URLhaus Database

You are currently viewing the URLhaus database entry for http://ragnar.net/cgi-bin/0mbk-stbuba-phjs.view/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	154427
URL:	http://ragnar.net/cgi-bin/0mbk-stbuba-phjs.view/
URL Status:	Offline
Host:	ragnar.net
Date added:	2019-03-07 16:45:04 UTC
Last online:	2019-06-17 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2019-03-07 16:46:02 UTC to DCAbuse{at}zayo[dot]com)
Takedown time:	3 months, 11 days, 23 hours, 26 minutes (down since 2019-06-17 16:12:40 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-03-08	US051706143344415.doc	docx	da1b47eb285b4a7c79c91c9f33b6a4088b8b03c175bc900669211b9949fd8b35	20.00%
2019-03-08	PAY3095734715.doc	doc	6e46b17e22f93ad24a43e99ea649c0a3b4a3db0f6d9285b7b4e86f73e7afca55	29.82%	Heodo
2019-03-08	CKV409955458255249.doc	doc	7a121c47e83923eff6fb29c238278eb437b099a55f9ac1950d9d0d40f688450c	27.78%	Heodo
2019-03-08	INSTR97323096539.doc	doc	13b606d9890ede363440340398b8cca666811fa7986498c117a9a7e5f2204c7a	n/a	Heodo
2019-03-08	INSTR80742160258638811322.doc	doc	0a9c905a4e041543a9e0e3650b6881444495120aa72732785d74990f3518f0cc	28.30%	Heodo
2019-03-08	US5473463224329328.doc	doc	3800b8a255df8265c7912c2b8bdb09cfc191bd0b3e8cd9debc9c20d6c1b57070	26.79%	Heodo
2019-03-08	VAK72973937502.doc	doc	f6122d549c6d55d92e4b845099ceb1afa1ed5c94ee50b7c68a7b85ca805b77ee	35.19%	Heodo
2019-03-08	ACC1054586444.doc	doc	97b2b1664ef118db898988d29e636f53467778206544ebda7acc12213c56ac81	25.45%	Heodo
2019-03-08	QR2237651429892.doc	doc	9d9a503f6f1fd02ee5d78701e329eafd80a2d6c94b4f56da670e324256b32a27	24.53%	Heodo
2019-03-08	INSTR2607884284867526.doc	doc	4c7f8db9045979b708af492e785e11bf8bf286837a9dde04a78814a9e76ed547	26.42%	Heodo
2019-03-08	INSTR29655231365724943233.doc	doc	6ececd6e571ccbca5390346ae8260f8cbf1d8d1127815186294acf3aa98cb808	28.57%	Heodo
2019-03-08	US27061378931.doc	doc	7e52eca9089cfe20668e85e096892a90d087f21e0ac1f6108e232ad1f40eb102	27.59%	Heodo
2019-03-08	INSTR32332191310.doc	doc	f907451a1466b27f5337d860be0d01a347e6d69028f7d23d276918059e81d01f	24.56%	Heodo
2019-03-08	PAY9370268600049078413.doc	doc	7f23b0fbf6d522f478429300bf94dad539879581ca364aa66b57c0adee5769ce	n/a	Heodo
2019-03-08	ACC8549188205161.doc	doc	5709c58347ec610228b5d9ffe97b5f9cb3efa6cec1703fb903a3572be583e935	24.56%
2019-03-08	INSTR7869633850641.doc	doc	a4fac8f814e04e5723081d4b35d818858a46fe1ca2e9620b415947fe73ed2d14	24.56%	Heodo
2019-03-08	8412009114.doc	doc	4a13f66450484e652dff2c79c192ebb5ec2e8b1988edb8898fcc3a872bb284d0	22.22%	Heodo
2019-03-08	QLGK201184356.doc	doc	e998068f7e10a188db7074668c6578296e9e6f39aac5cd482b0c153bb8cb4527	24.07%	Heodo
2019-03-08	77663517338070453.doc	doc	5583bcd2eaebd9f55516fe2f719dd2b28e2660d904f92ad7b1cffc8e2db08b2c	24.56%	Heodo
2019-03-08	INSTR332819557017694.doc	doc	021f2bbf1bef3c41a34c1e8452c09b60ddeff4a5d432634720c046929eb22006	24.56%	Heodo
2019-03-08	244460040984.doc	doc	ba9c5bec408a558cbfc82380849de5a5d3e5d47a397989b880bf6328d1436eee	n/a	Heodo
2019-03-08	NT24474273902626979815.doc	doc	542a8319c33b76cec5e523283d1571b040d2fdc36712e4e2518fbfbec9b69403	n/a	Heodo
2019-03-08	US35175832768521372540.doc	doc	5d3deea9ed7f88cd3045bfd3039e6696616fd21574e8537b46a9d64e89f5c049	n/a	Heodo
2019-03-08	ACC15617517691301.doc	doc	10a1e7a9f1d1f7001606dea10daad7253e0b33179ad2806c52a8bc52ac686520	n/a	Heodo
2019-03-08	PAY6475246006873870077.doc	doc	2f92ef85141c58056433f18636f6fc20bd374c447dd2f50486aea48881dbd612	n/a	Heodo
2019-03-08	310625634025324832.doc	doc	52ab5498f5bcc31aa78867692a9833884abedd815abb21730b65b582809a2560	n/a	Heodo
2019-03-08	752624443112682328.doc	doc	93c595076b4f52cbf47496ee07bfb2483d26e73419242f0eeca20de828334915	n/a	Heodo
2019-03-08	PAY31062340757845.doc	doc	2a50431d511bcf71682fb543dce8a79e1e4d43e4bfe8c31a4fc47015cb57e0a8	n/a	Heodo
2019-03-08	2711080471964739.doc	doc	10097250f28841210b70cc408b6134580b074190bfb071050ca1990f4a8ee740	23.64%	Heodo
2019-03-08	PAY805560812982003887.doc	doc	e31674935c422ec5909cb4f780f2940e75ced8f92f8b7440375b518589ca8165	n/a	Heodo
2019-03-08	INSTR8000805507869.doc	doc	cc7109ba4e1b0fce3ced4bbdca5bd0651cce23f59ea05795057e39aaad13bea7	24.07%	Heodo
2019-03-08	ACC26034365770807591990.doc	doc	5e5d3d1b2793d50cdcf209bff7f4c01a3ce29772c47c388ee48df7ab2919fb19	24.07%	Heodo
2019-03-08	ACC66659944149016.doc	doc	0ba237b2fb3d89e9b662c60796091ce5305d68c951e8e0978e262ee4677f2d9f	33.33%
2019-03-08	PAY573363957870399420.doc	doc	b7c6df6661ea9c068bdb0a0099cc72d3bd81fd250840a4d8e4d9a064c32d0509	26.42%	Heodo
2019-03-08	US9140082982508.doc	doc	910adbd4d4386b066e420ff8982ccb4835c467266d67ad4d3bec91edfa85d028	n/a	Heodo
2019-03-08	PAY6486159636808346.doc	doc	b34474fbbf4eacb783973e41cf37ca21fb4c8c679866a2eb03d231ce7f089a84	n/a	Heodo
2019-03-08	89841845900.doc	doc	efe676f97b0a68094db637789ddad46acf781e9de8aa50092fbba3480d52de51	n/a	Heodo
2019-03-08	PAY341556842.doc	doc	abe6cf3cc7139903087968bd2e218b2abe6b17e3f3e812f7ef3ff64055f8542f	37.50%	Heodo
2019-03-08	INSTR85011737685665872177.doc	doc	930236f66b4e0c83f47219c38856a8fb76b33784320fa2396f0ec6b5c585ff6b	n/a	Heodo
2019-03-08	BEX4909530372.doc	doc	1c3aa5178dadcc10c6f7e41946863e216e2291edca50c1d0c499b1567d5a831f	33.33%	Heodo
2019-03-07	INSTR57047037442788590390.doc	doc	39eaa071861a8a641a64ff0017cc07177be170376459198597a99a934021e250	n/a	Heodo
2019-03-07	PAY4333120115.doc	doc	c08972a7c320294aa619d9c1a409c3f3debf9b5767f4b3e705bb96348422b2a2	35.09%	Heodo
2019-03-07	ACC56135559018215.doc	doc	dfe1fd238216ab830ed5795611f4da173320068a9bff741c7d1aace1c65861ef	31.48%	Heodo
2019-03-07	ACC874461921.doc	doc	2ad8f2aa1ecc9248bedf72c8955bcd9c88d67352fb364c9ce5dd7c2265491df4	32.08%	Heodo
2019-03-07	FMV38147019386164339809.doc	doc	c02ee2388c14d1cc4a1a388655cc56da6509d4c502efd0e4939329d05c50c0de	18.87%	Heodo
2019-03-07	US922732359366558.doc	doc	b39e265ef228306376173234207ad459ae5c410e318175cf25dfa0663f215f93	30.36%	Heodo
2019-03-07	966879391553.doc	doc	6dab88060f79545474d5aa45052e0159a0d3da5720cffebff4263ae87fc719be	22.22%	Heodo
2019-03-07	ACC258234258703.doc	doc	9be332b69acacd82d21ce85bd87b358e5d4e7b7092f841c2586abf1e09975b6e	21.43%
2019-03-07	PAY2814444069114.doc	doc	31112cc78239787009da5d3ae0a754eef6fe5ae2c53fe2f0cf6e00c76d39eb57	18.18%	Heodo
2019-03-07	INSTR86655230839997484.doc	doc	94621c4b8e78458c9544fd44918f29dd754eb361db1f5d4cb21c89128c523186	n/a	Heodo
2019-03-07	312975324851688848.doc	doc	a1f047e34ca661d9e4efba7631960ce7d5bc1ee8494705dbc9482532ce57b56b	19.30%	Heodo
2019-03-07	US80461909632.doc	doc	c441250ea5c7bfd568c9b6ecfa4f6fbc10b80a9d08f6a3ac4e1de190b137c0df	16.98%	Heodo
2019-03-07	PAY9611045934701846.doc	doc	3349b07454e830a5f6f9d4a75e44b911e0ee100aef02f52e1747cae8e334df24	19.30%	Heodo
2019-03-07	PAY14006381486541.doc	doc	7557dd715b18228d740e45e7386aa238855725b93bae92fd7c6bbde40ec15b98	18.87%	Heodo
2019-03-07	PAY2030325103.doc	doc	9de82d410de61f6e3f6955f95521ab4b2623d84dabaa0f0f04eb00a3359365d3	18.52%	Heodo
2019-03-07	5375505668.doc	doc	c219d3fec1598be4126b17a3572ebcf872d73143ec4ecfad663343c88241f424	13.21%	Heodo