URLhaus Database

You are currently viewing the URLhaus database entry for http://urbaniak.waw.pl/wp-includes/sendincsecure/legal/secure/En_en/2019-03/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	162738
URL:	http://urbaniak.waw.pl/wp-includes/sendincsecure/legal/secure/En_en/2019-03/
URL Status:	Offline
Host:	urbaniak.waw.pl
Date added:	2019-03-20 09:31:12 UTC
Last online:	2019-04-16 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Anonymous
Abuse complaint sent (?):	Yes (2019-03-20 09:32:09 UTC to abuse{at}kylos[dot]pl)
Takedown time:	27 days, 2 hours, 23 minutes (down since 2019-04-16 11:55:54 UTC)
Tags:	doc emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-03-21	Encrypted_Email_file_636810701.doc	doc	dcf91d19c8b8e4703da7aa7e84e4905c4d3284fbe78bc56297f2429472c93822	24.56%	Heodo
2019-03-21	Encrypted_message_585100901.doc	doc	1b59ee07745c0e455343916bcd89c08476538b2711972f95aa78add465ad1d4a	20.34%	Heodo
2019-03-21	Enc_message_30499327.doc	doc	fb8cf7ed17da2dc30ed3ce0605ee54e4a1ecdc6dc8dd07e63d2f93f9685294d5	23.21%	Heodo
2019-03-21	Enc_message_208446711.doc	doc	d0e399e35d3676697b4a89e82bdea0d5f1220b502dde8ccf78b38f3097187e31	18.97%	Heodo
2019-03-21	Encrypted_Email_file_14308880.doc	doc	af412ac448b7b52e0e08ba2568f8003c65e1e00d454fad4dcc3dbbcada3d8f0a	18.64%	Heodo
2019-03-21	Encrypted_message_9239888852.doc	doc	0389b74366edc8da7b9bdd3db70618e9806ea08a812f3f162a4b87bf2d69fe46	20.00%	Heodo
2019-03-21	Secure_Email_file_13706955.doc	doc	9c314b3fb243905e61eb8350091a7ef4dd8412223db2045eebe00c76e41a2b14	20.34%	Heodo
2019-03-21	Secure_mes_4136610744.doc	doc	51b8d12b4fe1dc8f4acacfc6a92fe3ab8b13a563c2233a91cf060af0b3ee617f	18.64%	Heodo
2019-03-21	Enc_message_30156905.doc	doc	5b20dd91778f65acef6d5f3a830b0e9f384590914e73e70100be655c20c684c0	18.97%	Heodo
2019-03-21	Secure_mes_24195416.doc	doc	c7d3c3247adbdf1df841094fad58007e525c710476bc11a50fb06d870a37c7d0	18.97%	Heodo
2019-03-21	Secure_Email_file_471806153.doc	doc	be15edf813fec0e2ff632dacbde56f749baca75a0fc324fd8ecc8e14cc2b9b58	17.54%
2019-03-21	Enc_message_04716711.doc	doc	4ec26a0f0b9511707f60d02eabf19745c4dd63e08fdbfcefa3e08dbce698f3fa	n/a	Heodo
2019-03-21	Encrypted_message_5651337547.doc	doc	0e6de3ce115afc486e325fbe55d88bebc252e557bded3280b744e7301aa56d36	n/a	Heodo
2019-03-21	Secure_Email_file_45082126.doc	doc	20c3c1b7d39851e513e74792ba51aac2f318d0099cfabbb13557c22db16b6e61	31.67%	Heodo
2019-03-21	Enc_message_994369590.doc	doc	e09a07be0c522871c8387cabaeb6c0492372a5d729772f74f68a9db6f4f66f87	n/a	Heodo
2019-03-21	Encrypted_Email_file_987603031.doc	doc	971d512259c5e08dbd9d7f937154bdc4d035411fbee33c21556584e9bcdd5e6b	n/a	Heodo
2019-03-21	Encrypted_Email_file_67887262.doc	doc	a37d6fe236adf9ae759e6c516bcb775e3093e61e18ecf69fa47187efee12be8f	n/a	Heodo
2019-03-21	Enc_message_36873131.doc	doc	bdddafc5973928c836a9852aece14d6bb964f2ea2efe081b712316cad5e671a8	23.73%	Heodo
2019-03-21	Secure_mes_48979726.doc	doc	5b68eb13ce948f60f9d69f1e3fc59fe605b5e1fe245b2b7b7aad6d6ea692ef7c	n/a
2019-03-21	Enc_message_670616148.doc	doc	528fd71edb5b9efaaed661460c41d3111f1d0dd1872bdbf0373b507bc226580c	23.21%	Heodo
2019-03-21	Encrypted_message_26166271.doc	doc	000572ab508b4f249baf9d61ddf9b0c4e7647c1c4020cd648cba2c5d2f76b17d	23.21%	Heodo
2019-03-21	Encrypted_message_8163836474.doc	doc	e4bff4bbb9fb76c8194193e547a34348b6e5a75acb5a256d48212452745015f9	n/a	Heodo
2019-03-21	Secure_message_1327118422.doc	doc	59af57d924f416aedf2efd6c63fb8c1edd86121f8b4f49b2ed01b65596398b80	23.33%	Heodo
2019-03-21	Encrypted_Email_file_8704710046.doc	doc	9eacb6941cc93edb829970e287911e2c3712f8b8742b71511154f6d1c005ca3c	18.97%	Heodo
2019-03-20	Secure_mes_52876743.doc	doc	40ad6dd480ce7bc3522e597f87b4a7e4a636d1c3945ca24647682b7bac0b1036	18.64%	Heodo
2019-03-20	Secure_message_634781637.doc	doc	0e77a3179a5714febef6ca5fbfbcd5fb14efabe0d07cf58680716f80880129fc	19.30%	Heodo
2019-03-20	Encrypted_message_79972844.doc	doc	19ad94fb62a599abf26c7e55b6fb436d878ef2af4cf50e6ae153138b6fac9787	18.97%	Heodo
2019-03-20	Secure_Email_file_90049288.doc	doc	104f0aa2d3eb6f771e37a72f9b37dfd17852757380347a11b1b8e0b10ed9ed09	18.64%	Heodo
2019-03-20	Secure_mes_38830475.doc	doc	f49c8b53816830395557fd755939d18e9f5015f38909c19458a107456faf741d	19.64%	Heodo
2019-03-20	Encrypted_message_92277457.doc	doc	21fc4c5b3226b16a6425deab348b0623a3b5855f8ee26d57b5c49b4c4376849d	19.64%	Heodo
2019-03-20	Encrypted_Email_file_03482836.doc	doc	aec3f11e1affd92b75fccdd44c94090b2371ef008734fb9e43e6bd9e14f3b508	18.97%	Heodo
2019-03-20	Secure_Email_file_2521847598.doc	doc	5e44d0ee1861ba545f4b87f6cd2d86bee3d1e004555d48772200a9e87cf9605e	17.54%	Heodo
2019-03-20	Enc_message_0201285529.doc	doc	53c37317ccc33e5ab883c4b115f3852e5f02b81f68e12b88e793b08cad3e62d8	17.54%	Heodo
2019-03-20	Encrypted_Email_file_473039957.doc	doc	bfe8c8766345bc2ced3613f7cb71c3729579a89609ccbd9ae84dfd4f2a80834b	17.86%	Heodo
2019-03-20	Encrypted_message_5265367878.doc	doc	241f66884cfb79000e8f536627d9fde8b8bb5b91e507c77ec5bb773cd6a67739	17.54%	Heodo
2019-03-20	Encrypted_message_6449822111.doc	doc	0f2597c1ba25a86558aade0e28440a55eaf86975b0587cbf50dcd4f004cdd1f4	16.39%	Heodo
2019-03-20	Encrypted_Email_file_53141670.doc	doc	1ea5b476b2a163bcd9bf5e46f495b519998526f2d8e440da9b2db62593418576	16.95%	Heodo
2019-03-20	Enc_message_826408080.doc	doc	101e55406127b0e69f0d9ad4c2ea9ec24345e1b77d082c310dedc47310d899cc	16.67%	Heodo
2019-03-20	Encrypted_message_733569894.doc	doc	0413eb4532ffe46484928070ed18ab03e9e86824a89f689116e0c60b9c0a25d1	n/a	Heodo
2019-03-20	Secure_Email_file_52111565.doc	doc	27eac8263da494186442a5009f0cc2f03771aee22ee51bf5bc34fb3e249fe287	n/a	Heodo
2019-03-20	Encrypted_message_297652323.doc	doc	d704fe637cfd1432da3a16d275a47ada7a3968439429f8fe622b0fb73bcd4a49	16.95%	Heodo
2019-03-20	Enc_message_5875293646.doc	doc	acbfe69d0d9abc1d2b22e22063d319f3c488555d4d4c0a26f1e079e0ca932b22	16.07%	Heodo
2019-03-20	Encrypted_message_2817824091.doc	doc	7598b4aabe799050152ba40abea524bbea8a1f645c2021feab502d1800ec2c7a	23.73%	Heodo
2019-03-20	Secure_Email_file_1284538126.doc	doc	710b159d015ac24a67d8382cebdd7017a85a0551cf3a7ef59018ca2026fd0632	16.36%	Heodo
2019-03-20	Encrypted_message_279285232.doc	doc	80231477db838180ff13cf115f74dfbcf5fca67ef08a5ad4953b2fda888d60b2	19.30%	Heodo
2019-03-20	Secure_mes_89535434.doc	doc	278d7d114eba36e947e1f0c1424c292c09f670764a4f8e9106ce2b1e18a72ae5	17.54%	Heodo
2019-03-20	Secure_mes_819232901.doc	doc	991455093c967cca467b7686082c6f1896431278afeca3523605cad01bbe3b1f	18.64%	Heodo
2019-03-20	Encrypted_message_18430822.doc	doc	f297d2c6c18fda341d76eb2b29596b809094eb97dda324073d3a84a34e09c322	19.64%	Heodo
2019-03-20	Secure_mes_7239780511.doc	doc	2765f39fd2d4a5b8b7e313cc0ffefd1845cfdcf5877a4a7058cd086b9459a750	n/a	Heodo
2019-03-20	Encrypted_Email_file_667838473.doc	doc	f15ff7fd16994b8be296a7f95a4e08c56941ab50e493afe7d768436c57181a9d	17.54%	Heodo
2019-03-20	Secure_Email_file_74174060.doc	doc	8b1b81ad486ead2b47b97c0aad2ec6158176c5dc1b17de9be3a2761480d8e041	17.54%	Heodo
2019-03-20	Encrypted_Email_file_6872142626.doc	doc	1a82bfb0d1f7ae4fa57161216bc83561321be8f34dd5d177e30a8dba389712b6	17.86%	Heodo
2019-03-20	Secure_mes_60261631.doc	doc	344a84db23a18b85946f6ea2fcf330e517e51d8983c8910ecf54b01c8dbd1a93	17.54%	Heodo
2019-03-20	Secure_mes_403533225.doc	doc	4a5bd65a180f3d40c4e48eefbcde4af76ae57c2fc6826a12605af7e36dc7968b	n/a	Heodo