URLhaus Database

You are currently viewing the URLhaus database entry for https://www.teelekded.com/cgi-bin/Services/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:949310
URL: https://www.teelekded.com/cgi-bin/Services/
URL Status:Offline
Host: www.teelekded.com
Date added:2021-01-05 08:50:05 UTC
Last online:2021-01-05 11:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: waga_tw
Abuse complaint sent (?): Yes (2021-01-05 08:52:09 UTC to CloudFlare Anti-Abuse API)
Takedown time:2 hours, 54 minutes Good (down since 2021-01-05 11:46:39 UTC)
Tags:emotet link epoch3 exe heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-01-05gl5o4rGRd49WftOk2.dlldll 825a05feb0eba4ff90b865cce2950089de349005496235c416db6eae56794512n/a Heodo
2021-01-05sRShQ0.dlldll 6eba8ea36c0340b856794a5ccbbb0dc35671ba05f3ec0e9c9afe2545e301d0efn/a Heodo
2021-01-05pEZLZJWXj48.dlldll a14f07d0579bc01c109f12763a2bcd31a9d91b5668f7c3f6c20f366f4b5dd5b1n/a Heodo
2021-01-05BuCDo.dlldll 96d965581c4782c11afe673bb54051c30cb22f09814b41d09d4ca8608ca95375n/a Heodo
2021-01-05Y2x.dlldll 123976323ad12cf617579cfff7ecee5a00bb546c8ebd410fb2b0180dd622ea96n/a Heodo
2021-01-05QsnZAYN.dlldll 47d9d07bd11d1ad05ccfe6239011823f37003de2211ddc6214adc7ee4dee743fn/a Heodo
2021-01-05e167t.dlldll a95c578c8508c98d2af959f20b3007db22f099c9abdec28daaa1e1834880c4c7n/a Heodo
2021-01-05f3.dlldll efc6fd3c8e78ef0d507ed6a6a13ab032059883e8d21a7883d5ad7cd1ae19c9a8n/a Heodo
2021-01-05D.dlldll 619a40ee52d82ff37a1df9eb2ca28d645e8a87da6df2c81bd9e82a28baa4db90Virustotal results 8.57% Heodo
2021-01-0531dkTEh9.dlldll e665c278dccfff24ff59a875af510651b0167560db13c4b217946c8ceb45223en/a Heodo
2021-01-0548tVMqqLP9iHI5.dlldll d79f871a33cbab33443323898a07f9754ae45b3c20198455973b1098d51961b0n/a Heodo
2021-01-05hv8A037vuK9EPRbM.dlldll fc0f3a8b46306501a533a46f94467740b3162fc3fc91b062605b6b5bf2f3a110n/a Heodo