URLhaus Database

You are currently viewing the URLhaus database entry for http://drkamalsgroup.com/wp-content/uploads/2019/04/ittsf-1mr0wc-gbwx/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	187959
URL:	http://drkamalsgroup.com/wp-content/uploads/2019/04/ittsf-1mr0wc-gbwx/
URL Status:	Offline
Host:	drkamalsgroup.com
Date added:	2019-04-30 13:10:05 UTC
Last online:	2019-05-04 08:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2019-04-30 13:12:14 UTC to abuse{at}amazonaws[dot]com)
Takedown time:	3 days, 19 hours, 43 minutes (down since 2019-05-04 08:55:20 UTC)
Tags:	emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-05-02	Rechnungs_Details_640878116548DE_Mai_02_2019.doc	doc	b1dced28edb0f204dfeddacb104281bf43b041d6dfb17f063aed46e5b5437998	33.33%	Heodo
2019-05-02	Scan_87908051501DE_Mai_02_2019.doc	doc	71f892530436e11f487144a6a0938fbca4ee47850fa221ca6518d6c2f9e4c837	30.00%	Heodo
2019-05-02	Scan_71483837322DE_Mai_02_2019.doc	doc	8715b1a0fca07aa174dff8f761755d3879f305b1c5201960fda42ed8840822ae	n/a	Heodo
2019-05-02	Rechnung_3620114207DE_Mai_02_2019.doc	doc	c4bb3c6de8d16d8d68841fd2fd8230fb13d8f7c51feaced318d5f41c78f15da1	n/a	Heodo
2019-05-02	18353411486DE_Mai_02_2019.doc	doc	05a8d63623061e357e6537d32e097ef07f792fbfbdbb534d37533e5f9632c5ad	n/a
2019-05-02	5455934742DE_Mai_02_2019.doc	doc	8e4a311d2368b3ef3374691d891e860542fbcd33a8c5df81d9264762449a41a5	28.07%	Heodo
2019-05-02	4117256428DE_Mai_02_2019.doc	doc	17f4ae8fba484e7fb87c16216ece4622556d70db4d807d8b0a4ac207eba7d015	35.00%	Heodo
2019-05-02	888494615896DE_Mai_02_2019.doc	doc	8849cbdb89ef44865f23e8745eee176d529ca564c20c66da99aa5c04db555ec3	35.00%	Heodo
2019-05-02	Rech_81682428898DE_Mai_02_2019.doc	doc	e39ace0837155e85d59f5059bfe202ba3de02a88c848a6067c9965cadb79c5ae	36.67%	Heodo
2019-05-02	Dokument_2712589388DE_Mai_02_2019.doc	doc	a2fcae9f16ba8a88c03ba2fa986fa6f148dbaeac41f94546467a81b9846ae9df	34.43%	Heodo
2019-05-01	Rechnungs_Details_2646114607DE_Mai_02_2019.doc	doc	07ad82ee6f552024b89e9569759078672295762694af017f35f64bb7284b93c3	35.00%	Heodo
2019-05-01	53697013918DE_Mai_02_2019.doc	doc	438757f58f956c0bf3c4d88c3270f25c6bef6cc6c7599d01e2050871e1c7cced	32.79%	Heodo
2019-05-01	Rechnung_46415189005DE_Mai_02_2019.doc	doc	1f4a46bf19d090bee1282d5920e1ce502620c0a50cb4d5165d735d5b52e4a79e	33.33%	Heodo
2019-05-01	Scan_147277395511DE_Mai_02_2019.doc	doc	f28f62f33ff6ea0d8d9708e54142e83603afe0bcdcf1206bca2f2dfa00e05b0c	n/a	Heodo
2019-05-01	Dokument_32247941025DE_Mai_01_2019.doc	doc	811f6ec9cc7105d1b81e5352a0b9f90df420a293afc43ba91507952e7cb49f72	33.33%	Heodo
2019-05-01	Rechnungs_Details_256762705514DE_Mai_01_2019.doc	doc	72f28f83d17f71068693f8f34ea40d09dc75d111635427f1b58fa9d4cad29558	32.79%	Heodo
2019-05-01	Rech_4602387441DE_Mai_01_2019.doc	doc	fa4963b59046a924250a2c0d7599ae98fec4d4d0ba1cdf8de575a7438c570563	32.79%	Heodo
2019-05-01	Rechnungs_Details_9892786952DE_Mai_01_2019.doc	doc	9c51bcdb82373007744c0dd18a11c06decaa000f48880f23f1bf9a335e5af053	29.51%	Heodo
2019-05-01	30331993578DE_Mai_01_2019.doc	doc	dc49d2d7421719050d62368d665c84629bb08d6874ade0bb8940f133b619d9ae	31.67%	Heodo
2019-05-01	456097992411DE_Mai_01_2019.doc	doc	930cace84e8704d5385df2db7557c7d3b2a183de3ffad0d3a51291745b4f9f39	n/a	Heodo
2019-05-01	Rech_690476241022DE_Mai_01_2019.doc	doc	1a6641086b78035d6c9ba38c7199aac02d37dafbadf96059a81b6f4c35e49f84	26.67%	Heodo
2019-05-01	11604744775DE_Mai_01_2019.doc	doc	68e686c3f2b87d3169766ffe4bba021a8acd7648ca38c6c75be829a864558ecb	26.23%
2019-05-01	Rech_5606348313DE_Mai_01_2019.doc	doc	49b5e70a242f984eadee49435aac4371ca3cb65b02b2f6fbcbfcbfbd9d985782	26.67%
2019-05-01	Rech_53750690578DE_Mai_01_2019.doc	doc	db1c99298b5e34e6f10a5e054febbbbb8ebf940b4cacdcd1b1f4bf542d7da41d	n/a	Heodo
2019-05-01	Rech_19520405021DE_Mai_01_2019.doc	doc	4b37aca0d46401d67a57677fc4189ef354ec63afa9c3312cd076fbe0391b9c6d	n/a
2019-05-01	Rech_500791531693DE_Mai_01_2019.doc	doc	9c8a8c93bd7627958c439fcb2f59df0236b1103da10b38c95498eafabd99887b	n/a	Heodo
2019-04-30	Rechnung_323697986924DE_Mai_01_2019.doc	doc	9799b8b545925ef92b4b71fdd9af69c182cf471e215026914c3574b7084c5880	50.00%
2019-04-30	2360521778DE_Mai_01_2019.doc	doc	52448cd37a4b02eb30174ada8146ed194b6cc52c9d340816a615f368476d9a3b	n/a	Heodo
2019-04-30	Rechnung_467068156275DE_Mai_01_2019.doc	doc	db491acde2147421a9c85c908da92b4f8af714da4609c2ddebfc509eca3ffc42	50.00%
2019-04-30	Rechnungs_Details_16267255339DE_Mai_01_2019.doc	doc	2b1810f68974145fa51514b11e17499ff46e0d2eee96976a51ffa446424d1da3	n/a	Heodo
2019-04-30	Rechnungs_Details_9262703305DE_Mai_01_2019.doc	doc	c654d69862242df1d006165cd8d0a60f683ab0eae1cb1cd5f374f831e4374606	48.33%
2019-04-30	2169843368DE_April_30_2019.doc	doc	118942917ae2acf9a6c6ba8bae443bfa7d060b530958196b654729715276a4f9	50.00%	Heodo
2019-04-30	Rechnungs_Details_575943607807DE_April_30_2019.doc	doc	ae9aff9f74e7ad8ed8d61afd4f3796861ed3f08eb4ac310f3acfe9228d637b4a	n/a	Heodo
2019-04-30	Dokument_82912155065DE_April_30_2019.doc	doc	8430c4680ac5779d052836f9fbdbdb6a9809d1eb8c62246036e89c5c919312db	48.33%	Heodo
2019-04-30	Rechnung_790157214806DE_April_30_2019.doc	doc	034d793e2d7928a31f3a2d405552c9288aa51d9fb212759573cb300f5538e92e	48.33%
2019-04-30	Scan_274495651309DE_April_30_2019.doc	doc	b1cdd9d5deee35391445ab89e7432f560d42d2ff54a7e463ba09be2cce87ad01	48.33%	Heodo
2019-04-30	Dokument_4150538502DE_April_30_2019.doc	doc	42a04a35e214a16dcf1a928a99faa2648c7a34562eead18fa516512fcfa784ba	47.54%	Heodo
2019-04-30	Rech_462825310460DE_April_30_2019.doc	doc	a68abf4c2b97d243d84969b61f10219e0eb42263822a18fd10a9575dc3371c02	49.15%	Heodo
2019-04-30	Scan_317718120770DE_April_30_2019.doc	doc	f5e1fe9adece633f63a665f277cd8bf19bde62423b747cdcc4cb0c291ac2d7d8	46.55%	Heodo
2019-04-30	Rechnung_5824769251DE_April_30_2019.doc	doc	5aaefe478c76ef3f4e1178e8bf071f5647c4e8a97a8be3b655cf43f468b984b2	n/a	Heodo
2019-04-30	Rech_31482210448DE_April_30_2019.doc	doc	6c255bfc7f4c811a4af497a8be4943590bb05eec6c5be64e158ed22c1837d908	36.67%	Heodo
2019-04-30	Rechnungs_Details_299709332841DE_April_30_2019.doc	doc	da796c5520890b04964c30a0b56730e0069dd1682b69a3fc52a4cf0b8ee40412	38.98%	Heodo
2019-04-30	Rechnungs_Details_9033002832DE_April_30_2019.doc	doc	29d2b928d7b39015bc482d2ed74d4816b58fc5486988d94949f142a9adb75942	38.33%	Heodo