URLhaus Database

You are currently viewing the URLhaus database entry for http://jitkla.com/images/ACCOUNT/Client/Auditor-of-State-Notification-of-EFT-Deposit/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:23386
URL: http://jitkla.com/images/ACCOUNT/Client/Auditor-of-State-Notification-of-EFT-Deposit/
URL Status:Offline
Host: jitkla.com
Date added:2018-06-25 16:12:05 UTC
Last online:2020-02-01 04:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Not blocked
Reporter:Anonymous
Abuse complaint sent (?): Yes (2018-06-28 06:34:36 UTC to ip_admin{at}csloxinfo[dot]net)
Tags:doc emotet link heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2019-06-28INV-82653384416.docdoc 28384e04570c07334927af895fda96ef293b177955bdc190e907ec6e31352d1en/a 
2019-04-10INV-82653384416.docdoc 006220bd7536e5586c28f4c9f86839c358fd2a75696a4649ff9362de4d1d2c9dn/a 
2019-04-06INV-82653384416.docdoc 4c0b44452c60ad0812c2a9b659c0556caf992d5d08e23e358ee587a902ca05edn/a 
2018-11-03INV-82653384416.docdoc 19bbecdb2f2011edad1da1d2d265981e282c7e5c7c0d3e2aa0bcb07327bc673cn/a 
2018-06-28INV-82653384416.docdoc ea73652fbecb0539e46da02cb1ef6a9570f37548ad166d4c59af77bd3982bc08Virustotal results 30.00% Heodo