URLhaus Database

You are currently viewing the URLhaus database entry for http://esquso.com/wp-includes/tehz-x483bi-txszn/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	173227
URL:	http://esquso.com/wp-includes/tehz-x483bi-txszn/
URL Status:	Offline
Host:	esquso.com
Date added:	2019-04-08 14:32:11 UTC
Last online:	2019-04-10 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2019-04-08 14:34:03 UTC to abuse{at}Qwords[dot]com)
Takedown time:	2 days, 9 hours, 3 minutes (down since 2019-04-10 23:37:14 UTC)
Tags:	emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-04-09	8557272096_April_09_2019.doc	doc	67604add8f43d1315fd9ab49e387b21e17cc715c616fa55ecd566d6bafef50b4	20.69%	Heodo
2019-04-09	95508025560_April_09_2019.doc	doc	3da52dd23993fc264f952f202c0170201cc1031ac66ef2cbddc866cbf5779f07	24.14%	Heodo
2019-04-09	8256875306_April_09_2019.zip	zip	6fee3eb9726a44cd2db8456ac72db4b9f23ab73eec9e6037ffeda4a008bc7f09	n/a
2019-04-09	3320277481_April_09_2019.zip	zip	6fc76dbcd328b9661f519eb944e7737709e8af9b66a23498cf89e2804af03484	n/a
2019-04-09	96136638095_April_09_2019.zip	zip	507b934677e8b507fe98be2f0fd4f05b3881eaa059130eaac50c50142fd20f17	n/a
2019-04-09	3700538176_April_09_2019.zip	zip	2c0c8e6b90da387b341249d93ccce30fae69a06dfb931db0442e2b5af1c47249	n/a
2019-04-09	38447030276_April_09_2019.zip	zip	1b933fc3328b7e28d610de8b20be4e71a5cfa9cc7cf73096761acf216122b36e	n/a
2019-04-09	2568991927_April_09_2019.zip	zip	30db14bdbee7c6c8519267a6973ce78b242f717e11159ce587af7502e51f8c80	n/a
2019-04-09	9973419547_April_09_2019.zip	zip	df43b467e20ae637666a6b74a5b9c0470b5d4ccaf7bdebc1bb5869c07448f12a	n/a
2019-04-09	594706205026_April_09_2019.zip	zip	d2d08b872485895ecfc821c02f7a343ae0a7db9c6550ab2a7069202010172581	18.97%
2019-04-09	04157620003_April_09_2019.zip	zip	6dca20e4befab14ec845ae34084d5798bc0837b8e0352ff6ed78c5a388770dba	n/a
2019-04-09	42181162745_April_09_2019.zip	zip	98c8b400ded6b09fbbac745ba8ca8604fc1a72261674cc705f8c1c65d7dc483d	n/a
2019-04-09	175899783606_April_09_2019.zip	zip	842da1918817c738870bf7e7c518f21f1d5ec518ab22375eb60757db5408952d	n/a
2019-04-09	1396717530_April_09_2019.zip	zip	cb944039e00b9a759fdae033e359558ea61927f5274314343d11ef9b2fe7974b	n/a
2019-04-09	82613105830_April_09_2019.zip	zip	478559698bada941d5b3d861818d8f3823eae0e832e230563ccb44294af71cf3	n/a
2019-04-09	0630220865_April_09_2019.zip	zip	949fa8d8cebe8caa9e576dd80f7875e1be042fc581a45959b96a1c50089c058c	19.30%
2019-04-09	2323001960_April_09_2019.zip	zip	6ccb08d169795e9e1a3308382b6f294e48746ed96fb18dba986a3c86e9975524	18.33%
2019-04-09	76620431170_April_09_2019.zip	zip	17202c5b3ca938ff6662bbd34f01e727d8eb4e15395947efae71b127c529adea	n/a
2019-04-09	50768459468_April_09_2019.zip	zip	1e8df35b451e937c915ab96e8c9022a9774b01ff3d1a8d532e3ee1d149e0ef2a	n/a
2019-04-09	0680218493_April_09_2019.zip	zip	982c713d71c25a80ee8a2e8f34b6efc2a3e10835e1c0ce343ba0340ed963b983	n/a
2019-04-09	349426136762_April_09_2019.zip	zip	ddf65b89e130eba82d058b94d9e342db53125dd9e3723233d726185c1accf17b	n/a
2019-04-08	48397348209_April_09_2019.zip	zip	0208406ee6eb932c9c83fe797200428ce366d085584d399c579372b258fc4ce3	n/a
2019-04-08	405558950018_April_09_2019.doc	doc	cd43768b83ffb7cbce14445f010840f50f3d4e22c34ff4e1627cc4afab27e02f	n/a	Heodo
2019-04-08	038672908459_April_09_2019.doc	doc	cc57df17d4d1f28b75446657d1a81de72a77aad349b88be506a472256e9f691c	n/a	Heodo
2019-04-08	466194365292_April_09_2019.doc	doc	a62781cc00a9c9339c0d8eba8d3a3a10917b618aa144c8d3632433be8fdc0d4c	42.11%	Heodo
2019-04-08	022424112283_April_09_2019.doc	doc	3aeae6ac1cf4bf92776686d5b6c1516dcf517e2067ff061b6404bfdb02add620	n/a	Heodo
2019-04-08	731162274491_April_09_2019.doc	doc	8f6e3bd0ef1e970e2881184b0806c316cab3760e7886e571acdad3561cf92b3d	n/a	Heodo
2019-04-08	81860038354_April_08_2019.doc	doc	b907cdd4842dedaf89e396e9b165efc29adf923478cbf3eb14f625c467b60037	n/a	Heodo
2019-04-08	51702551950_April_08_2019.doc	doc	b37fd924355745f95cc55658a60c574b03bf49739308546517ffbad69183d39b	31.15%	Heodo
2019-04-08	292886644589_April_08_2019.doc	doc	68cc5c8e494a645b09fc0d1f9e2e9be8c2e63f982558fcde33f36231341096d9	31.03%	Heodo
2019-04-08	39918556807_April_08_2019.doc	doc	c9285e67f8b87ff3db279a20f92a1ed9f91d641e68e0911945f9bf43e61d79e7	n/a	Heodo
2019-04-08	369804511512_April_08_2019.doc	doc	9db635861300c2dd9bfdefdb4f26f8728af2d88a1d87353212543b89ba5cfcf4	n/a	Heodo
2019-04-08	793993550302_April_08_2019.doc	doc	4909209dd42e12410e910340d26964d0802161b863fd197b6d633ea17c6d9275	26.67%	Heodo
2019-04-08	9209144535_April_08_2019.doc	doc	f813a1ee040b469f0d251d37d4cb8a0bd6eecf09a40a261fcd4b2663e61e5e8d	24.56%	Heodo
2019-04-08	88875046515_April_08_2019.doc	doc	fbb527b6de3677628708e6fdae9059b285c03bbc723cfbd1c4762e0cb9625ce2	n/a	Heodo
2019-04-08	3767169308_April_08_2019.doc	doc	2414393e2cbae86400461e94121a574e2b7ae843891d455abff957d80821b71a	n/a	Heodo
2019-04-08	6181878801_April_08_2019.doc	doc	729e592899ee19847371661a5b38e8a84bcc7739bb4412e30c07d7595d3f354e	22.81%	Heodo
2019-04-08	604949548875_April_08_2019.doc	doc	3e585f2cf98d44e2f6520f607b2061bc5fbc4638fd43ea711520f9dda38787dd	n/a	Heodo
2019-04-08	87796170396_April_08_2019.doc	doc	63630b3d8dda6b6b36465c45ad614fa509feee4dfd123e5216b2ce8d43f9ba50	23.73%	Heodo
2019-04-08	85869667699_April_08_2019.doc	doc	c00b3f3bf9d3fbae9eaf7aef8bc2ca4e35d431c450c92ef5b6ee0e45b29d567c	n/a	Heodo