URLhaus Database

You are currently viewing the URLhaus database entry for http://bergdale.co.za/wp-includes/sendincencrypt/service/verif/En_en/2019-03/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	152102
URL:	http://bergdale.co.za/wp-includes/sendincencrypt/service/verif/En_en/2019-03/
URL Status:	Offline
Host:	bergdale.co.za
Date added:	2019-03-04 22:42:06 UTC
Last online:	2019-03-11 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2019-03-04 22:44:02 UTC to abuse{at}optinet[dot]net)
Takedown time:	6 days, 15 hours, 31 minutes (down since 2019-03-11 14:16:00 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-03-06	Secure_mes_9045824556.doc	doc	d814a67405968e3c745e60c2638261143d30cee5e0ebe5be3aa146bd02a55726	20.00%	Heodo
2019-03-06	Enc_message_61714772.doc	doc	6ff44ede7f80f7b25f191ea64a7966cdb74ef08f0ba0c342c03ac42a33a4e1ac	20.69%	Heodo
2019-03-06	Encrypted_Email_file_739151023.doc	doc	9ff92628798eeb45a5fa8b8ceccaf412004fa83af7e4cf10d67b91def29c0c8b	n/a	Heodo
2019-03-06	Encrypted_Email_file_5560573744.doc	doc	b31e2b2e3d47acee280e9b0de20f276386152a27d56740e7f6b7ca0837054740	n/a	Heodo
2019-03-06	Secure_mes_504567956.doc	doc	9537249fc3e4b4a3638cde184dc9a579fc6f292fd7b86dcfaf83f5ba529daa19	14.55%
2019-03-06	Secure_Email_file_60890999.doc	doc	7007aabc93298b5f0fb93756a00bf6e396f72905d2c4a78139afad23bc67b3a3	16.67%	Heodo
2019-03-06	Secure_message_0252063367.doc	doc	35fda15cd156d297c8481aa203137f37a0c7a3ba10148003029bb01afb18db41	n/a	Heodo
2019-03-06	Encrypted_message_96679785.doc	doc	441d237af7b2d15b464a5e1af3b98419e7a07de5605dae263c512e80d5b5d913	15.79%	Heodo
2019-03-06	Enc_message_955797984.doc	doc	43464fb43c3b3b14c50d8452af99cd8d25ccbbc5b9437e4a2c1d336fda6d9ab5	n/a
2019-03-06	Encrypted_Email_file_49624934.doc	doc	98f8105117d14ee9f60177ae644e9e84d6a0c615d4304178641197372c8e911e	n/a	Heodo
2019-03-06	Secure_Email_file_27217218.doc	doc	c9d448ea3a4112dd01639c17ae72159511a32a83c8dac45dac7650bdbad004ac	17.24%	Heodo
2019-03-06	Encrypted_message_12099282.doc	doc	ea1b6699939b1fb0b14faf46233ea7ff1d81698405872f73d73d1d03bcbce2f4	15.52%	Heodo
2019-03-06	Encrypted_Email_file_1180660967.doc	doc	31d7a5ea1d73997a57546a687a82c78f81cf8cf56991151dfbc3844771e2a788	n/a	Heodo
2019-03-06	Enc_message_03129279.doc	doc	a64a359ed7a42b37e9794bcc712c14965f6b7a9cf9bc4e1c9268be9d5b2cf293	15.79%	Heodo
2019-03-06	Enc_message_955131010.doc	doc	75e00a688895ac329b3ae7a2702a0ff58bffa4a81f82e7bdc53febd05b54438a	n/a	Heodo
2019-03-06	Encrypted_Email_file_787091862.doc	doc	2bd4fae72d3ab987b9304454fb8f23e8f8e84fff0dbcdd898ddf3f561d184f42	20.69%	Heodo
2019-03-06	Secure_Email_file_0243796534.doc	doc	5df678afc8e67909d8f14c0ab430800f78ada119941787a12dd2a524c2ddfc5f	20.37%	Heodo
2019-03-06	Enc_message_867846754.doc	doc	a2e04e00b1dad83d59a31ea0490d796eea1368e8b18858d4b3da470510e22423	19.64%	Heodo
2019-03-06	Secure_Email_file_518762968.doc	doc	fc237196ce5cc7ffd5e4f7e948eab74dd5b2c55715537d404377cb219be5b557	n/a	Heodo
2019-03-06	Secure_message_5571984075.doc	doc	7e06307d2307e4d355f60b1667d42f6abb64b3d5ca13c4eeb85bb19b3fbc676b	n/a	Heodo
2019-03-06	Secure_message_8903375743.doc	doc	823973bc199dc16b01c9daa63a8f376ed0f6bc5978beff7ee39e244858eb516d	n/a	Heodo
2019-03-06	Secure_Email_file_321493302.doc	doc	da1e9461b88c53163e82f2f8b7ae6cbf232cb1f863a597661c9141479e33109a	19.64%	Heodo
2019-03-06	Encrypted_message_069632217.doc	doc	b974213ce7e33c2574a323197b57f79cec5b1992ac127356fde3b2d7dfd32706	18.97%	Heodo
2019-03-06	Encrypted_message_85439534.doc	doc	1c833fc82050ef8299050a69aedf206793f8643a835cfd76b85eeee3681f657c	n/a	Heodo
2019-03-06	Secure_Email_file_9359646767.doc	doc	eb0b09b8783c1c1a703d8221cf8375d6d89d7468011122bb1941ad95ccc8e6f1	n/a	Heodo
2019-03-05	Secure_message_045142215.doc	doc	4028136afc0bd4f5addda390fd1a90e4509336d753f7836f9313bc38dda460de	n/a
2019-03-05	Encrypted_message_3763320968.doc	doc	ef8b13f956b05117ec9c9d334da3abe4110ea70a6ec3433f4dab8a9658b1572b	18.87%	Heodo
2019-03-05	Secure_message_8609939689.doc	doc	a4ed2c043354b7a3221bacc8fcc72126901e94c22e721266a65baf085663e69a	n/a
2019-03-05	Secure_Email_file_3945177973.doc	doc	4f76cf4e36ca9219901c98b94ba2823a5b2f0e18f64f90dd735d7683003c7f0a	18.18%	Heodo
2019-03-05	Secure_mes_427951277.doc	doc	35c8f6b9340b7bead5d2bddf31e41ed219979f38aae97dcdbd13f5044e1e2dea	16.36%	Heodo
2019-03-05	Encrypted_message_86732118.doc	doc	6702303ad9bcb34d10758c825c5cdf64d8751837375010518c6d32911c2e98e8	16.07%	Heodo
2019-03-05	Encrypted_Email_file_539731538.doc	doc	4e5858fb78e1863fa034ef4cc24a2baab3c75cdbe6b6b4f1434046e9706fe2ce	18.97%	Heodo
2019-03-05	Encrypted_Email_file_2700718552.doc	doc	7a9761a06a2d295752b1764cfb5bd3f81937d221e5a6abc041484188ecb6fc86	18.97%	Heodo
2019-03-05	Encrypted_Email_file_88513085.doc	doc	65b6c70ce2093bb7fa9a86a97d0e5abbf589fb925e10b2c692824758934e405b	19.30%	Heodo
2019-03-05	Enc_message_54246179.doc	doc	f39e39f68e86c1fc95babaa2497112302a21ad7878eb47185767232a79798581	16.07%	Heodo
2019-03-05	Enc_message_30751078.doc	doc	04efa951a9e07feedef52063d3425b15523321a2e0ab668b94dd01b95bfa456b	16.36%	Heodo
2019-03-05	Encrypted_message_3739238297.doc	doc	6efe08408ee501c2efcdfb3d839a8c2f37f1dc14466e09538f04730406e9e8e8	17.24%	Heodo
2019-03-05	Encrypted_Email_file_182916496.doc	doc	a1ee70822fc5504d76ca180867f6f446109aec8aff6b31d4ad7f615a2b16cdff	16.67%	Heodo
2019-03-05	Enc_message_41460970.doc	doc	2745ebc10e0a8a0fdf3393fe7df3ca3c1e9edbbe9f2bc92d73e2789639d073b3	19.64%	Heodo
2019-03-05	Secure_Email_file_9955054122.doc	doc	8303b2b2aed24d64771b69e533acd9e31c7c3f18a3d54b0d2bb2e3ff244197e5	19.30%	Heodo
2019-03-05	Secure_Email_file_59468072.doc	doc	0863f970480339c30e93bf2f70f1f81bd65ba0f70f05f41c5d0fdfd18230f672	18.52%	Heodo
2019-03-05	Encrypted_message_3210527960.doc	doc	e949480d691ac9920b06649654c3727395547494daadb59b23725b48d2723bd4	18.97%	Heodo
2019-03-05	Secure_mes_6428526452.doc	doc	c4c1b8eee3bf246dce3e480a0eb89f7a80f1b22c034e125eecda84e252a51d67	17.24%	Heodo
2019-03-05	Encrypted_message_21622040.doc	doc	cb8ddf621adf2a752a957d09dc9951251e4ce042da623dd03703ef563aeb8556	18.52%	Heodo
2019-03-05	Encrypted_Email_file_055464634.doc	doc	ac191f2ce122f43b10153377784aaad628473ba2d0bf43e385710e3958260bc2	22.41%	Heodo
2019-03-05	Enc_message_024195348.doc	doc	cf0649ebd59773088eaf195500090b15f9e7039ccbd54fde07287eaf0e1d7fa5	17.24%	Heodo
2019-03-05	Enc_message_1555791692.doc	doc	17f20ee4e10b59c2f6a5ef0afa3f0d6756d8a617a61aeb3c8d89cea465fba31e	15.09%	Heodo
2019-03-05	Encrypted_Email_file_4755754645.doc	doc	e67cf2896cad6b2e759af9877e1957b98ed2d43f88609d270e28e5d1394c00c4	16.98%	Heodo
2019-03-05	Encrypted_message_447559834.doc	doc	6a9d1275005dbfec7c5aed26404e181a5e5889f8f2673d10d8976f190febb430	16.67%	Heodo
2019-03-05	Secure_message_9737578557.doc	doc	4d7086a80b0a7a49e06908f064c41e63f30cd8b7f7e72a825f010af1c773c81d	18.87%	Heodo
2019-03-05	Enc_message_52009902.doc	doc	493438ecaac2c03a34284de8c97ce0020c11df8483588113b1334aac7b7f655d	18.52%	Heodo
2019-03-05	Enc_message_988610928.doc	doc	575ef83ef856d6c2002da1ca7ea3562da367f4bad60fd63526761b138058ce0c	n/a	Heodo
2019-03-05	Secure_mes_20385537.doc	doc	8940048820f6964f24d0a91beaa2c1c5941a165367eb206950897a2f34a18d78	35.29%	Heodo
2019-03-05	Enc_message_1969919910.doc	doc	09f9db82e4c636ee377019ce43f0539cab8103df3173f985b3fd95cb7e1564dc	35.29%	Heodo
2019-03-05	Secure_message_350967802.doc	doc	d67c668a823f5f76b40c131b8e094acfdaa5076e3d520a4b5f6c0bf1fe05a842	34.62%	Heodo
2019-03-05	Encrypted_message_040041326.doc	doc	a7b11012689a692ee87a2a801667d6b56a51452d52d6dc7f3a329b6539e13fd4	33.33%	Heodo
2019-03-05	Secure_message_5124408701.doc	doc	093b8c79d469840b972b214a111ed940e689fbfdfbea179ac074c0158c91e8ae	32.08%	Heodo
2019-03-05	Encrypted_Email_file_47319164.doc	doc	454a528a559218a1fe096b2b741970203783ec60a8d39c457cddcbbad7fd6d97	n/a	Heodo
2019-03-05	Secure_message_761482622.doc	doc	47ae892bd3ba2220e54b8675843d9d3f7a0c873f72b6d1d05480df396b96d2be	n/a	Heodo
2019-03-05	Secure_message_26344106.doc	doc	cc14bdaf3e992f81e7a3df030c0ac6e2385c3685176c3198a7412b6ce226c7e2	29.82%	Heodo
2019-03-05	Encrypted_Email_file_6550213761.doc	doc	7dfa14d09bc9e38e9b97fe017b1f804550b4a923832a34c9cbf2f531d40bbaeb	27.45%	Heodo
2019-03-05	Enc_message_983801699.doc	doc	3f603e317b624a36a81412f9eb7e6d52ebe148e7e8dba6cb02a88ba0c6fe3c12	27.45%	Heodo
2019-03-05	Encrypted_message_2062736150.doc	doc	645b647b38adccf74c9d4323071045ae4d6e0bf53ee88ed926be5b56b568b8a4	25.93%	Heodo
2019-03-04	Encrypted_message_487168024.doc	doc	7e5c691a612516b1b60538d24484c4c05f3d838ce4aebdce9d49bc01648fb81f	26.92%	Heodo
2019-03-04	Encrypted_Email_file_1876554053.doc	doc	1ba3f4b0927e152f00568ea0012f799d140f45f32f9a5d3cef776e80a05e7029	25.49%	Heodo
2019-03-04	Encrypted_message_471569153.doc	doc	b545ea518a8f06e1e01142ebf9b6debc0628eb775b9edb7682cbf6415e9b6306	24.53%	Heodo
2019-03-04	Enc_message_35841121.doc	doc	23c435f5859091ebe71a1b294251bef3976a26579375a5a970f0c4e828e791c4	n/a	Heodo
2019-03-04	Enc_message_2096438677.doc	doc	612ee319e707a93926b6ee619ec73b2148218adeeeb5c7213cff0bf5b82a8400	25.00%	Heodo