URLhaus Database

You are currently viewing the URLhaus database entry for http://karnalbreakingnews.com/wp-includes/jsfprwo9/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1973827
URL:	http://karnalbreakingnews.com/wp-includes/jsfprwo9/?i=1
URL Status:	Offline
Host:	karnalbreakingnews.com
Date added:	2022-01-13 12:50:05 UTC
Last online:	2022-01-19 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-01-13 12:55:03 UTC to abuse{at}choopa[dot]com)
Takedown time:	5 days, 23 hours, 53 minutes (down since 2022-01-19 12:48:47 UTC)
Tags:	doc emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-14	43385_60.xlsm	xlsm	ca10d23a4990ebac124b1dda44768d00c6592d955ed3ed5814954a99c9f8f5d8	n/a	Heodo
2022-01-14	X171165.xlsm	xlsm	38fae338f6c68c5cf6e80768b44a9286d484b36262b24c1766f66e76de463aaf	35.00%	Heodo
2022-01-14	QGR-396634901.xlsm	xlsm	7ae8d061dd1dd74a37ac33eced5d361e376cc4b919bdfd82338595f8e17d1e46	33.87%	Heodo
2022-01-14	EHBAV-09258.xlsm	xlsm	b57a55f2405494bd567fe9fd7d0b20a4dff80c22cc57b45a3646dc9e19ac69f7	35.00%	Heodo
2022-01-14	31143831_61.xlsm	xlsm	77c84a4f67f70d068261158ddf09d5e98292a7d86397fb95dec8f0092a67d25f	n/a	Heodo
2022-01-14	p282432.xlsm	xlsm	127c23bfe45f05520e25aa2ee365653314949ad5bf52a5961e3b97b42ee942a4	n/a	Heodo
2022-01-14	HSC-3583329.xlsm	xlsm	4ae00681a3df217ac3d3dc4f3e7b9a154540d3047f51504700e9f6d937e6a29d	n/a	Heodo
2022-01-14	8216588-8901.xlsm	xlsm	e528e3738d4b8284c74b4e98c0cd720a9656a76170631018efa083afe6775b20	n/a
2022-01-14	98311510263612353.xlsm	xlsm	5f371bba772204823b8a090dd95b8561926c57c6555fcfbad90d2ab65718ff71	n/a	Heodo
2022-01-14	vV-5791.xlsm	xlsm	4ff2f64198d5fd1797397a1ecba30671d30b6f434b435d292a5814e780bb0ab6	28.57%	Heodo
2022-01-14	20696_71133958.xlsm	xlsm	558a12c36fe643eed7b84461909486d24aadb653c730a99fa333aee3d4c6caed	n/a	Heodo
2022-01-14	8018_196841.xlsm	xlsm	dd43f7aff805ec6fe3bd061d0b56f766348dc687159a25895ae03963e70e3d4f	30.16%
2022-01-14	2595TCUYQMT-46802.xlsm	xlsm	3ed54e7edbfda5e8c76a389606e9626d5cdab72b4ed9b940465970e322d47ebc	n/a	Heodo
2022-01-14	095229450_11110.xlsm	xlsm	e7dff9977a528e887ecaa6aa818a1ddf868d700f6e13078ac53d801c61d4771a	27.87%	Heodo
2022-01-14	y_24573.xlsm	xlsm	1b541aec384ee441ed95203089c219b335fc960c20351c2b7abda2fd6ef0d502	n/a
2022-01-14	708_1577.xlsm	xlsm	fdb92c93fc55216d88ecb346e4b600385fb8cc3ee2aa598cef3cad99b3f59fb3	n/a	Heodo
2022-01-14	LMUOC-790.xlsm	xlsm	0405a1313355193cbf501e7e742a3085235669f2eadcac48cda287e3000c685a	n/a	Heodo
2022-01-14	486761-4764.xlsm	xlsm	44e19014ff150d3e22446507b5bc37be8660bf0cd9130a211434997867391938	27.87%
2022-01-14	SUT_2814403.xlsm	xlsm	dc91c7176e2bff04a36a36648c214aded82bdc8c5a148d7eed728ce18b4c470d	n/a	Heodo
2022-01-14	8953322836.xlsm	xlsm	0db8962b34a097cbefe62d17aae56cbb6e86fd1f8302a190427bf5de9e3a678c	n/a	Heodo
2022-01-14	856554-833.xlsm	xlsm	5ebbbd43a04a87e9d85a876ce8c8a0fe2e737082fd820835c7d4378d380ed20d	n/a	Heodo
2022-01-14	CHV_56410.xlsm	xlsm	4098eed9c3a2b676312fcf3dcdbcf4f18affb50ab9b31d02868aeee1b6e7d932	n/a	Heodo
2022-01-14	81XWZK-271482.xlsm	xlsm	38aa8bb59cfaed48d361e496e1682f677a3f58223fbe1a6a9e2e1fcd5d837c43	n/a	Heodo
2022-01-14	13334765.xlsm	xlsm	15b5006b335aba5547f75fb7a9399251115e8ae410691b568fd1064c2facafe8	25.40%	Heodo
2022-01-14	YKWM113.xlsm	xlsm	3b63ba5e81eedd06656eca70b56b6d9490b598df1646dd83dacefe8cd52d6a77	23.81%	Heodo
2022-01-14	51050373FRLRPSH_72.xlsm	xlsm	cb0d9916b6be6d3b9d52d057b5b8aa3b223284abe331467dea72eca27165a618	26.98%	Heodo
2022-01-14	jld_99.xlsm	xlsm	0e2db8bad325d450826ee98740532c44b36d70a95f31178c85a50f4e8ee9c8b0	n/a	Heodo
2022-01-14	38577504.xlsm	xlsm	e59685a5244eb67b90182bec159a7ec89a66592e8a06efd89dd4e5b19b11cbd6	n/a	Heodo
2022-01-14	GO_2187169.xlsm	xlsm	b8b1fb98701bf450f491a99a027c35455ecc635801276ec74d0f637aa91aa3f9	25.40%	Heodo
2022-01-14	HZ_763946.xlsm	xlsm	5388d17d28ba671fbe8a27779a4ff0a97c15a00c1a91e946824b81b38c6d8e90	25.40%	Heodo
2022-01-14	YT0046.xlsm	xlsm	a1a5295caf727bb6210b32ba53371db4451b4355c8bf0b420b09dc8e1182fad5	n/a	Heodo
2022-01-14	VHdpHd_562225.xlsm	xlsm	9c8a39e1e2d7547aebadc4f37b84543d9e48faca443b9acd76cdf46d65459acd	n/a
2022-01-14	EqhOt65617.xlsm	xlsm	3dd7791745ef386d30fdac27e392533cbf154de6881440bf6bae3b947c775402	n/a	Heodo
2022-01-14	C-185344615.xlsm	xlsm	9914b76a0ba3fb9da5a56e91338779ce902665c925d401d929aadf7974293d79	n/a	Heodo
2022-01-13	5536883213416263.xlsm	xlsm	700465c4be1e671b009e46928a0479f311b16f05004d4e24755bb22c405781f1	n/a	Heodo
2022-01-13	PpthOh7998249.xlsm	xlsm	731ec98a6308e19709812083b3dfba8b079aa48f36b486f2f06d7170de5d1541	n/a	Heodo
2022-01-13	75768493_59096.xlsm	xlsm	88422e6f6a8baaf355add1168faec3c2cf520438933d982dcff40a31f2468a09	n/a
2022-01-13	571490_47202.xlsm	xlsm	88d07eac813b81a446e976b9d46feb95a86d3e4d0cdfb6e604d42bba8757db02	n/a	Heodo
2022-01-13	JTY-51647.xlsm	xlsm	792a7b8e75aa51f90c66ee711faf429dfe3220b038cc3725ee935083fcb60e0f	n/a	Heodo
2022-01-13	0450631089.xlsm	xlsm	bade694a72c3d8e5887ae4e1f1554aa85add86c8748b60af2e53e4241570d8f7	n/a
2022-01-13	12-9072026.xlsm	xlsm	6e346a952b92ea8d7ecde685f07f01806f0d66530eb588748cfdf35aa4467797	22.58%
2022-01-13	HM76832.xlsm	xlsm	929400abfc42d038419315b35d0fd68f85270fee48b20985276ff79651f09264	n/a	Heodo
2022-01-13	89200-7758656.xlsm	xlsm	6330ce41125fbef35c867af34ed93f63e40f62525e13c3e6dec6ea73c83e269a	n/a
2022-01-13	50495_40942384.xlsm	xlsm	3ee5184a13e445cfb1886d07497ad642ebcf9b1d33fa9628d60e50e8cfa882e3	n/a	Heodo
2022-01-13	61484026.xlsm	xlsm	3be68616e8943e1a8b35ae8d39c7e26e6f949d3f5ce41072a3037bfafe766c14	n/a
2022-01-13	Uqb2645505.xlsm	xlsm	0282a5f27aea18bebe2c3a6406c3145994755a9f37ec1e941ea0dcc1f6978550	31.75%	Heodo
2022-01-13	515327119_992.xlsm	xlsm	accddc7c06e08cf3517f7277a5c299c85176cd7821220fcbc6681c3dfba5be01	n/a	Heodo
2022-01-13	1164880ILYBZXZ_468.xlsm	xlsm	a58fa75e6f2b26544b017856c6e1c56cb39d7769f3854c1cebdebdc0bcdbee9e	30.65%	Heodo
2022-01-13	jwAcr_5029409.xlsm	xlsm	a139884d68aacbe19a1b68501de5392ef5ba05cc3eb5a5b2ed0c347db44af4ca	n/a
2022-01-13	50491019_93.xlsm	xlsm	5cf53f9f40389a8c56abd3a90681dadd27c0db904fbc2422ec9baa37e84c1584	30.65%	Heodo
2022-01-13	358922154_147364.xlsm	xlsm	aefebee74f868174371b6f9925e3484198f01753d2e1ed58c2b99a6c2e24de08	31.15%
2022-01-13	761ALUVQUVZA08799650.xlsm	xlsm	4c82d1c41c6287dbc29a8404a82c908dc052b2b7120ea9e58c0cec067ad4fca2	n/a	Heodo
2022-01-13	71580101_95194.xlsm	xlsm	dc8adc8e13d3e5a64f2d69f2163da90a19cd80594bf4db6b8d17c381312d28b6	n/a	Heodo
2022-01-13	158356VTZZVJZH_3.xlsm	xlsm	c04abc3378a389c7769ed89de8e5d82f4cb311647e4f363641a807fc6a399f39	n/a	Heodo
2022-01-13	RW3294.xlsm	xlsm	78dd5816d66701839612b5caf64d4337e45d516e52b5f177345f5019ce4aa907	n/a	Heodo
2022-01-13	871OAMEAM-5111.xlsm	xlsm	e07efb44e73f01e1cd957c1874bce0e453c91eaa561f46efb373edb97100320a	29.51%	Heodo
2022-01-13	BIQ-5.xlsm	xlsm	e8da2349f8ec549d999a3e63b1f859f0452b0301aaf4fced70ecbba675b81247	n/a
2022-01-13	96414-6531809.xlsm	xlsm	7d20451deedc42248ceeb3cc205328d45bdc50d6d9a652f08773d052e1c598ce	n/a	Heodo
2022-01-13	66193057-946738.xlsm	xlsm	c9d6e67d61769e32b703185a1035e43bbc9c7c053cc1d06594fad3979da3cc9e	n/a	Heodo
2022-01-13	762_06769.xlsm	xlsm	41750a936f4e59a899e45972dd3ccf154305807c52bd7e5f5b19344e909f86ba	n/a	Heodo
2022-01-13	woi_07.xlsm	xlsm	2d009791d777c752c4fddb6e32e5d123d7ecf80145baef849436bf4879259b8e	n/a	Heodo
2022-01-13	22409200175548.xlsm	xlsm	08c7c9f40c6db283966c794771c90b7d9f65dedfb785b861e02187f62f0dc0c8	32.26%	Heodo
2022-01-13	1727248051955219.xlsm	xlsm	4624a6c75a73e206d26cf23225ddf8c14c9bd3fac85edc04aebf63a281aa8bd4	n/a	Heodo
2022-01-13	84799965RBSYHVK-7994.xlsm	xlsm	399fd8ce9218a6b24bbf3c9e307934df9b2954d45119371365be1360c88ec6f5	n/a	Heodo
2022-01-13	WKNMY_6028013.xlsm	xlsm	e867e8691b17fd95fce36eb933b1c36744f45513e44d931d07bf95229e47bef1	n/a	Heodo