URLhaus Database

You are currently viewing the URLhaus database entry for http://zefat.nl/stamboom/k6is5tq-hh1gkpj-lqknndi/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:178280
URL: http://zefat.nl/stamboom/k6is5tq-hh1gkpj-lqknndi/
URL Status:Offline
Host: zefat.nl
Date added:2019-04-16 03:38:08 UTC
Last online:2019-04-17 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2019-04-16 03:40:05 UTC to abuse{at}keurigonline[dot]nl)
Takedown time:1 day, 4 hours, 25 minutes Poor (down since 2019-04-17 08:05:33 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2019-04-178352351518_DE_April_17_2019.zipzip a3797fc967e95ed388bbbc6d504f62915d5bd6968c6f0a567b95e00926a7ea12n/a 
2019-04-177828733586_DE_April_17_2019.zipzip 4b9e7e3b9144e2b1bfbd2cbd32fec513b4b563031a30b9d6551a6967736dd08dn/a 
2019-04-179456994635_DE_April_17_2019.zipzip 1048c415f13c475ce38856db43e320e0bf49ebda938e490285926828366920f8n/a 
2019-04-173660845872_DE_April_17_2019.zipzip 0b8127e7c971cafa5b7e2e30613d2e95a0864baf61440d3cf0ba0eee2d754d0an/a 
2019-04-174562927967_DE_April_17_2019.zipzip f463ac69ccaeb41e7aa2afff3df795f5116c3003dd19d60777d38ba16dcfce4en/a 
2019-04-1747614328709_DE_April_17_2019.zipzip 32767d5516be88b1cbb1db75312e03474e6403aac7849463d391540ff524da15n/a 
2019-04-17882620622905_DE_April_17_2019.zipzip 7fedb1c2f15aa6cc012e6a25de8563e0fcf0fb71f2db5e81cebea4722cf10fb6n/a 
2019-04-1735504541064_DE_April_17_2019.zipzip cf39c45183f3f003787bee5500a2a9272f815677e5caf7bb4979274956ff6479n/a 
2019-04-17470228773320_DE_April_17_2019.zipzip a824e5bc86e02efe1e90a53027d6468b7ce50efc9202382bd51c20097e70a2b2n/a 
2019-04-173888557217_DE_April_17_2019.zipzip 921e811e519f870eae6e5a61ef7e7ff7684e46501c256a3c54fd34101d7125a5n/a 
2019-04-1777866405270_DE_April_17_2019.zipzip 779e0fb01ea58ddbcd5b3b5cc7a17210b4b7f12db6333fe9e56ddb4ee2d21ad6n/a 
2019-04-1680991786132_DE_April_17_2019.zipzip 7dde917ee4183d40d7dc0a4f45365c47dc742e3feffb279ca89fdf19b023caf2n/a 
2019-04-163002188442_DE_April_17_2019.docdoc 3828b5d43c9a954b999a9aec7777e8a36b97d8a00de5ac023fbcd09b210cb543Virustotal results 25.42% Heodo
2019-04-165071134190_DE_April_17_2019.docdoc f4057cf66759a43716d9fa6733db73448df6fc66303df5616dcce6496b83b167Virustotal results 25.42% Heodo
2019-04-16716335292523_DE_April_17_2019.docdoc 4b1ccb75644b61d0f3c1df18a238066171bf3f3b8ffbdce21a963a032676bb61Virustotal results 24.14% Heodo
2019-04-16172203167239_DE_April_16_2019.docdoc 3824b2db3b14d88a11d155d0894a6af22bedb3bc12a029f9563344208354aff6Virustotal results 35.09% Heodo
2019-04-16251479212915_DE_April_16_2019.docdoc 8eba23049d725aabd84b63f8cd4b079c78f26cde6f7bb8be1d2477df0c0d5127Virustotal results 32.76% Heodo
2019-04-168981034996_DE_April_16_2019.docdoc 141e277b2165595334f404edd83397057b2a4ef8a52eb8edba79203f0aba44d9Virustotal results 30.51% Heodo
2019-04-16136569474403_DE_April_16_2019.docdoc 33eb8eed7c8660a54e9b99e8b8719fa1a83484d5ba41805f1767cd8605d28fa4Virustotal results 31.03% Heodo
2019-04-1689308300598_DE_April_16_2019.docdoc 033fa72fe48a853b99e41ed7467c1ccc488d5abe69dff887b8a6b7b2c5a5452fVirustotal results 31.03% Heodo
2019-04-16913638116113_DE_April_16_2019.docdoc 7fae139edf9512b5788f271e05878e6d556721b4eddd8f556096824c3b9bec69Virustotal results 31.03% Heodo
2019-04-1698739677685_DE_April_16_2019.docdoc 7147bcbc0854554068d051c589da76772d019dd8f1d56ee17b6ef90ba54c2706Virustotal results 31.58% Heodo
2019-04-16724949737648_DE_April_16_2019.docdoc 020ed32f0c3de6a24817e3326fe676c4e07896c71f9474db5b9948847d8e2873Virustotal results 31.67% Heodo
2019-04-16410495070848_DE_April_16_2019.docdoc ebbd8471022a4d525eb5bd3537e6a1688980bcd861300807f5c4a14ec7ea777fVirustotal results 30.51% Heodo
2019-04-16093322761796_DE_April_16_2019.docdoc cd9387ca69fa3aa30380f5e513313980b26805181f235dea5596a7d9b6c21c41n/a Heodo
2019-04-1652142257609_DE_April_16_2019.docdoc 6280cad89edea53c8bd3f428396c3a736f6d67e6f8279026effbbc8f27c35035Virustotal results 26.32% Heodo
2019-04-16473805659044_DE_April_16_2019.docdoc 48c513176b0c56e199f567a5fc4309950fc2a2c9f09365dfa7d879c94d57be8bVirustotal results 28.81% Heodo
2019-04-167219844195_DE_April_16_2019.docdoc eaebef573b834cac77673e625c36f4e363a94a294e37a18e68547a3b19308fdbVirustotal results 27.12% Heodo
2019-04-1659240459427_DE_April_16_2019.docdoc 4b0b5308fb38ecdeabe8a66f90d7aff89421a50542242631785e34c790b7ecd3n/a Heodo
2019-04-169544802575_DE_April_16_2019.docdoc c40f3f595365f71600c24ebe5c2fd245bb7584364c4b2f3f294e1dfe675891bcVirustotal results 27.59% Heodo
2019-04-166328596774_DE_April_16_2019.docdoc e0bf4c6aeb567130478fd998b9bb45ca8ce6d76520107e2088d4c6cdcbff90c8Virustotal results 28.33% Heodo
2019-04-1662194848222_DE_April_16_2019.docdoc 1073385d94089c725063ce1a488c157293e6aa8cd6574597042ad5d5f9f6004cn/a Heodo
2019-04-1687400301200_DE_April_16_2019.docdoc a98f3b7c60b12dd81f190b67c0b42dfc7ab23d10a4ef3cdceb43625dd9ff6133n/a Heodo
2019-04-166235321589_DE_April_16_2019.jsjs e328f1a48cce3e9220c38d847ccea9f81b6135d120bd76b224c4be21405f700eVirustotal results 9.26% Heodo