URLhaus Database

You are currently viewing the URLhaus database entry for http://hagebakken.no/loggers/z94f1x0-2669du4-cyxvi/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:174942
URL: http://hagebakken.no/loggers/z94f1x0-2669du4-cyxvi/
URL Status:Offline
Host: hagebakken.no
Date added:2019-04-10 16:36:39 UTC
Last online:2019-06-28 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2019-04-10 16:38:21 UTC to abuse{at}xcore[dot]no)
Takedown time:2 months, 18 days, 23 hours, 21 minutes Bad (down since 2019-06-28 16:00:12 UTC)
Tags:emotet link heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2019-06-17970656156292_April_12_2019.docdoc 5507670e6929864005be7c5f8eadfc28517e6821d055241203549fa4e5b6aa74n/a 
2019-06-10970656156292_April_12_2019.docdoc a497b9698bf69fca7af334b67b24c38bae2af26e295b3240743ac278f703cc35n/a 
2019-06-09970656156292_April_12_2019.docdoc 150c96a17af2032358795d00415cac15938f1cd91417cfde82c0641c9737cf76n/a 
2019-06-04970656156292_April_12_2019.docdoc 644d094b99b2028ef54030469466f20cc848f78810b013a07bd97e9bead7a65en/a 
2019-06-01970656156292_April_12_2019.docdoc 50514dd8100a0a8a825be312a63a3ed28f4d4e950fa9636d382dfe27c5212168n/a Heodo
2019-05-31970656156292_April_12_2019.docdoc 1a17a1e2ffd154798b30ffd78209c50a78e485a1e262ce5eb67ee165e7f79c82n/a 
2019-05-18970656156292_April_12_2019.docdoc a9483316be5b1b920796dc72d0bbb82b9f4e0456cc6f80c9904d8be067630cdan/a 
2019-05-15970656156292_April_12_2019.docdoc 57b11d8c586b57103c107783af997a37d653cf7e66b39453e100f8d19fb57ebcn/a 
2019-05-14970656156292_April_12_2019.docdoc cf4882e4cce78ba00c93819803486f19671a8739bfbbad6906908f21864924aan/a 
2019-05-12970656156292_April_12_2019.docdoc 078c6b349745c87701ea5970b9170a51a4d60b16f75a02e02cd134673cc6aecan/a 
2019-05-10970656156292_April_12_2019.docdoc c94c21cb4505724e2fc9c5928dfa24ea28c854bca43586190ff873b6500ac1efn/a 
2019-05-09970656156292_April_12_2019.docdoc 3cd02a160906530b1446560fc5b4bfb318833c3fc1f3967521d3ee44313c1be8n/a 
2019-05-06970656156292_April_12_2019.docdoc d37d7a3d214429726ca9e91f9f292e661a465f2f3448d143b128c528a3e00095n/a 
2019-05-01970656156292_April_12_2019.docdoc b5a09e718d9d80e2204c6851546aff79e5b8b11a54728acc8fa7f845361e26b3n/a 
2019-04-21970656156292_April_12_2019.docdoc 3a32c79bbc272fcf4058c2ae756342643881ed9d29d2c997f03e6550109d35adn/a 
2019-04-20970656156292_April_12_2019.docdoc d52d8a634fc91d20a456ff725d57638250f8aef2ed787b0711b805853d79a0bfn/a 
2019-04-16970656156292_April_12_2019.docdoc 1c35d74eb64a607907179cc4631953ae20cea8b6c48296c2c56cf3454411cd02n/a 
2019-04-12970656156292_April_12_2019.docdoc 661f7d9aea272c78f3b9ce42bcafe6062e48e5ff803b1dfd9c11b3c8053b2ea6Virustotal results 25.86% Heodo
2019-04-12926730719727_April_12_2019.docdoc c044c14704d735fd213d7625c6376c0b1c5d9d30e43ebffbd678a890451d517bVirustotal results 24.56% Heodo
2019-04-12250373685287_April_12_2019.docdoc d19dd9c5a067773621a5f7843f74300f9a394d28917fa03e76a09589a0ef7d16n/a Heodo
2019-04-123345609518_April_12_2019.docdoc 04a0e4e5809e9acffde247f6f388f9da11ec5bc45d8a07af8be6945c32012748Virustotal results 24.56% Heodo
2019-04-126779141830_April_12_2019.docdoc 3a53c181f048576cf06a35eddd7251061fa49998cf983b4e30c51bab76dcae97n/a Heodo
2019-04-120970310532_April_12_2019.jsjs b00bc1bf0b325778d00fd472f8c3c31a54b9f59a42f899dc947aecae16481b68n/a 
2019-04-1200405791123_April_12_2019.jsjs cba36be5ff018337b9d22336a603525ebaa7d95f5be2aed56297afc8f5698874n/a 
2019-04-12929153478405_April_12_2019.jsjs 1f18a298cc1cdd9527f5345e3ac6438cadffdbf62a1f2a4dc69a22a626980c41Virustotal results 6.90% Heodo
2019-04-1034048525270_April_10_2019.jsjs 26b5d6c8934dbf593f2cc541bacac6e7812d71ddec256eb7bb4e9dd61b9c13b4n/aHeodo