URLhaus Database

You are currently viewing the URLhaus database entry for http://cityplanter.co.uk/site/uy6a-99rwdx3-nflrk/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:192782
URL: http://cityplanter.co.uk/site/uy6a-99rwdx3-nflrk/
URL Status:Offline
Host: cityplanter.co.uk
Date added:2019-05-08 10:22:11 UTC
Last online:2019-05-09 11:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2019-05-08 10:24:04 UTC to abuse{at}liquidweb[dot]com)
Takedown time:1 day, 1 hours, 19 minutes Poor (down since 2019-05-09 11:43:30 UTC)
Tags:emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2019-05-09Rech_08561253937DE_Mai_09_2019.zipzip bded9dbcf270690dfb2be37a380084dd20466f357814ba0b49278c1f52bb3944n/a 
2019-05-09Rechnungs_Details_27899477962DE_Mai_09_2019.zipzip 494854a1deaafeb85585d28ef372e92b16535034abd6f8dc33552f48d0dc5aedn/a 
2019-05-09Rechnung_15195218370DE_Mai_09_2019.zipzip c4b6a9a4e48426dc11f890d9199649d23f37f72f6b54e0ad1f2a66d6ea4477dan/a 
2019-05-08Scan_675077818600DE_Mai_09_2019.zipzip 6ed4894edb0ca7883365427215494e57cc44103dbcf755301debe4ef773bfe68n/a 
2019-05-08Rechnung_3200822756DE_Mai_09_2019.zipzip 03fdfd8076649db63d7f5613402d5eeabde32a9c8b0f673fb494c9a39e13fa88n/a 
2019-05-08623597589559DE_Mai_09_2019.zipzip 7519b02f2d4c1934f3bb6d17419770f710c7f39bd8b5940d0a4a5acbb552e9efn/a 
2019-05-08Scan_1932247428DE_Mai_09_2019.zipzip ce20f58b36a7d0dd38c1e0ad1fee55b1c5d05f82d0bfa2f1b2ff588f3b17e2a2n/a 
2019-05-08Rechnungs_Details_939067788800DE_Mai_09_2019.zipzip 5125b9da83d1c32b49ddcb7c673680adf2103175e39718e191d00d8a6aa13c32n/a 
2019-05-08121537856143DE_Mai_08_2019.zipzip 1010d82b49925b20ab554ef37f3fab0aaa0e74a38e269e7eafd85f5d37ceaa57n/a 
2019-05-08Rechnung_889906889682DE_Mai_08_2019.zipzip 56294eb1e68b6bc6f9b4a43967d8bb8da754377e5c0d5931c8b3246a24f36ab9n/a 
2019-05-08Rechnung_40477649123DE_Mai_08_2019.zipzip 80f8467383ccec8036676b658936e13280da26d53a9bf4f30033f1dec725bab0n/a 
2019-05-08124619535985DE_Mai_08_2019.docdoc 37390a65227c1c3d33a74d43898940cfd4690953cea047db95f39e191a20dfb2Virustotal results 32.79% Heodo
2019-05-08Rechnungs_Details_293698649962DE_Mai_08_2019.docdoc 8ea46d2e7b76e5d7298c7f8bfd87d9ae27ccc62f881caad23ff2bef3d898ed4dVirustotal results 32.26% Heodo
2019-05-0826168463598DE_Mai_08_2019.docdoc 9fca8a5a5331231d7c2e24f98c132be370fc4c1d314f6f0b674161bf086e32e2Virustotal results 34.43% Heodo
2019-05-08020728473448DE_Mai_08_2019.docdoc 4987eff30322e183f2564965c47cb409b92b466095d4c7ff3583b57419cc4cb3Virustotal results 32.26% Heodo
2019-05-08Rechnung_320642901997DE_Mai_08_2019.docdoc adfb40518e76da88b465cac35e6c32bb025e1f0188d96470a06ef516aef5d5eaVirustotal results 31.48% 
2019-05-08Dokument_5304360925DE_Mai_08_2019.docdoc 50cdfcb1f7724fdab8da553f24f51686cb4835efef1d43f535ea00f220297ea7Virustotal results 32.20% Heodo
2019-05-08969877263742DE_Mai_08_2019.docdoc 55b414fdc1fd75ce344a26606b4f1a0260a4867c0a35a202a08de8f3d6c2bd1bVirustotal results 32.26% 
2019-05-081379765445DE_Mai_08_2019.docdoc 9fff48d7c0f4494bddbba99f1e95a2de9bcef7435ebc10c66d6b62aa57f62e95n/a Heodo
2019-05-0828396454478DE_Mai_08_2019.docdoc 76078c12f217788bc8a017d80c6a7e207a86a0141792fe1e43009847c44dd365Virustotal results 32.20% 
2019-05-08Rechnung_32353103444DE_Mai_08_2019.docdoc a6654bf3a1dc1407b542532d1a9d11c30b84cdd9cc736abccfec742eb677b117Virustotal results 32.79% Heodo
2019-05-08Rechnung_038197995254DE_Mai_08_2019.docdoc 033473cc78cd2c60e3bb42a6e5d9fb35fb15c5dfd748b7f0b35eaa606fdf8652Virustotal results 36.07% Heodo
2019-05-08108162261335DE_Mai_08_2019.docdoc ce167af75e50476a8b2d4e8b9634594333f949ba78d64001efd6b16c9f4220e8n/a 
2019-05-08Rech_35538510593DE_Mai_08_2019.docdoc 5610fb4f2521abbb5a78ce55ce5efaf6ea7d9c3125baeeb653e9248053417e8cn/a Heodo
2019-05-08097107144114DE_Mai_08_2019.docdoc 24267568d3fa011adb7ef53f107f6aa01162750e40eef869781ceb0ce6651f54Virustotal results 32.65% Heodo
2019-05-08Rech_80244115700DE_Mai_08_2019.docdoc 9f1c7192efe5fd241d1df09e7705fafd9356fb2e03e08e0d82ee4a26535b4ab4Virustotal results 30.65% 
2019-05-0860255460834DE_Mai_08_2019.docdoc 154e8aaaf4a5e299f3f5db330ad353ba64c111c7ef8e1c52b75b9d356aede4efn/a Heodo