URLhaus Database

You are currently viewing the URLhaus database entry for http://ask6.awt.com.pk/wordpress/wp-content/oRgU3wKWqq1xNWO1RYo6k9H/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1850614
URL:	http://ask6.awt.com.pk/wordpress/wp-content/oRgU3wKWqq1xNWO1RYo6k9H/
URL Status:	Offline
Host:	ask6.awt.com.pk
Date added:	2021-12-04 04:06:08 UTC
Last online:	2021-12-04 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2021-12-04 04:07:23 UTC to abuse{at}nayatel[dot]com)
Takedown time:	18 hours, 32 minutes (down since 2021-12-04 22:39:53 UTC)
Tags:	doc emotet epoch4 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-12-04	ZT2GXNXL.xlsm	xlsm	41814ffebd396b740dca06e8e91c36a2119829be2bb97bf9afade3432aaec7b2	n/a	Heodo
2021-12-04	4UCI5MMPSWCGJ7D.xlsm	xlsm	3c785175e1471f4af4e5d4bd4312c7faf4032aa29bb7eb7875d17a5cf5d608d0	n/a	Heodo
2021-12-04	O5EYW86NSR8Z5.xlsm	xlsm	317bd44b3905ce97c648c728f06c8d8b57bd265c39bc97a5ca61aecc12952b92	n/a	Heodo
2021-12-04	H2FZKKP.xlsm	xlsm	586dc51819282ea550de13d6c8334a6f5c88685a6a4ec97f396686512dc2d92d	n/a	Heodo
2021-12-04	XS2MFB1CILNI.xlsm	xlsm	52c5eb425b749b970ca3a8ed72ad859791dd1ef48d02128682d3a7d94728bf20	n/a	Heodo
2021-12-04	0AINN1C.xlsm	xlsm	459f9e401d040a233f805db5ae53f477b23e8a2e1875bd43294baadb72837e49	n/a	Heodo
2021-12-04	HSQORSTV6E8.xlsm	xlsm	ef779a646e1ef3fa6a4b1ecb645656a42cafbc4c449d6b38f5a759ef926c925e	n/a	Heodo
2021-12-04	YXP7LL9JMYKZJND3.xlsm	xlsm	03a92dedf411f09dde7fa1558b455fb1c8c19b32e221a6c06a8b26a81670e2bb	n/a	Heodo
2021-12-04	WP5RH0USSIY8H7.xlsm	xlsm	6f7305b8bb4dcc7bc16c2ddb743d507a26f81a41e090fc5e4e365a70a27412c4	n/a	Heodo
2021-12-04	36UOOIT3IJDV.xlsm	xlsm	3f0809e7f328e5c63cf5261a262da71ae1fbaf3d282bd3290e7a7df12589806e	n/a	Heodo
2021-12-04	4PFY3WE880E.xlsm	xlsm	caff998cb1c01034f139c2b57f6e69c7b0c8338d2b25d2722a85ec807e20b248	n/a	Heodo
2021-12-04	UKBGFZHSLW.xlsm	xlsm	493946cbdd63564ec16595af96ccad696123c5cd08d23dc5da3721b28feafd3e	n/a	Heodo
2021-12-04	1D02LCCPX4KMLKL.xlsm	xlsm	c6adfdbdf2da03f15ee5418ab51eaf3ad735adcd04bb6b214c14de07d5a9820a	n/a	Heodo
2021-12-04	P5BBBHKT56.xlsm	xlsm	13b03f9e729128abaff6da9f539fcbd19eea45e20b8781f69e88f5fc8de032e9	n/a	Heodo
2021-12-04	HNAPO27K437DW6JD.xlsm	xlsm	57e7b9e9e0649b39613558375db1ea28c08319461d2ec830a4f2797101a34dcd	n/a	Heodo
2021-12-04	8INFK7VEOFA.xlsm	xlsm	41d1177a2369aee3c07a3ffa0001dc60b4f69219f94970e4b4ab09c6c05572ef	26.23%	Heodo
2021-12-04	P7SVSPUUIAHS3.xlsm	xlsm	f623d3abffc341c87700595fbea396420f28ff0ca78607fbedb7ce6ae73e0144	n/a	Heodo
2021-12-04	POQVM0XQ12.xlsm	xlsm	5026a36a909e0d52e93756a205479014bdbc3542288af6a1a67b82c3bab87e65	27.59%	Heodo
2021-12-04	9FG0GG9GICXMRY.xlsm	xlsm	1182685d4a0c9713ed4135c1f5064d2cd63a7b02f42b822c9ad6208a198be3e9	n/a	Heodo
2021-12-04	1MIN2A89DVE.xlsm	xlsm	51ade39bcde138bbf62c3ac3628beab24ee98cf99a240c4f4681d182fcd7503c	n/a	Heodo
2021-12-04	VZ83E0KFHG39.xlsm	xlsm	a7a6063f4fee35bf4b45683013032a1e8b9e2289612ec914d497a3ac0592652e	n/a	Heodo
2021-12-04	1EVJPMMA2.xlsm	xlsm	4d97080c59d554255f5f5ef49ce08d7648fb484c72b27ce22c4fc89291d5e393	n/a	Heodo
2021-12-04	GJ37RF95TA.xlsm	xlsm	8c7528c317ca1109f224f1022a3f0fa4be93150ec3545083128b7e513a60ff5e	n/a	Heodo
2021-12-04	WL3PITVVIMC61H.xlsm	xlsm	9375aa8f89ae69e8fd679c6d267da7177ddb6ce2c43c00ccd2a0b059937b5b99	n/a	Heodo
2021-12-04	8W3GCUAT.xlsm	xlsm	4c433b048bd8c8f7caa63296d294bce674eafc917d54cf58e7901f00d39506e7	n/a	Heodo
2021-12-04	PG3K9F7MQWB8VUN.xlsm	xlsm	20e5d5a3b838ac6fd0a8c0b96ce252aa5e9ee94c7a17f8114974caa792a66e53	n/a	Heodo
2021-12-04	JOXH5P8NSPWY.xlsm	xlsm	4e954f2f70144153b842eb7cc68ec16e61d9a047c87c0580803a859a074440f2	n/a	Heodo
2021-12-04	FF6VTD2L3CQ3TD.xlsm	xlsm	2d3fc2a151c8cf3230ebbf202fcc5210e14bebd19b918cc44012ac4c5c9c1ec7	26.67%	Heodo
2021-12-04	ZXQL1YC2TJ3R.xlsm	xlsm	a9e904283e1c3280a9c94df7de9526d45406f043bab61cfa89955ab26c9002e7	n/a	Heodo
2021-12-04	8QEHXSS0J3OODIAS.xlsm	xlsm	ee70a9dfbea6bcd62a89831b51e91d1efc82e55cfb87216945f4260053c691b2	n/a	Heodo
2021-12-04	EXTF11EP6.xlsm	xlsm	4655b38eabeb0cf3dbfb6f333381ec452cbd5f8d8b6fc1309a5facfcec60e458	n/a	Heodo
2021-12-04	6E4JSH25D5IGR1C4.xlsm	xlsm	172e8a78726d8b62b7f8ca77e024e55f3df1fafeb21ddb22a804df109e477f84	n/a	Heodo
2021-12-04	FQXT4R8JM.xlsm	xlsm	39575879cef671f75b0dff64ff1b7637153006aec9b5d8b474d8156ec7136cec	31.67%	Heodo
2021-12-04	D08ECOZVF6K8BXUI.xlsm	xlsm	1a42644608f98d5d74478e0021460a016a3a0162071d6c6a15bcb3cea0bcda85	n/a	Heodo
2021-12-04	83DVXQQU458U3.xlsm	xlsm	4bfe5d7fbebe3855b2c12f5ebd95284ac3718b7bb3186a6c175443b1a8172c2c	n/a	Heodo
2021-12-04	C3LMKLD5BKA.xlsm	xlsm	836ecd93e4aeb5ecb8980e715a69a798cb4797e81ea9782e4f3963a39a081c88	27.42%	Heodo
2021-12-04	V42XTW7T1.xlsm	xlsm	0b326199fcfff5c386678dacc4a527c7c84b80727886d983225152ae395b9d53	n/a	Heodo
2021-12-04	YCDIMDV24H.xlsm	xlsm	ac56b054b71a4e28040c32a0d2726120aed5754c6d4f09910b2120a0c1249fa8	n/a	Heodo
2021-12-04	CWGCWM2QN1FKERJN.xlsm	xlsm	2c2e95a77a86b511c38448c53b4bf034d2b4dad5b112e7519adc44ebca05ee98	n/a	Heodo
2021-12-04	VJMT580.xlsm	xlsm	b937b455457a962bc41c56f413580010f41dea635b7cda9269e7871c9eb5ffe2	n/a	Heodo
2021-12-04	RL7093701QJ5.xlsm	xlsm	fc5a8a70db42e217d97c51399bf0c0091118097860ba599a5b6f2aa22978e52e	25.81%	Heodo
2021-12-04	1RB3GJU8FT81ERE.xlsm	xlsm	e6a05dbc614aa16b8f8a09de2414a8179485d09914672393e74ca1af21229243	n/a	Heodo
2021-12-04	E2WTIH34.xlsm	xlsm	578ece55282eb8f61aa9d634c5aa7fee1c72d820c7d5fb097421a2e4c2d571bf	26.23%	Heodo
2021-12-04	LD9OHWFRO.xlsm	xlsm	9dc8af2d8c4b3ac3236bf6854526079d258f981fd720152a6a71de7158aca5f9	26.23%	Heodo
2021-12-04	5V19EXPBMJGHLGOW.xlsm	xlsm	1229b20e14b3be50b3afa03740a4b12918e1a61fa0ffbd57b6e265a7a13e2a04	n/a	Heodo
2021-12-04	J6K1CFCHH4TNBQSA.xlsm	xlsm	6f3d916042f12df984ddfa7652fc98e1238959c72b6f1c128834a39cbc2920d4	n/a	Heodo
2021-12-04	GCSPM6MH.xlsm	xlsm	72cafc4ea1b98930461ff6a0ace0557ef6c1ef62eb7753105d5d76154cf39084	22.95%	Heodo
2021-12-04	55KGQKRNEO6U.xlsm	xlsm	58d24310e03ca087b71f52861b4e8bd89790b2b0d8ec2722176dfeccba7d8f4b	n/a	Heodo
2021-12-04	TV558HN.xlsm	xlsm	73bc79dc01e3733c7a9214932ad508926f25731200ddac23fc278525afa4b471	n/a	Heodo
2021-12-04	92TNASOEUTXIZLB4.xlsm	xlsm	45aa726b2ca6a38d0419f3d4995b9d49511378a95a1be683595faa492bf75ded	n/a	Heodo
2021-12-04	5A8C4TS0Z82.xlsm	xlsm	105b85239b53170fd9b3f6acc444344a468a319cb90c5c9293ce59f00076c4a3	n/a	Heodo
2021-12-04	N8H2HPKI50.xlsm	xlsm	fe6edb9fd62baef115f8bfa653e6e8d94aa4f2f6aa31da89708f064fd3c88d96	n/a	Heodo
2021-12-04	3FAMZX4D.xlsm	xlsm	ee4365337fbc7dff140f457e8ce2d9c1674f2cf6e67b75d8447437f02389f032	n/a	Heodo
2021-12-04	76PCSE655O63.xlsm	xlsm	c1464a90a58f17c06f2ccd02243da8d6457dd01d5cc39136b34ea33eb458a64b	n/a	Heodo
2021-12-04	I8QEB0YUMEH.xlsm	xlsm	27398a3f2736fae1f040f051ab7ea4b36bf4a0949565531d64370f70558f1eda	n/a	Heodo
2021-12-04	QB3QTD6FI1BLZT1.xlsm	xlsm	9482e25f0e15d370493d1b0dbccef274bb8eef769bd89460559c7e58a7be2991	n/a	Heodo
2021-12-04	M6APLDS8.xlsm	xlsm	d44144766e97708e55400a782c2573b24f70ab32240c1e706ab31e762c17bb02	n/a
2021-12-04	H2NUGCOXM3SF.xlsm	xlsm	df548ffbe364bfcab388240bb79b0e022793e69993359ad2814bf4dcdd8e8c43	n/a	Heodo
2021-12-04	LX8R6SX11WM1.xlsm	xlsm	7ff5d1d7db27ec611d2c20d2e49cda085a7e5befbabad0b7fa1735f863e9343e	22.95%
2021-12-04	NNGEHCP899NQ.xlsm	xlsm	d6f9c9727dd0438fd15ffe3b61f7fea64b2799dcf291b82cb91c4e615b876f77	n/a	Heodo
2021-12-04	QAD3ZCUO.xlsm	xlsm	17d727d3125d7af2cba3c4d82143be90f7b141c36c01c92ad5abce88a2aca016	n/a	Heodo
2021-12-04	UQWODT0Y.xlsm	xlsm	af0ac9988fa124d9634af8a7108da032d14244d47ff43445b01da171a2fe99e6	n/a	Heodo
2021-12-04	SWCX0BZ.xlsm	xlsm	214e5a751957c1249a783a595cbf2c843f8ce1b0d19e4dd3e4cc71f1c364f765	n/a	Heodo
2021-12-04	1L9O37BQLZK.xlsm	xlsm	3464970840cdd805c83761547e3f985c1b392f10ee00d467b225ffd49285b7d0	n/a	Heodo
2021-12-04	LAQ4RV2W.xlsm	xlsm	7266eebb30eaccc6220328cbee7e643b0b0cc3f026e7a58e7cf6db771c305efe	18.33%	Heodo
2021-12-04	XEQDFRZ6SJPHWN9G.xlsm	xlsm	3cd034945552b0db20496f64fe019b6100c496de25e609d070c799243a373837	21.31%	Heodo
2021-12-04	VLWE1KF.xlsm	xlsm	d3d9ed91a645318b0016f956b5a72525de2ffd5cb12ce4d29ff84d071304a6c0	n/a	Heodo
2021-12-04	V269OJ9N6KMWII.xlsm	xlsm	7897658c10cf7ff61466fcfd07780fedb8cae3a5dad201681041c2b5cda1e0d3	18.33%	Heodo
2021-12-04	2G4AZ06.xlsm	xlsm	83fb6377e3deb8155d8d1ea2470c1ce9565bef5746a698b9f769d5f7852de049	n/a	Heodo
2021-12-04	RU9AX0PR36ZAE.xlsm	xlsm	314e3d1e7346c183ea8fc1d5e99dac95786c5e7fc9bf415af7ac35882715ca69	n/a	Heodo
2021-12-04	XLHM8CF4XPYM1.xlsm	xlsm	9cfe07eec025fccecf7dd8d2ea076b95f82f9a467f37ccc43fc6194358e67204	n/a	Heodo
2021-12-04	U687MRH5HEM.xlsm	xlsm	8adc6751f1b1a317ccccb210e02fbc5d1436c5e4d73005d4c95fbe0e13686286	n/a	Heodo
2021-12-04	NEEGE3D10RJZV1.xlsm	xlsm	2c7d3257879a2e69e5c869ea9ce1dcabac9e27d92225b6ed4c6a9c214d2b4871	n/a	Heodo
2021-12-04	GBZ0HWY9KPCQD6.xlsm	xlsm	129abfe1daac979f2a6ac53e587087920fff466cf94900127c69289ab787777c	18.97%	Heodo
2021-12-04	LEHHAO2FJA7M.xlsm	xlsm	c58040daa1306ba678529c75a0e43ea0f80d7072a49bfb7e935a489cd9aa630a	18.03%	Heodo
2021-12-04	9M5MFZGCTYU7TP.xlsm	xlsm	05764872764266ba76328699e110519eea6d317df30aa9f42337cabdfc0518c7	n/a	Heodo
2021-12-04	WABQ5F59EK.xlsm	xlsm	19940a1e1820b4aa1e0bc8ae018bd31dc2d870fd9970ffbb3a25a25676c60936	n/a	Heodo
2021-12-04	OQWOYR7E4.xlsm	xlsm	9e4011d4239e49cf4815b6c9e9e00dff0ae353ba4c2eb30a9e6a31ba4c2a1f68	18.33%	Heodo
2021-12-04	LD2GHA9TJMO6ARM.xlsm	xlsm	40c783f354619be528e40820a0a7f98888ce228aaf88551732c6a2b66e60bf7d	23.73%	Heodo
2021-12-04	M1FRYWTPJO5K0M2.xlsm	xlsm	4cd06ae56d216f369c0fc1956d794e869e403b789872ac8ddee9cac00e9a653b	n/a	Heodo
2021-12-04	CDD2P1NTVKM3FB.xlsm	xlsm	d48cf0af7d3709b68afd7493329e2f1161803b5ca3e4be6651dbce001491e014	17.24%	Heodo