URLhaus Database

You are currently viewing the URLhaus database entry for http://www.aeffchens.de/wp-includes/sec.accs.docs.biz/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	188880
URL:	http://www.aeffchens.de/wp-includes/sec.accs.docs.biz/
URL Status:	Offline
Host:	www.aeffchens.de
Date added:	2019-05-01 22:13:03 UTC
Last online:	2019-09-19 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2019-05-01 22:14:02 UTC to abuse{at}wint[dot]global)
Takedown time:	4 months, 20 days, 23 hours, 18 minutes (down since 2019-09-19 21:32:32 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-05-29	2019_05_PAY_1211331_724717.doc	doc	b9b623468f7367c94da5eab9cef1341d56a50a2880730fa3b3e933263c329f3e	73.33%	Heodo
2019-05-02	2019_05_INSTR_062922_9665564.doc	doc	8d2bb644ad211dbf798452fa2d112bbfe2a45e8359543f6c3527eb0794535de4	24.14%	Heodo
2019-05-02	2019_05_B044200_762495.zip	zip	f8f8ee4e3b8bd7c140565bfee46aafc205e40eb01bdc1a87f2bd23b0424bc09a	n/a
2019-05-02	2019_05_BIZ_434200623_8597752993.zip	zip	dc30e68d137fb22270341209e1177e0e77c01372bdeb84535cec292ffa63e919	n/a
2019-05-02	2019_05_INSTR_6197942135_0524941.zip	zip	83d23c4af427e584bfa18952e81972e6929d70b641281e8f106bd801ce47be2a	n/a
2019-05-02	2019_05_RECH_6240260072_023400745.zip	zip	519e2fe1451aa357d582a2bcab7b2a33c93a5c9fabda996aeb0bed0d965128a1	n/a
2019-05-02	2019_05_RECH_0161507136_741815.zip	zip	4a12bbbdf96e5fdd6abe8a1aa5cba020047c8307edda62ee36f8f457948d5847	n/a
2019-05-02	2019_05_ACC_7848817673_0569879966.zip	zip	4a5c86f09dc285913b46992470e5417a3bcc8c40a4899ca5f4a8f56d5033ea6f	n/a
2019-05-02	2019_05_PAY_526266289_5285909.zip	zip	276e23b797331e36b566cfd040732ea6b38fb005151996119f2ce02c8496f42d	n/a
2019-05-02	2019_05_RECH_501420838_439128957.zip	zip	7372cac53d1d44ac78c220dded333b0358a3688414b1c481d5e200a79ff52e20	n/a
2019-05-02	2019_05_ACC_6329841_6420863.zip	zip	c72f9b6b50e1a920d5f834f3945ce2da16e98504394abfc41a04d673003cc9d3	n/a
2019-05-02	2019_05_PAY_6677947_749396.zip	zip	e58b7e469c2706705df475f8703de92b28f3728e68b5f2ada332d247ba797515	n/a
2019-05-02	2019_05_ZYS0765492_7688936738.zip	zip	fd92378e4c7d3db2c4cccf206d2fa3a063704e3e7f5b6118d8deb67d5bf0b3e2	n/a
2019-05-02	2019_05_RECH_466177_4002900391.zip	zip	695ce7e54b4bba63fba9db6afca69f5095475127f4c6641c2366d45bb9970f0a	n/a
2019-05-01	2019_05_INSTR_3601819_17646775.zip	zip	071dccd278c9a01edc623aec7edfb96982557c936eec8bc3927dfda6c125250b	n/a
2019-05-01	2019_05_MKYU108886820_4150964.zip	zip	ef29ec1ca25f6412944ad32f25c1712298c79d6dcd3d60508a8b8e8032a55034	9.84%
2019-05-01	2019_05_DOCS_69426202_081847102.zip	zip	0728247013f2fe46516d88f83671cdb1add7e21bd2d70318142a0e31a1a69539	n/a