URLhaus Database

You are currently viewing the URLhaus database entry for http://yucatan.ws/cgi-bin/KWqJD-P5k3EmDjiVp9Xu_hWeXxucxg-8f/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:183396
URL: http://yucatan.ws/cgi-bin/KWqJD-P5k3EmDjiVp9Xu_hWeXxucxg-8f/
URL Status:Offline
Host: yucatan.ws
Date added:2019-04-23 21:45:05 UTC
Last online:2019-05-21 05:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2019-04-23 21:46:04 UTC to noc{at}perfectip[dot]net)
Takedown time:27 days, 7 hours, 54 minutes Bad (down since 2019-05-21 05:41:00 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2019-04-25JT_492069_04262019.zipzip fc579a34c3acf48e1dd304a319a746b3588349adaf64e997ab0b12a07a985a63n/a 
2019-04-25ZR-9372391-04252019.zipzip c9f8a447ea669f0f9e3e56b84dd8a4e81fabb97e4278f002d9199d38dcb36547n/a 
2019-04-25XN_380315_04252019.zipzip a030afeecbf66f8570f68eac5bc89011535a798b9b11d94d59ffbc6b852a40a4n/a 
2019-04-25GJ_0042298_04252019.zipzip 00fdd6f066e2ee3479518178e3d80f29acbb44a442b8f00454a86cb3020ca00dn/a 
2019-04-25JJ_564903_04252019.zipzip 63bc32265a75b7a2c18d0b492fe1cd81dd0e6e71c4e6541dd6f3c63cec608c40n/a 
2019-04-25O_75241201_04252019.zipzip fb4b1d80d95af3067a8208c644b0035368c871000919072c8300458065616438n/a 
2019-04-25Q-6139912-04252019.zipzip 87e97eb394c3e6523f69624a6d3203058b28df134c919a2cbcee4dca6f72a009n/a 
2019-04-25M_0997375_04252019.zipzip efb954f01d09b2991e85ce0b462fcc426bbed144fb0c2ac3590cba39c90f2792n/a 
2019-04-25C_7996130_04252019.zipzip 5b68d2794d0a01e765085e95b97b18f8525401f1092a294c7e22528e6a02dc52n/a 
2019-04-25OA-876954958-04252019.zipzip 3209a8dbe17e5f81e78585e7678bbbd04747c7100d27426a6bbb22d7cd328fd5n/a 
2019-04-25ZB_625321_04252019.zipzip 7c711b25a57d4651efcb76e9c6954c92138ceb2a716f625ad3ea5b36e7143330n/a 
2019-04-25MG-457883482-04252019.zipzip b75f0a437439f846e597338df4d7831d248eb1173d9b0bcc546deafd0461be3en/a 
2019-04-25CA-87008492-04252019.zipzip 197c4fbde2d50b4776479458de6118631fa637bd0f8c8a91f3826b43ef291b50n/a 
2019-04-25Y-6892773-04252019.zipzip 17c68ea973a4f08b3840f985ad71d7dec1e9dfcb826cfa97eb5f6d50ecc9f260n/a 
2019-04-25S-509528860-04252019.zipzip c6d878764d9583739c502d118cd56f660d9273569ee176459ea384f0f8059d6en/a 
2019-04-25AZ_1245953_04252019.zipzip 646a32232da3c33db0b57a213ed541c140258848bf7ebdeacced31aa9c6a9b2cn/a 
2019-04-25I_412905_04252019.zipzip 0a2e4c5826f93640e1ec48dc026800f9e56dcff91f1713fabb9dbc675b0ece22n/a 
2019-04-25E_536047662_04252019.zipzip 24102cc1056e907a4a33940982c88e20f139e5079e542387559fd0bf11a6c3f9n/a 
2019-04-25H_88147266_04252019.zipzip 6a5af3698bdc40622b770e4bd9dd68813055d3db19c501180c3a349b61eaeb6fn/a 
2019-04-25Q-6492740-04252019.zipzip a3f56cb6d6eac4db7f15bcf9fe52d28a9d5436b25874d060374b430bb9bcaf85n/a 
2019-04-25P_106452224_04252019.zipzip 5304ded3e8343d5d1ec0920c448e5f3c62a8dec567524faf703469a4cc3eb802n/a 
2019-04-25EK_437914_04252019.zipzip 63b9de2761bacef79ac9e86dabc34c6dca90329dd4b9ce29dfd76f5bd3c6d069n/a 
2019-04-25H-154293703-04252019.zipzip 4828a996f428d28084bd19ef8c526586e79aa741fa33c1fa9ea5c4f6e25a4cbfn/a 
2019-04-25X-5529987-04252019.zipzip 600b4764b631a7a124fa4525c97d67acab9d607344f6c789de9889909728252bn/a 
2019-04-25I_96126292_04252019.zipzip e9761c2840b10ddc0bbfdc4804b9adee79dd274ffd956e0b97f5c93048807a8en/a 
2019-04-25F-5354296-04252019.zipzip 7c1b5262963866d7583f33e80c94d734270c918a419948f10f554d3207609059n/a 
2019-04-25O_2707947_04252019.zipzip cba47dcbbb5682b8f1b8ee19be1e33e0caf92cbc25663fc140d7d4316a3bc557n/a 
2019-04-25TK-255685420-04252019.zipzip ec256ab29f532ccf4345f8c22220634491ae55328df13742ff3a93a24ce117ffn/a 
2019-04-25WC-639524-04252019.zipzip bde0d02ae0e88a9b660b4704dcf3e709447370001f7e024e6631591ec9557034n/a 
2019-04-25V-943374-04252019.zipzip dc72ba2599297a02efd356645499608cc9cda27a72e92dc9502bd4e223c162f1n/a 
2019-04-25DQ-621259272-04252019.zipzip 0baa67d64ecee3c66cee009f8b8a18f3475ca902161f1c955d8bb4f38b33f1d4n/a 
2019-04-25JV_557247195_04252019.zipzip 454cb88b52f1fe38904b39b81deec346dda8b1916578fd27a92232d7eac6b782n/a 
2019-04-24UY-99557802-04252019.zipzip c7cc791571ceae32ed11fed7a98c9fff9aaaa409293d4dbda6ab38e1c9db5889n/a 
2019-04-24MO-61645578-04252019.zipzip 24a9c7d90b2073f653776e80d591f7502ade8c5724fc2c96b61084d6ebf25449n/a 
2019-04-24C-318992-04252019.zipzip 7d8294bc7e61361e87a9a061b79525b29e34735c5c647d98ba8a2d397d9ad638n/a 
2019-04-24IG_633453595_04252019.zipzip 1b77d0ade5ba44108c4076899ee21f05726992184971b51f268660626c802104n/a 
2019-04-24Z_6488009_04242019.zipzip 80bed2edd7f5f769c2fbd68f9f75914d2d1165a9d6207718978655123a54b769n/a 
2019-04-24W-48499431-04242019.zipzip 758b37ef87815f13cc1129fd5d03227ed39c06453d778b865cd1bf0ca2658c7cn/a 
2019-04-24D-8991068-04242019.zipzip fced0c24c4ebb099bcabafbc06ab74b699600b38152cf09534a4877cec54e320n/a 
2019-04-24IE_6084213_04242019.zipzip 5676ad53846680418cbb6b9af0bdfe430a0d1e7a226d633e26f87e83faee0445n/a 
2019-04-24PV-330308365-04242019.zipzip 162fb74df420208aa9fd663232cfd9a870e4aecf9a487e43599717a843b22d75n/a 
2019-04-24D-436737-04242019.zipzip 93ff2c306be7f19bab6630fa10ead5d7c2e4753dbd108cc7789bebffa3ac3bb9n/a 
2019-04-24C-909548-04242019.zipzip f23c6397bb3a052847d794fe604154675b6eff7fcc7a846a9d39e8c8d102e089n/a 
2019-04-24QY-239747530-04242019.zipzip 10d91f740e6f76cc6e57b4fb45d1ffbb1a510994da8e4b01e58050669ee2f1fdn/a 
2019-04-24N_65976479_04242019.zipzip 40f9c12fd2ff21119339c5399da7832485643b32148b93842abc42eccf2e56a6n/a 
2019-04-24JC_127590127_04242019.jsjs f9a3d8d2568059bff0da6d27fe8d474fa8dc1c0f97c24433f2fd9caed3594b0fn/a Heodo
2019-04-24N-919303-04242019.jsjs da2d68c98cb3e9214a1e0bb58fc5fcd77c1435e63282c0602f085f56f6aa3e29Virustotal results 10.71% Heodo
2019-04-24RX_9585150_04242019.docdoc 0450bfede94b319cea0c9c2f42fee0dd63677fc3b04491bf348bf14fd7df87abn/a Heodo
2019-04-24K_919579714_04242019.docdoc c89c4a93830f003dfc0192b8b45c334872b98ec57f081fcfed7976ca4fb344c1Virustotal results 24.56% Heodo
2019-04-24K_856685998_04242019.docdoc bfc6f5780109d9395f042d83bf54f5bd0b45a0f4a511181e0f0b7f65e6768442Virustotal results 24.56% 
2019-04-24I-41529453-04242019.docdoc 8f2002168bbdff63ed1e3e257d470ac5f3579a68a2412543f937cbe0e3e7d43eVirustotal results 24.14% 
2019-04-23I_28964735_04242019.jsjs 8870927b7fcb804322779608fabf59e1c019245df08aaaf5f9202d131e92efdaVirustotal results 10.71% Heodo