URLhaus Database

You are currently viewing the URLhaus database entry for http://codsambal.com/wp-admin/6NEEEtf/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:944073
URL: http://codsambal.com/wp-admin/6NEEEtf/
URL Status:Offline
Host: codsambal.com
Date added:2020-12-28 21:52:09 UTC
Last online:2021-05-16 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-28 21:54:05 UTC to abuse{at}web-hosting[dot]net[dot]my)
Takedown time:4 months, 18 days, 12 hours, 9 minutes Bad (down since 2021-05-16 10:03:54 UTC)
Tags:emotet link epoch1 exe heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-30jrMfa.dlldll 460108b66064083367b8be28dddee47ead35b16c8a7d8c44bef2974d16831abfVirustotal results 21.43% Heodo
2020-12-30jgWTG6lo.dlldll 8ed1f86b745dd5237bf897d80e26bd17721c068bcfa58b6a5a503b0ac7d60923n/a Heodo
2020-12-30rnaG.dlldll 8ef48b8816870e7a94c637a288b0706fdf06f93e034ec328eef85743e663258dVirustotal results 21.43% Heodo
2020-12-30fR7i.dlldll 867a04547dadcb365bbbea0b824ee581d4ce3c77a9087b62798773399d23ec4bVirustotal results 21.74% Heodo
2020-12-30PDPokmr1Oohh0pB.dlldll 81eb69267f03c082386e8408ce9d02407ee901ca0f1a0d82efb9ec452b381f17Virustotal results 21.43% Heodo
2020-12-30wGtD3v3.dlldll a72bbe43913ab4daf037505a5844d9924d5b8c321b567fa429f713f254c1aeb6Virustotal results 22.86% Heodo
2020-12-307iGN3AUWGOlplP.dlldll 9023ed4db53de9668ee8df909ee0d153e92a45902408dbbfb040e803b62d4e38Virustotal results 22.86% Heodo
2020-12-30laDVvCzZvvEsjE6.dlldll f9705dd70c45ed530a4fef99411049128690b62febf58bdd3b37b5543d66f0b3Virustotal results 21.43% Heodo
2020-12-30daI3SdGLH40MkdIHF.dlldll 8a33e6cd0b00aed1c57c90221636fd8076a278d41a526672edb5455027ee34d4n/aHeodo
2020-12-30qTUekDQyizPUNg.dlldll 4642001ef3ca163f1078a80f82a91d7fceb68a2accbd91849994864221ec9bb1Virustotal results 20.00% Heodo
2020-12-29ceJd4kbkh.dlldll 18a3f5c7b775ce9318ac3c5871d4e76fbdd32463c46cde402eb84844448e2d4eVirustotal results 8.57% Heodo
2020-12-29VilCXFHP3sbfqpxrYoMu.dlldll 2eba85f69546d666fbe01ef1c5cc77738658e24a7120a965f24107c4c02939b9n/a Heodo
2020-12-29MMmeqT.dlldll 4e16c013b145fcc6b7fbf848ded33d21b8a3b2f37698b750a6fb15452019d329Virustotal results 8.57% Heodo
2020-12-29kXX2m7CMqZRus3XznAND.dlldll 921f2492538666585429c168094c9919e23ec88542ce22728419e7571c57a59dVirustotal results 7.25% Heodo
2020-12-2903Nprw8ZNrYeSeOL.dlldll 01f8e823f4353339520f91503e9f7803debf06d41ce2bef7ed0c4371f0131c96Virustotal results 8.57% Heodo
2020-12-29gDaxLdZnt.dlldll f21359ec91abe22e116fef57509bf574067b1c0708fa60ffb92dd04ab69fa4abVirustotal results 10.14% Heodo
2020-12-29rZEUECPw5QMwyl.dlldll 46b6188d418ba923fc3a76381d633fca8cc765cc463ffec199924267ba4d2d69n/a Heodo
2020-12-29PW5hG19MUPypVPFgInMZlpQ.dlldll 7e9e70f7340a3010eb76671600ecb59edaf3dfea1adc03021dd27b2e9e55ede1n/a Heodo
2020-12-29aOU9mu.dlldll 00e1e354373fd448004ae2845fdcf323f8e4d664cef517d8fc264edc1b1fffd8n/a Heodo
2020-12-292Vd6DVFMw.dlldll 89f16c09a117eaeaf94791c4d723d29594656e09906007b8f31e751947b175d8n/a Heodo
2020-12-29FbN.dlldll 3b99bda9436472ec9130da23b0c46ed337a988d0985b4c984a8aaa785b814212Virustotal results 7.14% Heodo
2020-12-29hhF3gQpMcZ2w7UkCT2b1Ypt.dlldll 0c08f273be2e140f15895e357612625d0ffae6e924b3dc6aea89f1f361baabdan/a Heodo
2020-12-29tBWaLQvP5XU.dlldll f98cba3a97f8226456ea92c388778e71748bef45f39d11b2ba7bfba974b0ff8fn/a Heodo
2020-12-29GouuD.dlldll e08c748378172562c3ff9d7310d4470c29e0915b0392fbfafbfb4427c3531d0en/a Heodo
2020-12-29VFd42pIgO3s298kO.dlldll 5665b9b5e93d0e58638a1150093f4e3c7db04f4a3888eeb93daddc4c437f844bn/a Heodo
2020-12-29NG07CAuX.dlldll c96250fc28edacc138d3fb6b654707715732e79638dec67d27d033ff4550bfd2n/a Heodo
2020-12-29uaJWKmqMeHu.dlldll 0a29fdfc303ef37b87031e56c8403b1272597069bc76aea3ec0dff312e75280bn/a Heodo
2020-12-29bNQl.dlldll b5e5bcb722ccbc556b9d6c26ccde0f3c919b357a4de3e0ac290016de18d3a30cn/a Heodo
2020-12-28gShoBV.dlldll 42acca864e32cedc3e962f5960b1d16025537ae57b7946d830f9b58608de6a67n/a Heodo
2020-12-28YPDxfJXcG7ugv.dlldll 29b74fc40739cf44352e6eb4e9e7d4e93c382d54cc45a40c8400df46f09c5e0an/a Heodo
2020-12-28Hedw4qOwgvakX.dlldll 46b4f537234e2a55d5e8b16a0b06a9efb450bacc1c11d66a8781b8aa23dd5ae7n/a Heodo
2020-12-28Lx3d.dlldll ebc231063a3451c6fe0183e075499fb396eea390279f5f259686b0d508f5d637n/a Heodo
2020-12-283wHXRLqwMqNDoa.dlldll d777c21051d006c894ef2b22cc4b52269fc4906391952915a5c294609c311ad7n/a Heodo
2020-12-28uQyBf3r75cxjrWP.dlldll c7dad38e417f2718c366c8474c585315f8679fc26a7245ab3a60def2d455bd87Virustotal results 5.80% Heodo
2020-12-28HM4pVMd7ehOeDBkUTf.dlldll 97db8a9539d5d5c3299401a7e83cd53fd027c578869834cecb063122d4b951a7n/a Heodo
2020-12-28SmuFmHeZqxvEpE.dlldll 3fd950efe623c1031ea6edcb3bb9168f3fc7742a5a9f411785746a0af539631bVirustotal results 4.35% Heodo
2020-12-28ztFlzi.dlldll 81fcd726a30a151149b43303b0fa4174a281ae80e46d3eb15b47f537bbd8f4d8Virustotal results 5.80%Heodo
2020-12-28R8LGM4Hd6NUQzvg.dlldll 5b51baf8d297009d0faffd30edfd5f7a6ac364dfa341059cf8dca22f4288abaeVirustotal results 8.57% Heodo
2020-12-28cXN.dlldll dbcd69b8772df86697282de1a08b10daa330348e81cb2cc8adcfb23695d0beb1n/a Heodo
2020-12-28q5njLICruXXE.dlldll 1eec3ced64c305241106ac4c78a6a6bf4c849489bf8058a8445773683ab6aea0n/a Heodo