URLhaus Database

You are currently viewing the URLhaus database entry for http://capetowntandemparagliding.co.za/wp-includes/Text/dbNkL-RpxORW9jctygx5K_GPwzhYqG-zz/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:178772
URL: http://capetowntandemparagliding.co.za/wp-includes/Text/dbNkL-RpxORW9jctygx5K_GPwzhYqG-zz/
URL Status:Offline
Host: capetowntandemparagliding.co.za
Date added:2019-04-16 14:51:13 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL :Not listed
SURBL :Not listed
Quad9 :Not blocked
AdGuard :Not blocked
Reporter:@spamhaus
Abuse complaint sent (?): Yes (2019-04-16 14:52:05 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:11 months, 29 days, 11 hours, 19 minutes Bad (down since 2020-04-10 02:11:20 UTC)
Tags:emotet link heodo link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-04-18FILE_07704966520US_Apr_18_2019.zipzip 51f71097789f37904013cd1e6295f34e32e187e361575e9412ce4bcab9d7a5f1n/a
2019-04-18Scan_5611835907US_Apr_18_2019.zipzip a463bd1aee209ccfa64234d705c01bb377fe98b8a43531fe014e55f914fddb1cn/a
2019-04-18LLC_875819919729US_Apr_18_2019.zipzip f5d86059687f7e677e224daf126e3e49c784e0ae10da5888cadf6f471d147aa1n/a
2019-04-18INC_1762616122US_Apr_18_2019.zipzip 4838f989ebaa99e833f62633106ebc25684aa00bf42e6ac692023615c4062291n/a
2019-04-18Scan_548116690619US_Apr_18_2019.zipzip 333d1b8d9f39fb4b78fa3090ebdecbf2962b253d47f7db25bc9e134794879a5fn/a
2019-04-17Scan_8829832463US_Apr_18_2019.zipzip da1d3952f91fc7ab7dc5185a7c9af49b76632d5fc0f723874de77c0c5bacc986n/a
2019-04-17INC_97198765410US_Apr_17_2019.zipzip 0f76a7b4c1e2aaf7443dcf6ef694a8d6014c6dc89d77898c5ac4b547b50bf6e3n/a
2019-04-1730405323902_Apr_17_2019.docdoc 71da59481ca34680c6459f5947bd9e90fc7ecb570e040045c5d200bf313d5e12Virustotal results 22.03%Heodo
2019-04-17292391032914_Apr_17_2019.docdoc d2dee2a2478d2b039f9fc00f0d980f67a52f9ae8fe542e991d94f53a6f274473Virustotal results 22.41%Heodo
2019-04-17299913289985_Apr_17_2019.docdoc 566c79acc5b6aca21ec8ad0859b2f53a1f0d4a00e793b4e6cba5fdb53cb2bafaVirustotal results 22.41%
2019-04-179321979558_Apr_17_2019.docdoc dc80c7b6ddd24d941654891dfc10cfac301241ee4fc1fa452edba96cd3729045n/aHeodo
2019-04-1710253806112_Apr_17_2019.zipzip 9a7534bde8c599c2da178aeb75beae7e361120d2b29a3d35183560d0dbc1a270n/a
2019-04-172773964227_Apr_17_2019.zipzip b00c8fdb1d3c270173b56f3ca0ea0d53004755e207efd30c46b66c500d7365dan/a
2019-04-17261036783678_Apr_17_2019.zipzip 438fe6536460dead6df8c0acda0c174bd753f0cde0e4dd1a03944032f1ac9506n/a
2019-04-175775379761_Apr_17_2019.zipzip 2a23ebb331fe086305b985b809bd046832c897bc8175d706b9c181ad007cea41n/a
2019-04-1729939987678_Apr_17_2019.zipzip 8f771382f04a42b75d4c8911a4d2444fab03b14ba19d5a2f88031ff156cc5b32n/a
2019-04-171313213480_Apr_17_2019.zipzip 614a7c5bc45774fe7f43ddeb90cecfeb8517cdf4094c8b74dbb357d66f1da327n/a
2019-04-1743907846854_Apr_17_2019.zipzip 1eb311c85ee98b6d42c5806812cc787b8e02a3e4d886a70f67e1482fc1f0494dn/a
2019-04-171890886000_Apr_17_2019.zipzip b415937d3a5b3692b927fcea462abe9715d8606b0db9c5f45d75594c4fb41b8dn/a
2019-04-174237066135_Apr_17_2019.zipzip b74d7678e87a20f8163aebef094e330325183101a5762c66dfc07d9d8d123db0n/a
2019-04-1705081541447_Apr_17_2019.zipzip fdadcd6c3203c161c3f2c1a95a0a3804e31befaaf6862782f1a179c80c22bc0bn/a
2019-04-170809344248_Apr_17_2019.zipzip 76a0c3c4f52fa45f484ad34f7d5e8a4a4dbebfd2326c77a3aea6a9f0e8cf4ff8n/a
2019-04-17062154760835_Apr_17_2019.zipzip 886bed1bb2aab2d292c69e8aebac460c7dcd21cc5b3692bf25181f9807aaf4c5n/a
2019-04-178073819703_Apr_17_2019.zipzip 380ff2cfae6990f86e80ccf72b1611b074dc2cc818eae1737ff51722c855ee80n/a
2019-04-170683677564_Apr_17_2019.zipzip 3cc40dd34e2c94e232b2e6c7a7ed09bed0a1ac136e22e844af641b608236d838n/a
2019-04-171870168755_Apr_17_2019.zipzip 4b6aa22681208684a42e80edfa82b6bdb53c2faff4bab660b67e07232cde187fn/a
2019-04-17705973393321_Apr_17_2019.zipzip 21d8f8f1092faf611974e9d6d6af4f9a0dfd4a28c488825155f4a729f2db26b1n/a
2019-04-179673844014_Apr_17_2019.zipzip e47e2866fde244de249827e5c08e8bf47d502e7d2dc7f337326d51bc8ebf308cn/a
2019-04-17099927267994_Apr_17_2019.zipzip d2e9ce8f84953de8e2ca3dbb60cbaef1cc1020cc9f348edcab526c67ae2be620n/a
2019-04-1676445312300_Apr_17_2019.zipzip 42b8a55acb123c2d5d97644c49401d0fffa36bbbdb5808a6f228526fbff48226n/a
2019-04-16254700931893_Apr_17_2019.docdoc d335a1d0c38e751f9376bbe88c7b18ab19c9459773a6951740a6782676e3834cVirustotal results 26.32%Heodo
2019-04-1656516699430_Apr_17_2019.docdoc c13a1a14d4d6242dc109cb12a22fbe8c7ae413124a4565680914442991654418Virustotal results 26.67%Heodo
2019-04-16925370353912_Apr_17_2019.docdoc da113158c502b1128ea80c1a110708a22c510dc5dcc88939b20d87c2994f5c5dVirustotal results 25.86%Heodo
2019-04-1633137935711_Apr_16_2019.docdoc 4ced4812b1f40486c72355b6a48ae537e3c84e2d6f5554650b37a868f0de3dcaVirustotal results 33.33%Heodo
2019-04-16766089618186_Apr_16_2019.docdoc 8eba23049d725aabd84b63f8cd4b079c78f26cde6f7bb8be1d2477df0c0d5127Virustotal results 32.76%Heodo
2019-04-165294756531_Apr_16_2019.docdoc 141e277b2165595334f404edd83397057b2a4ef8a52eb8edba79203f0aba44d9Virustotal results 30.51%Heodo
2019-04-1639730760857_Apr_16_2019.docdoc fa660e7b9ff937c7e5c479dc9cde90110956fb283453d09e1dfde4853b96296bVirustotal results 30.51%Heodo
2019-04-167047885333_Apr_16_2019.docdoc 3a4b689a95d70548cd86ea5280a5ca10220d49290818cf48f5130858ff399b85Virustotal results 30.00%Heodo
2019-04-1682408064876_Apr_16_2019.docdoc 86b8c8e286abf67f9d24c299751c3030fe5c9b78decf4e45b7bfa3e33bd47530Virustotal results 31.67%Heodo
2019-04-16017061768155_Apr_16_2019.docdoc ebbd8471022a4d525eb5bd3537e6a1688980bcd861300807f5c4a14ec7ea777fVirustotal results 30.51%Heodo