URLhaus Database

You are currently viewing the URLhaus database entry for http://techbaj.xyz/one/efxowt-861q4-zfgszw/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	192187
URL:	http://techbaj.xyz/one/efxowt-861q4-zfgszw/
URL Status:	Offline
Host:	techbaj.xyz
Date added:	2019-05-07 08:59:08 UTC
Last online:	2019-05-07 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2019-05-07 09:00:02 UTC to abuse{at}ioflood[dot]com)
Takedown time:	11 hours, 29 minutes (down since 2019-05-07 20:29:19 UTC)
Tags:	emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-05-07	Rech_80703597742DE_Mai_07_2019.doc	doc	0aaeaa93626bdc87153bcbd213712de5c3fa7f98f2455f1e6e5cd2f46c03b0d3	23.73%	Heodo
2019-05-07	Rechnungs_Details_631137436084DE_Mai_07_2019.doc	doc	f412a78d93f03f39f6a58c865c75d6481a3ecfb83a3fdbf1ed32c0c546a773f5	37.70%	Heodo
2019-05-07	Rech_00739364581DE_Mai_07_2019.doc	doc	60b17d785dbd6e4dbee37c553fa9a5617c7d23bda1841de3659b72d910733d3a	26.67%	Heodo
2019-05-07	Rechnungs_Details_7285135376DE_Mai_07_2019.doc	doc	222ce422ca63999aef3b717a2e9eeb0c9d72599815c4f478597d451aeadfdb68	27.42%	Heodo
2019-05-07	0265051031DE_Mai_07_2019.doc	doc	51dd24ccbe52ae79f2325057045832374d3c494ecf7c6839778846c72f86653e	25.86%	Heodo
2019-05-07	Rech_55960399337DE_Mai_07_2019.doc	doc	e9771e82271beb5c983f81566668f27bb2b45d500277e14612dc3cd86ac4b9c8	25.00%	Heodo
2019-05-07	Dokument_12759394977DE_Mai_07_2019.doc	doc	28e68b85f1bb66d9f63b619a9751c51f270b12f221ed712b879ee9c8c4963140	25.42%	Heodo
2019-05-07	Dokument_5497371328DE_Mai_07_2019.doc	doc	f12242ba8f3516adfe65d5e5754e1f910ba29a5a6acc66df4af5b85e8cdc1a6c	25.81%	Heodo
2019-05-07	Dokument_0953200242DE_Mai_07_2019.doc	doc	dc48ee3072f61d701ee3becc3537339fe28e663ab42fad5d075bb0043993d4ce	n/a	Heodo
2019-05-07	Scan_43261805739DE_Mai_07_2019.doc	doc	946b744200b26a382c2490ac1b26a042bc52f6fc5cf04b082cfa038426ca15da	25.42%	Heodo
2019-05-07	Rech_9565765043DE_Mai_07_2019.doc	doc	644eb7976025866cb83fb07f99802dabb9ab0100acb262c43488b5c63a068e9b	26.23%	Heodo
2019-05-07	216050980328DE_Mai_07_2019.doc	doc	6fb876df141e97d3e77ac20e9382dc6d07b901820ed45f8c89913069555ca567	27.87%	Heodo
2019-05-07	Dokument_90881898243DE_Mai_07_2019.doc	doc	89cf5a3d050ed936c030df8a3df1658dbc95bdf2c9cfb8abf52ca87020c8f727	n/a	Heodo
2019-05-07	Rechnung_66823045272DE_Mai_07_2019.doc	doc	95c225d91c6742ee6e9de9078232173b4460b7eba84d9028d67a30403bfe4781	28.33%	Heodo
2019-05-07	9210135499DE_Mai_07_2019.doc	doc	0e0f16610ed65b4e46c31d13b2e40e315acc55caf80c5be5adea68b51d11de59	26.67%