD5ekIF.exe	exe	70e54824e69db5d2b2c6bc7793b8feb4abe15a439c07f7e024753f5183646762	n/a	Heodo
2020-10-29	7C.exe	exe	6f4d86651b2a88a705103f90aa0ba8ea1dd02ab313d1cdd1e742b03b950122ce	n/a	Heodo
2020-10-29	wwaJZOLIlwCw.exe	exe	9b4cd9d9d6d1c193dc8c1204153ff8899934a6eea39592c7737ea0e9c27ff394	n/a	Heodo
2020-10-29	erPUU6CMNHtnW8okG.exe	exe	f93f9af34fc2a8303dbb0d7b82f31eae0b224902107f456a7f7fa472da085343	n/a	Heodo
2020-10-29	CIKPUxsSwbR2qfbsQFW.exe	exe	0ea75b61ac409a470339732e42b5491900e83955caaecc7b18b6b1de3b231df7	n/a	Heodo
2020-10-29	Kg.exe	exe	f0aa524776c915a5a407657588b74c0be63037f14a859ebc52f2392eaa2d53bb	n/a	Heodo
2020-10-29	QJsxZ6YniF.exe	exe	437662dbf3a9b6b8a6dbd6ff659623236536c001720a497395f7d7a4deb45db7	n/a	Heodo
2020-10-29	J.exe	exe	f471eaa6d0fba3d3c4a7efd05269e563c76e706d0e7f0b0c102f30c1b3aeca22	n/a	Heodo
2020-10-29	Y9ILbH44f.exe	exe	1370a3fb6df92e7190a4ad872086e05aed1a71d5bb9524c2bf2918786f7fc1b7	n/a	Heodo
2020-10-29	Uz8HE0rJk.exe	exe	968040192cbc866b9cccad3946a271e20e3ddaf351235261b9368f0e241c1fea	n/a	Heodo
2020-10-29	l9zTd.exe	exe	efa0f658f9d9d93ab73bd3e4bfa2ca98237b4d44ea3be1308d77a3a62bac08c8	n/a	Heodo
2020-10-29	aUCXoKlys3UeiaQjy.exe	exe	f61222474c9d9a180abbcb33156a8fa13e137ef76858d526c457a8a60b0bc480	n/a	Heodo
2020-10-29	kRpCyfaq5j3Go7b.exe	exe	876a0ae949e008c9b9bf1c168ecdb080e76f4c37ac8c1e2eb6373f88792d49b9	n/a	Heodo
2020-10-29	WiQj7vlS44v7P.exe	exe	54d774a128bb9a1f0c68553a0e60a94b045882aa194a6919cc6e8f0b8a7be015	n/a	Heodo
2020-10-29	zZM18UGztPGWSpqI.exe	exe	6fa354a846d5b2b4d69683e5dd50ecd64e3d42984a67a92ccca9c33452b8e0f1	n/a	Heodo
2020-10-29	ucmxiQGhBgTAy8.exe	exe	a826b2c04e67a3f62e79995ed26c1729bd18a2778800b2f2160dac791d37dd41	22.73%	Heodo
2020-10-29	yi84j.exe	exe	e569cd1a6f6e21f061792aab6ebea23271e37c6bc1caf515b11a519c6ccc85d7	n/a	Heodo
2020-10-29	ndDacTa9WsRtU.exe	exe	f99f3a16844b2c21dd428d0c5d5f5526b74d6398a9f08e566c1009077c89c89a	21.21%	Heodo
2020-10-29	IoyflAJGDxGVa.exe	exe	0e0a19638ddecfa7eb2563c4e8ed09bdf099f9d18059cf85359963dcaf7918ea	18.31%	Heodo
2020-10-29	3aq7IR39aXd7NP.exe	exe	f89182057ac83b53a89e22b8f15321f64cd14a604632707d69141c4c3527f550	n/a	Heodo
2020-10-29	gi1iF5cp0tH.exe	exe	678308d7de95da63c6eb63a6f4639ca943d939913aed69f860746665dd460cb9	n/a	Heodo
2020-10-28	IlKBFQyvzdJHEt9bFh6E.exe	exe	6271e962405c5226d1f12e5a81cc96d82333c3ecced32321fa6b7ce5541aefe7	18.31%	Heodo
2020-10-28	hnUImIxa0.exe	exe	b5be2056779558ede8b9b7bd69244ec2051a5ac74f006913c270751ae8080d77	18.84%	Heodo
2020-10-28	YV11eixor1SEfSqK.exe	exe	428085d9ff7a289efdf87737d26a495cf350e1faaf3c5aadbf5093918c5f7b05	16.90%	Heodo
2020-10-28	apBUCHabvLUcLDGORd.exe	exe	74804cdfeae1611e6adecdff5c62c86328f3da5b8c572178abb753e273ccc77b	n/a	Heodo
2020-10-28	YH69gSLAmR6K7ZqTye.exe	exe	0c2e8a07c22b39156637099ebcc5b224a32f69bee0d243ab44a1a7bb961ed03f	n/a	Heodo
2020-10-28	elZr9xrLxPFHKwE.exe	exe	f6a3be201e4bb7533056b90bd1eee50dca937d389868a60f0de404c4af0ff81c	17.39%	Heodo
2020-10-28	UWinJnIvVA.exe	exe	3ecd4cdfc20e02741a3d02c01fb445ff1515b48d3bec46e185a62c0a433c6305	n/a	Heodo
2020-10-28	lUzqw.exe	exe	e9612268237a4cdc4ba97344b0013df91b9608aa00962c9dcb3d904b7bd6a2d9	n/a	Heodo
2020-10-28	2vWjkoo3RjOZbeT.exe	exe	80e703b55c71d8a24513d3304a655f3ed96aa48e300ec47878cf974a9d2d53d5	n/a	Heodo
2020-10-28	9rVL9LtZ6a8buCGna8.exe	exe	e30ec2d595e4fb6d0fbe81bed2c7bb86fda6ca309e762ce06bc00e4b00d3cd64	n/a	Heodo
2020-10-28	mWBX2yYBG.exe	exe	a9449ae6dfb769ce93201f29a1030ff0c88a6233826d07746dad64c868a6eb8c	n/a	Heodo
2020-10-28	s7KKL.exe	exe	72822d21280609691d35bb7df0870f45a9061bfe368b6970e4b3168d3b06adcd	21.13%	Heodo
2020-10-28	ql2vIvsR.exe	exe	a731b1d36ab36adef864e87006a3581f7e1ef1d479127d7d3fdfc299c30080e9	n/a	Heodo
2020-10-28	ueDvhIh8Is0OxWE.exe	exe	809890668251eee53beaa449aebf39470bec221d390449ec8da6efeda6bc7e15	n/a	Heodo
2020-10-28	xSrwFCAYHh7riVkQZfSa.exe	exe	4bbf08d65f3c9bee75ef96fb103a905e6902dd50db254cefe3e661955617e185	n/a	Heodo
2020-10-28	hkls9aajQTV1.exe	exe	b257899628cd31d93b2413deb26613a0a691f68e5b8f0c66526ce52099a52f0f	21.88%	Heodo
2020-10-28	LL1uiRPRIsjGd5uM7dc.exe	exe	f2af98d37e9c85bd48a30d96f44bb486fc05228eec22f0142bb9b698561f21ce	n/a	Heodo
2020-10-28	2RBiyHM4cck.exe	exe	290fe25a3b21020c8a29d0feeba3ad40b20f616374b3b98f5866c1fc8fc9b874	n/a	Heodo
2020-10-28	OcUHnXyymkNv2.exe	exe	83c43bc5970a6c93ec09e6b2ab1e413e6d2ebe37ad9206cee1fdd12d5b0dfe3d	n/a	Heodo
2020-10-28	NznqGU.exe	exe	597c1491566206bad97d7b07e54b7563b4df06f78d46954295ef896982ca2908	n/a	Heodo
2020-10-28	Ul55.exe	exe	0026c6d41392ab07bc75cab89f637ebca9c9a06b9e3db86ae42dc126111a69df	n/a	Heodo
2020-10-28	a.exe	exe	2263f9f44477484069a642112125d39bff091b56327bd029c5d966ded3557502	n/a	Heodo
2020-10-28	6vt9AUbxjI0.exe	exe	1a6528938abedd83c04548fd060fc9577d26330197006da550886dd13ca4d55f	n/a	Heodo
2020-10-28	EUTjMq.exe	exe	71daec6cff22452d397c4b525c85087e6d1f63f6cb11b30d0a5e370ace1b6d90	n/a	Heodo
2020-10-28	3njX13oQeRJu47.exe	exe	c35d9b54bc5da10674bb855f51c0bc3781157f996c18ac72535e85b55b92a632	n/a	Heodo
2020-10-28	xRYJVx1FbbIwjSq9fm.exe	exe	97e8081cd0cbebbde64634e4b7e6973daf32e8317e430dd0aa08f26bddae9744	n/a	TrickBot
2020-10-28	FSR8tDX8ZazzNaTeTLLr.exe	exe	eeb5c24db960621fb375908671e034bd9c019a79b3b1d96a93a4d580d83a23d2	n/a	Heodo
2020-10-28	peEx6UbCxn2.exe	exe	e5f00c5ac755438ee7219cf9c033d86ebd709f70f5869b5bf796c547b6ca42b8	17.14%	Heodo
2020-10-28	nYFiLF3fg3Q.exe	exe	bd63f93eee6eeb05baf4a9a23717364b71e8a12fa99737bcdd63eed020842438	n/a	Heodo
2020-10-28	n2.exe	exe	17f66970e64e56d06844ae7c975809c8ae0243e0f66b907172646a472629368a	n/a	Heodo
2020-10-28	khehnO.exe	exe	d8cab0280b8b627dde273c6b0f17bf3f2b82b09554e99f969504806109e8156b	n/a	Heodo
2020-10-28	th2JlK.exe	exe	771b1f6737be76d925d00a1e6c362cb2bc9e559272330061fa4e023a80443fba	n/a	Heodo
2020-10-28	DEpYq.exe	exe	eac96e598fe43c06c99911e3280daaffe779fd1e627ff4f808eacac9b5f6cb8e	n/a	Heodo
2020-10-28	bwd1BzoSzk3HOpQoThh.exe	exe	166930b54da57bddc60272c0c9dfdd7150906c4a803f082988c76eec6cb4e333	n/a	Heodo
2020-10-28	YQTl0bQnimz3hJQ.exe	exe	b0328ff3120818c4fa466b0003317ed033ead2d5421cc7ca81c2237eaa75a5e8	n/a	Heodo