URLhaus Database

You are currently viewing the URLhaus database entry for http://4evernails.nl/de_DE/XTKCKFS9484178/de/RECHNUNG/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:118390
URL:http://4evernails.nl/de_DE/XTKCKFS9484178/de/RECHNUNG/
URL Status:Offline
Host:4evernails.nl
Date added:2019-02-06 13:00:02 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-02-06 13:02:02 UTC to abuse{at}mihos[dot]net)
Takedown time:3 hours, 44 minutes Good
Tags:doc emotet epoch2 heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-06PTGB449369630.docdocbd0f8eb07507a33155a7d45f559a47425434137d1c3aed9977b2101b45ddb8caVirustotal results 20 / 56 (35.71)Heodo
2019-02-06W7646457267017646.docdoc5879a3935f8d2c6b96da11518456277ed39a6e5b14d06356fb73cc73f3ddd57an/aHeodo
2019-02-065344632428238704_2019.docdocdee3aff9b61da4d7d7961119a2b194f65b87ed0a1746325937204b99773d484aVirustotal results 18 / 56 (32.14)Heodo
2019-02-06967619179971_2019.docdoc436137e36b7d471501f167564120f0eb2db4e529f080568be0906bc736cb2d19Virustotal results 18 / 57 (31.58)Heodo
2019-02-06115905305044012899_2019.docdocf57ca1cb4fd546700bbc33c68df35354cb74be5dd2c57aa7bb029bea954999c6Virustotal results 19 / 57 (33.33)Heodo
2019-02-06HIL381275808.docdocfcfe1d4bcd59f93ffb83fc3e187ee4b5520f2913072d51ee12a362d9ccfad1bdVirustotal results 19 / 57 (33.33)
2019-02-06DWU108258249479557290.docdoc540cd762a1b90e47d85035920ae09f53bc001774a0b8e30895782602bb5f9b6aVirustotal results 21 / 57 (36.84)
2019-02-06V76267982509021_2019.docdoc9aeeaed675d4039b2561d498564d3087e8af8e67eb599e8e06e356e1e6ffb623Virustotal results 18 / 55 (32.73)Heodo