URLhaus Database

You are currently viewing the URLhaus database entry for https://rbdck.com/wp-content/uploads/sucuri/lewfK/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	973778
URL:	https://rbdck.com/wp-content/uploads/sucuri/lewfK/
URL Status:	Offline
Host:	rbdck.com
Date added:	2021-01-22 08:42:06 UTC
Last online:	2021-01-22 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	waga_tw
Abuse complaint sent (?):	Yes (2021-01-22 08:44:06 UTC to abuse{at}linode[dot]com)
Takedown time:	13 hours, 20 minutes (down since 2021-01-22 22:04:21 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-01-22	B8rUZqdrYqjkjA004xxk.dll	dll	07900de1c7f81adecb999282fed541fb0f53c71fcd0f99e92a7cfa80082b659b	35.29%	Heodo
2021-01-22	jffQzNYPDshVst8y2.dll	dll	3b2bf03dd7c6e608ec5855825acedb14d2938dce972b6670223bd95ce45e8d6f	n/a	Heodo
2021-01-22	CV6MQQmW8R.dll	dll	d90175871ae7a03b2383a87e7c26d4eeea611fefc137f0af30dbd59f37c09db6	34.33%	Heodo
2021-01-22	JSsrbT.dll	dll	3442bb3fb073776b89c2a75a49fc9afc216a1247e91b7468dca511692adfa3eb	n/a	Heodo
2021-01-22	bb.dll	dll	cfd98d01209c7e43fee59431e328981faffb50d5f8bb8c133d9e86c7b3316743	35.29%	Heodo
2021-01-22	Pwi.dll	dll	ee2624f693b987a021af6833a136fc7fa132dbf51f51b69896226afe5cd6766b	33.82%	Heodo
2021-01-22	EKUAM8K5QGXYtm.dll	dll	792e5ad6a6a17aaaf9efce69aa0e1892c15ad989c80e3709275362017e8fc610	33.82%	Heodo
2021-01-22	tcXFfXyybq.dll	dll	d04e4e7608bca3b2e003d01148a9cf271cbc2869a586c5c2a7ce22cafe121ddf	n/a	Heodo
2021-01-22	pgCr1MpFaSl0.dll	dll	645f8bf340a52a251e339854b7b0cfa0208854523e56ef62d7087bad17a7c610	n/a	Heodo
2021-01-22	6r7mA2vbC.dll	dll	8c6fe36a28d1e2d7b4c08bf5455ccd61bc318b111712eee96be3ce0e146514a1	n/a	Heodo
2021-01-22	Zj7YOfJHNEvyr.dll	dll	15bec27edac088a35fbc53b9d2fbb699d401e4d97155648f2286bd8a0fc9c69e	34.78%	Heodo
2021-01-22	lkmFR7Hj93OUn.dll	dll	19d93d74a3b81b666365c53528e503905f287f903e57b094562cd7289a6035a8	n/a	Heodo
2021-01-22	elo5hwmEPMgDUTxxWPViKo.dll	dll	fbf92b1d6af06f2e7565e24a5005286751a757a9d8e32d7ce80687a2cf8dabae	n/a	Heodo
2021-01-22	cJ7NzTgJL9Wxcsup1nk8iQ.dll	dll	0f1ec7f2486bce122b9d3855fb18ea808d442e3f4da249f61760be839c2fcdcc	34.78%	Heodo
2021-01-22	wJjiUFK9sTsxfg7djnVbx4.dll	dll	f6004370e0adf3bbd50c2b8be14815d623a423757d6852e8458b325eb5732be5	n/a	Heodo
2021-01-22	Gx5txp.dll	dll	0b9dcfbfc9bee017ec721fe8fd0d4f852b866882be1816b2cfd35e06ac87787d	33.33%	Heodo
2021-01-22	9ZHyNKBO3YlaXs33LcacsQ.dll	dll	ffb965ab4859de6f1f129b864256bceb09f4c53109f78ca0b3e90b393de9696d	n/a	Heodo
2021-01-22	zxN.dll	dll	e232192fe9d22acbd2b6d1c984765fef29f572b5231381ee56bfb1dbd24129bc	n/a	Heodo
2021-01-22	gVkQn9ZjtwMiAGaJKqnw.dll	dll	30b11ad63c31adc6eb6bbd3384ac988e7dfb893d490fe02d4e51b7895cafbdbd	33.33%	Heodo
2021-01-22	oM.dll	dll	757870a8c8e4ca800c1a8300f3dbb2a81024689fbedb2cf2a0b76c195106341e	33.33%	Heodo
2021-01-22	v9P1KK.dll	dll	3137a68bf3632116bf77199f16342b02dec5191256d7ee78f4faba83a87560cb	n/a	Heodo
2021-01-22	gSOilZ1eUetg79zOovSb5rA.dll	dll	7f8a64f01d35811a8259c8109c21e66aff514bb40907b9b10a661a050e8741a2	n/a	Heodo
2021-01-22	crjhfm.dll	dll	303bb999363912a4de41aa1105150bad2a7608dc7d055c2e234e1cec506464f2	n/a	Heodo
2021-01-22	oZwama7Izbbc07LpRB.dll	dll	69eb66a86727e6eda38b5b35e2c4da28ec6073d7ca1f486eccf8546a09575f4f	n/a	Heodo
2021-01-22	R44Hy2kGXk004xcbHks.dll	dll	965efd58cbfd1864c2112522f6cbc3ee47cbb992e448f8575d3aa59b028e9947	33.33%	Heodo
2021-01-22	5ZC9EuuTgc1YOPTy.dll	dll	1a95e19f89663ef976bd81e817b8c4f587089930f8c431f9800072cf46a61ae1	n/a	Heodo
2021-01-22	ImEQ6PCOfcLsMi.dll	dll	3b5fb2e93e2545d8287dd69e73070658e3eb4187d3fa8dcde9837345974d4727	33.33%	Heodo
2021-01-22	aK0ZYzhvk.dll	dll	be09971d4c13403ec7f5f87737c2e7a64c1e0008612e0ff17424a52934990f6a	31.82%	Heodo
2021-01-22	urhuGEP4Au.dll	dll	f8841a79bd7ccba9a59a9c44a35b7c0fc9ab8c95ffd05dcd440e8d67f504ea75	n/a	Heodo
2021-01-22	jOIJRQlBjOXwxay5ffT.dll	dll	162695ce210d524251b8485734289db0358acea77225fd3556b313e10c456ae6	35.71%	Heodo
2021-01-22	12Lh77mLyj.dll	dll	4a84454b77c4a5ac5dbcac9245d3bda950104a19efb145656b6b071a1ef69921	n/a	Heodo
2021-01-22	8ZQIvNvgtOEafLYm.dll	dll	15c57aaf8f91c592b66d622f0525e0af422e03cccb0bf4440b66582c35a76c7d	n/a	Heodo
2021-01-22	yI.dll	dll	edf2d0816e7f810f64058b89a015bff3e749e21a3cccfd18af732478f97b9da1	n/a	Heodo
2021-01-22	SJu8LfUp5sECYN8x.dll	dll	cb4ffe478adedcffff6d66de2a32464aa05e1b653512d28feaf2d4ecaf8d0618	n/a	Heodo
2021-01-22	Th9LIOPWZTPPZQnUTPyMbxe.dll	dll	cb969f99bfba8087d0a454310389dc328d34b24d03ce327609bd799c20e66be0	n/a	Heodo
2021-01-22	hNJqprC1Ada.dll	dll	58e5a9245bc375d390faadcc77323d2eb40bc30e8e034461c2a40ebf43979456	n/a	Heodo
2021-01-22	Vu5sPvSz4AxKKDCJ.dll	dll	999f7939265ddd81be7c3438a7e1830bec8cfcd420a503a22055d7d126455615	n/a	Heodo
2021-01-22	Dx9I.dll	dll	bee2a8e849f9f9d1be28d096a05dfc7a8c29045283f45ecf9f41bca8b970c366	n/a	Heodo
2021-01-22	eYnjmNokZrqcu9REiG3q.dll	dll	f295dc0329d90a2098a058965903bddd3a193b86d871aaf6c79fecc8bcb766ed	n/a	Heodo
2021-01-22	zJZm.dll	dll	f5a2ec7716664ae860577125e6e304b393e655a69cdd48c93387c0ec08cc98d5	31.34%	Heodo
2021-01-22	MNgRdKyUXcf6SJnwGkkMk.dll	dll	4f0aebbe2bd0308a5f20f96491a8c87875b2373da050bb36f8b9fc3200dc8215	30.43%	Heodo