URLhaus Database

You are currently viewing the URLhaus database entry for http://lequie.de/wp-includes/Document/ttsd60xlxo3oqslq2wu_vpwnlqz-8559418497685/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:195378
URL: http://lequie.de/wp-includes/Document/ttsd60xlxo3oqslq2wu_vpwnlqz-8559418497685/
URL Status:Offline
Host: lequie.de
Date added:2019-05-13 09:59:04 UTC
Last online:2019-05-14 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2019-05-13 10:00:04 UTC to abuse{at}webgo[dot]de)
Takedown time:1 day, 5 hours, 29 minutes Poor (down since 2019-05-14 15:29:34 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2019-05-14DOC_142059598533US_May_14_2019.docdoc 8d092f1d799b7cdfa8cd2a35ae350a31d9bc519eb7ad133728afbf1244e624d8Virustotal results 15.00% 
2019-05-14INC_00440960238US_May_14_2019.docdoc fdf0b89876c1960af5e14f563144afd9aec7e43b7cdb7c2f3c125e7460a3ca70Virustotal results 15.00% Heodo
2019-05-14LLC_212675069272US_May_14_2019.docdoc 4008b7f97a2feab5c8eb19b490e18aef8cbc52307f285b8e999c4c2038763839Virustotal results 15.00% Heodo
2019-05-14DOC_165887763027US_May_14_2019.docdoc a449bb74a723db8ca33e09bcea613e6aae370a4722e2f03387945aa9c91fb21eVirustotal results 15.25% 
2019-05-14SCAN_5561306545US_May_14_2019.docdoc 894005342c01da06b240c3b9fd27c23fe641c86a62733945142b53c2e92142afVirustotal results 14.52% Heodo
2019-05-14FILE_1469125739US_May_14_2019.docdoc 9558d463a7f0f0fff8c41640bf1ad1b810a09c52ae6fb183c759a2a81da660f6Virustotal results 16.39% Heodo
2019-05-14INC_31312894236US_May_14_2019.docdoc 30b48ab4968bfb49a8141a9a954ced07ec56e454c9e5dab21357fa33a4e0f2efVirustotal results 13.33% Heodo
2019-05-14FILE_861585860424US_May_14_2019.docdoc da81949e8612caf52635b73cde3d730d4fadc63bb05bf073106f79b2153877e9Virustotal results 14.75% Heodo
2019-05-14Document_4873345106US_May_14_2019.docdoc b23f739d582fd46ef2bebe99960e05dddc3558d8a637ff8a3270da961f563adaVirustotal results 26.67% Heodo
2019-05-14SCAN_62603534417US_May_14_2019.docdoc 4ee32f5983285060104ec1a7699f69a03d77a910a890e494fa0c57de32aa49bdVirustotal results 26.67% Heodo
2019-05-14SCAN_99792949079US_May_14_2019.docdoc 411c466ea7070fba38e790c6f1fbe0597a460a22e18feaccab85f069af82a69an/a Heodo
2019-05-14INC_890891864218US_May_14_2019.docdoc 0ac02bafc7497a175e8b6321f393b4f4a07f60e1c16065cca1eeb27b00217b46Virustotal results 23.73% Heodo
2019-05-14Document_1712114572US_May_14_2019.docdoc 32d970641625a2a33d5e1cdc052c528249b2e4f408ad304d430180fa299d4540Virustotal results 25.00% Heodo
2019-05-14SCAN_36901908999US_May_14_2019.docdoc 130187838b015cbac791a2eb4a4cac0a07114b85e1a18a3352576cce2c5ae1aaVirustotal results 23.73% Heodo
2019-05-14FILE_64622575557US_May_14_2019.docdoc 8f4a02c8a1ecbf0131226b34c9d39f5dcb5ef92663e8dc40f4b49392d606e4a8Virustotal results 22.95% Heodo
2019-05-14SCAN_53874256722US_May_14_2019.docdoc 5c4496cdd3ee86af8935d9e1f64e6337c732741df7824571cf15e426f7913923Virustotal results 23.33% Heodo
2019-05-13FILE_48857379521US_May_14_2019.docdoc 95b76cb37e2e3caa0e07f01c9aab219e128ea4ac3cab80aa48e9fc2733713343Virustotal results 21.67% 
2019-05-13DOC_539773165101US_May_14_2019.docdoc baac5eeb90873f5781c9ecc9143537bd287a609e4dd9ce36b697e8fd1976b288Virustotal results 16.39% Heodo
2019-05-13FILE_0426099141US_May_14_2019.docdoc 3b33502eee805abdf772cff17265066d740c3f6c01d837510f58cb2e433ff5e6n/a Heodo
2019-05-13Document_2006333401US_May_14_2019.docdoc b0ba02974163d321b58322351c6ff306db87c9e1ce45a68e7558efc2f8303b82Virustotal results 16.67% Heodo
2019-05-13LLC_590677549685US_May_14_2019.docdoc 652083730ca6c0f32527b1b7b14f69100e45229c016722bef50904c801e48de3Virustotal results 16.13% Heodo
2019-05-13INC_9548394426US_May_14_2019.docdoc 7346090ed235d35e6a640f62b67cb02cfbd272a4a73ac4352bacd21e4f1c49e7Virustotal results 16.39% Heodo
2019-05-13INC_0155872507US_May_13_2019.docdoc f69b477c18524ba73acae4f93ae321077aed3645fd473eaf75cef1314dfd887fVirustotal results 16.13% Heodo
2019-05-13Document_49046133269US_May_13_2019.docdoc 1595c376a6dbe775478a9595ad780829572095d3264e2ad8dd6e9710f9a18522Virustotal results 16.95% Heodo
2019-05-13DOC_7341987983US_May_13_2019.docdoc fee909ec35382c82297015f542c7975ae152623fd04b05a73f81266d44f817fdVirustotal results 16.39% Heodo
2019-05-13LLC_304604187397US_May_13_2019.docdoc 8a45020788b56181e3d7bfc9aca0a8c72341cac08f87cc81d2f438183c4e8434Virustotal results 22.95% Heodo
2019-05-13DOC_7161367513US_May_13_2019.docdoc 41af0248fa854ba36a8ffebb928e34a3534a55a6a137710cf9075d54eb36e421Virustotal results 17.74% Heodo
2019-05-13DOC_9562111446US_May_13_2019.docdoc 6c91e700f82440568c9bb8af07957861829be2801cda74f1634b68080007f492Virustotal results 18.03% Heodo
2019-05-13FILE_57725394019US_May_13_2019.docdoc ac752ed59742f0aa2e2d9fda8cf70400e1697c456461ab7ad1667b50bb47ced4Virustotal results 18.33% 
2019-05-13FILE_72961700530US_May_13_2019.docdoc a483c77b4894eb63fb7c53b45d9a7cf8b7d2a11bf1b0a2f81f193d84053bc9baVirustotal results 18.03% Heodo
2019-05-13DOC_65155063649US_May_13_2019.docdoc 321386030e3165c45f3bbe0f42dc5832bfc6cc2c7546eee11b4fb1b8238a1ef0Virustotal results 18.03% Heodo
2019-05-13DOC_97035927816US_May_13_2019.docdoc 6106e070e2c8b40a9994e18ad813479efe44ab0034d6c9d2fa38c306d335f95eVirustotal results 18.03% Heodo
2019-05-13SCAN_136493887441US_May_13_2019.docdoc a01eff028804839919ecf103267f2a7122e9ef008451f4139f7f2a5c10a12628Virustotal results 16.39% Heodo
2019-05-13LLC_85267445030US_May_13_2019.docdoc b94bdb5e5bb0320f6a98aae2374552b1ae7eb1a0ed6d8cdb7f7165d406c88f17Virustotal results 16.67% Heodo
2019-05-13LLC_261340473350US_May_13_2019.docdoc d74e281cbbbf1e4bfa5a07e46cbf41398393cd3ba620c414d9dfa39809951a0fVirustotal results 16.39% Heodo
2019-05-13Document_12094912114US_May_13_2019.docdoc cf2c316569c7df1157e658c7fc5939808a79d02defa7d1972c6150dba2673166Virustotal results 27.42% Heodo
2019-05-13Document_396117380554US_May_13_2019.docdoc 5737ec1cbf993da2a81e5eed0a3c91f33bb7bb685887f74f3fa713f3138e0fe2Virustotal results 28.33% Heodo
2019-05-13SCAN_90253008592US_May_13_2019.docdoc 6b6feaf5c5b705ee1a1d906b58da9eecf7fbb483674c113b40e5c3ec3998b6c5Virustotal results 28.33% Heodo
2019-05-13LLC_2995877409US_May_13_2019.docdoc 5a2697ff84c4be628abeb20461bb9e931b48ec3aae0af53208ad21dd726622ben/a Heodo
2019-05-13INC_037898985423US_May_13_2019.docjs 2b695b354e1485292556309baf5e876b4a7ba956bedf9c2bfab60b3ecbe625c8Virustotal results 31.58%