URLhaus Database

You are currently viewing the URLhaus database entry for http://zentera93.de/Transaktion/01_19/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:104049
URL:http://zentera93.de/Transaktion/01_19/
URL Status:Offline
Host:zentera93.de
Date added:2019-01-16 09:01:21 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-01-16 09:02:17 UTC to abuse{at}netcup[dot]de)
Takedown time:1 day, 7 hours, 49 minutes Poor
Tags:emotet epoch1 heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-01-17122018_Rechnung.docdoc704d083fe2b3081d040adf995c6e0d9d1ff7ae43495010f8f94c91905ccf7184Virustotal results 10 / 52 (19.23)Heodo
2019-01-17Rechnung_12_2018.docdoc86c7851ed4387f1a8e29736315cce8fe24f482052a3dd143d7599be4cac1e4d3Virustotal results 10 / 56 (17.86)Heodo
2019-01-172018_12_Rechn.docdocf0673e6479c574f82c1a26f6cc3d862c5b7aaf9b0b764b4ab5e7e398bd16ba4dVirustotal results 10 / 55 (18.18)
2019-01-17DEZ2018.docdoc684617529f4ad27656b3eb393df138e302cfcea79d7b44cca4a30515f050bdc5Virustotal results 9 / 55 (16.36)Heodo
2019-01-17122018_Rechnung.docdoc48202cbd6b6c37151ee08f9c530d51c79a94db852b8a094489296aeaebab7545Virustotal results 10 / 57 (17.54)Heodo
2019-01-17RECHN_12_2018.docdoca2c1de9ebcd839379fc5c37b62028607230587faeb92a3f46ff3dd925cd5c0c7Virustotal results 10 / 56 (17.86)Heodo
2019-01-17RECHN_12_2018.docdoc2c837a73db0b565b3bacfebf3d6c355ab8a248521069e86dee6ae540ceaa78e4Virustotal results 10 / 58 (17.24)Heodo
2019-01-17DEZ2018.docdoc6b52ba311b5f8148c5980299d940c525a0067ecad7d9da7a01090b52ffa0ad76Virustotal results 9 / 57 (15.79)Heodo
2019-01-17201812rechnung.docdoc42e5506c49476192b20cbcefe9592230a0c94a68883221654fc54cef616f32bbVirustotal results 10 / 59 (16.95)Heodo
2019-01-17201812rechnung.docdoc67d33a219e7b5e30e882e211a5be174921bdf9990ecc569f5b9ab4f61e2557dbVirustotal results 10 / 56 (17.86)Heodo
2019-01-17122018_Rechnung.docdoc0213ba138eaf05385155665f8ae567f6ae6c4559ab93e2e11ca0485470880515Virustotal results 11 / 56 (19.64)Heodo
2019-01-17122018_Rechnung.docdoc70bbe0b58b1cd5cf6ae2cc52320ace634278aa93677bb86bbe5c7adcf6fd0315Virustotal results 9 / 58 (15.52)Heodo
2019-01-17RECHN_12_2018.docdoca39b80fd3f2e301d85ff57c07f2f1c98d3aea4ef1d7172f51df2b61b6fe645bbVirustotal results 11 / 57 (19.30)Heodo
2019-01-17201812rechnung.docdoc09df35352774cb287efcfa5032ac6a575ee38d408dfb8e0e5c4e60cd707dc64bVirustotal results 12 / 57 (21.05)Heodo
2019-01-17DEZ2018.docdoceed5a488a527491e24f220ac8a79305c72d345646c2e8b6003c0953a365401edVirustotal results 11 / 56 (19.64)Heodo
2019-01-17201812rechnung.docdocb7347f1cec56f6f31c440a2f6e9ddecca914344d65a7fd89dbfac112bfa737f0Virustotal results 10 / 58 (17.24)Heodo
2019-01-17RECHN_12_2018.docdocb112a3914073a58a739802c63e709033b34beb20fccb6416bb5ab7cce6e13d0dVirustotal results 12 / 57 (21.05)Heodo
2019-01-17Rechnung_12_2018.docdocbc2befdd690b5faa6dfa314f47d7eed7d1ffdc0fc52a9093cad1f02ea41d1732Virustotal results 12 / 57 (21.05)Heodo
2019-01-17201812rechnung.docdoc1495db2b5492ad5f0525709c8177b20616293e78f4905f754a325220fd9ecc82n/aHeodo
2019-01-17RECHN_12_2018.docdoc12872164e3482ddedcf5c6943891bb1218b74556704b34ca4ee26428d8a2f830Virustotal results 11 / 55 (20.00)Heodo
2019-01-17122018_Rechnung.docdoc527837a5046f10ade13d3fd53e0b67833444068c38794a238d628ab3bb8cc088n/aHeodo
2019-01-17Rechnung_12_2018.docdoc23227a8bcdebb2c1f46b4e8337f2ddb9c650d57f651c9492c8a2a1f0ae7181c1n/aHeodo
2019-01-17Rechnung_12_2018.docdocdc0e45e1bded135dfde91af70ce0d1ae644b7789cd96f22a997825d0812e042en/aHeodo
2019-01-16201901_074531_RNG.docdocf432c030a99ce3359ddd68468000429777c271cf71db6e60c024c5c7b3e662feVirustotal results 10 / 58 (17.24)Heodo
2019-01-16RNG_012019_131/59/039.docdoc534f411906e62e4f91c17044e334364efe3465612165515039a849f638d60349Virustotal results 11 / 58 (18.97)Heodo