URLhaus Database

You are currently viewing the URLhaus database entry for http://zefat.nl/multifunctional_box/open_cloud/4vk4ywkpkuu25j7r_767yv494w6913/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	272023
URL:	http://zefat.nl/multifunctional_box/open_cloud/4vk4ywkpkuu25j7r_767yv494w6913/
URL Status:	Offline
Host:	zefat.nl
Date added:	2019-12-18 20:17:17 UTC
Last online:	2020-01-02 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2019-12-18 20:18:05 UTC to abuse{at}keurigonline[dot]nl)
Takedown time:	15 days, 0 hours, 57 minutes (down since 2020-01-02 21:15:49 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-12-20	receipt_12_20_2019_BD32926.doc	doc	26817c08cb0275f3a5a51ca22f097e67bcde3e1b88136b7ade6c576641e5a736	27.87%	Heodo
2019-12-20	last_rep_12_20_2019 F1G0419449487.doc	doc	385bd4e020a50611747ca89e66a0047f3f8eed5e68c0c53c8d21376d71ca57f1	27.87%
2019-12-20	adjusted adjustment_U079352021.doc	doc	955eebc421cba31b1a08cf58b87d3857b1e643df93490ae6837a013bba6642ab	32.79%	Heodo
2019-12-20	original_948m5m002.doc	doc	09be3d2223400ea37f8a8c46182308a7ceaed44505aae6e9077efc108529d0b7	27.42%	Heodo
2019-12-20	last material_12202019.doc	doc	6054209ef8d53dafabfb03023d236d7cdb010a33e35f45f11280ef331d7315ed	27.42%	Heodo
2019-12-20	last_receipt-ZK97762172 12665.doc	doc	466027c38b90b23b98f321c44b672d08ff7ae335c8b3f9fc2237e253e82f31a0	25.81%
2019-12-20	ChristmasCard.doc	doc	ba5df276a95a559d5660e2576bb1bd433d24bb16aff6d598f399c94ac0c1de12	25.81%	Heodo
2019-12-20	doc-FVW3638-750749.doc	doc	e3712d3f74477de5f54b5f965a57b459eaf026c2ce36af0a8d2f4c5ffddf5f7c	24.59%
2019-12-20	invoice-X41516.doc	doc	571538754fb74f2143cfc4b3ebd12bc7eb15e2feb41c054cf2f216b524f0a438	23.33%	Heodo
2019-12-20	file 12202019.doc	doc	4fa69a6e2bd147fed055ce29ac3da808c8b02490daedce960863bf3bb908105e	23.33%
2019-12-20	approved_unit_p9353oqq2.doc	doc	d45748d8d626e9e8684a0be1dd6c2c228bb8fd8f99a11a626694f3148f66572a	22.95%	Heodo
2019-12-20	newest 39092.doc	doc	a35d23968eae8e3f9825a4f02cf04ddeccba1700c9cd890ac37ede3ad01c9976	37.10%	Heodo
2019-12-20	adjusted-3626.doc	doc	4e0e485da37a319d5ea48647ada706b0e98f9927be8f911cbb7e2e0d088102a5	35.48%	Heodo
2019-12-20	scan-12_20_2019_H52194.doc	doc	6ae6ea361587336af93134ad0950b22df0420577917b6486878f614679ef2560	33.33%
2019-12-20	approved release-4LA1725792284.doc	doc	de8d2fec05ff4e86930f2de6036d7a040532c7cf0a495f655b91690ed9351630	32.26%	Heodo
2019-12-19	newest part_5129331q6.doc	doc	ac9ba0e203a476c01aaaf83135bc6ea60113d473eb493a04cf01c6885c729c4b	32.79%	Heodo
2019-12-19	Christmas-greeting-card.doc	doc	fc110dff7efccb57e0a3e950ec1eed6021914ef8089083ce0243f2e9da2c7c23	32.26%
2019-12-19	greeting_card.doc	doc	d394ed6a30ff8bd2c2812675561d9662c72ea9d8c987dd329046f0ecfdeb9177	32.76%	Heodo
2019-12-19	Christmas-eCard.doc	doc	72f53ce3875a3c782c2710b10429dc1704496debef22f564d49ac4f4d226d3ea	29.03%	Heodo
2019-12-19	Christmas_ecard.doc	doc	748a43d5b83cab52a934730c8417be7e1b8493619c108036e2e2ed7def80d1b0	25.42%
2019-12-19	Christmas_Greeting_Card.doc	doc	77d6e16bfe0c08553094c4d421b8fbe2e19da685a837ec432e153c31376fc803	24.14%	Heodo
2019-12-19	release-D3L6727861.doc	doc	db9bfe2c7e0ebd2aa95569ed9992dd704eee255a25741a6a1f5b48db58cd6a47	22.95%	Heodo
2019-12-19	release-G117255362.doc	doc	df0c6477bbad003cae5aa4c6d82e9b322fc079c3cd62e7a96f52aeeca677d402	20.00%	Heodo
2019-12-19	COPY SD092413322.doc	doc	1612cd9b94f1c335969ff73c085dceadf11615bc296caea41c9628fbab30d5e2	21.31%
2019-12-19	VER 12_19_2019-1F477072105806.doc	doc	1d51f9b2c4937c72666a8affa24b3c865616145fc531cc85e933dbe38f59f853	n/a	Heodo
2019-12-19	part_m02m0tv4wk5.doc	doc	23eba3429a21c5e63057883138a850ee673c9d433478a5a4b92c58984f4de218	25.42%	Heodo
2019-12-19	VER-ro5m784wsu.doc	doc	44fb08d52fa2f1a7c756b47e280321e6939e78133de074bbd357e39360262f88	22.58%
2019-12-19	88154298755.doc	doc	9dd56b030a5a2f236d92a69263d255bd3967925353533e3f6ec530bbc0c5a7f8	22.58%
2019-12-19	PART_upt24n2s9u9.doc	doc	a39c2dafc0fdb36d71ac711fcfda2f408004d8024e52e9ddf7f17f4e811a5349	n/a	Heodo
2019-12-19	UNTITLED_12192019.doc	doc	139113f465022b7336c3cfa9e2ea54952d56825d295a0ff62dd3e8cc09483d24	21.31%
2019-12-19	UNTITLED_1lql4pk0wl7k.doc	doc	3c39362f43fe41981ffdf81f20a60e3148f62011a471012186be5f2683a8b64c	21.31%	Heodo
2019-12-19	INFO_12192019.doc	doc	cf080cecf871d837c84b70ce57518579cc126c06cbcc720771ec723aaf44813a	20.97%	Heodo
2019-12-19	DOC 12_19_2019-82A002570263756.doc	doc	cf65b38b2650623e1361a482d1e8e8781019d7a29cb757cf79c1e276583838a8	30.65%	Heodo
2019-12-19	12_19_2019-7290847130.doc	doc	e3b8b39aa821af3e0c5ff412f47631916e45f432148625981509b7be707054c8	24.19%	Heodo
2019-12-19	part_12_19_2019_G580404.doc	doc	33cfcbc524f3cf95c916111345c6ae43790b0b00195d64b778fae42e8ff8bd19	25.00%	Heodo
2019-12-18	UNTITLED C409442.doc	doc	ee6ada923be64eeb91259b8c8549ff84487f118e43d0079ceb5a80f64fff4b39	24.19%	Heodo
2019-12-18	STAT_12_18_2019-BH55319867833.doc	doc	0ecd1354bc8c143621990120f9cb143ca6f8a740e5c152305c9955cfceed400b	n/a	Heodo
2019-12-18	12_18_2019_H44760383.doc	doc	65d7610fcfe1d4deecfd8c811b1fae51cfc10778b3215ee85d3125c37aca31a9	n/a	Heodo