URLhaus Database

You are currently viewing the URLhaus database entry for http://kingsidedesign.com/SGJs3px which is or has been used to serve malware. Please consider that URLhaus does not differentiate between websites thats have been compromised by hackers and such that has been setup by hackers for serving malware.

Database Entry


ID:90174
URL:http://kingsidedesign.com/SGJs3px
URL Status:Offline
Host:kingsidedesign.com
Date added:2018-12-06 13:46:09 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2018-12-06 13:48:03 UTC to victor{at}corporatecolo[dot]com)
Takedown time:8 hours, 10 minutes Good
Tags:emotet epoch1 exe heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-12-06VzdEeEbPkRJy.exeexe449d9173a6084f37195d54c00a11d17168e2e20b508bdd36b93328a8317052aaVirustotal results 14 / 68 (20.59)
2018-12-06r8AvWOq8.exeexe196d02123b693ea44fc4fe18ba091d1177a09e9f9f27f3b4b84a2d54261f4ab7Virustotal results 18 / 70 (25.71)
2018-12-06SfuImfzJ8Ixi.exeexe26e9f955e6f04aa0a2d9037db688a3677e80269e39ee63a8446021cd5a2ff267Virustotal results 20 / 70 (28.57)
2018-12-06JzSDVYvl.exeexe66f151ee8074ace9210a8bc32db03f80516f87566c32867a10dcfe54821d3414Virustotal results 21 / 70 (30.00)Heodo
2018-12-06KF2dGc6wZsG.exeexe25de4cde01a275264f205c12c132722f67a5b89ba513e27ee4b8d4e5f19b1e5bVirustotal results 14 / 71 (19.72)Heodo