URLhaus Database

You are currently viewing the URLhaus database entry for http://burakbayraktaroglu.com/RRM/venb/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:287969
URL: http://burakbayraktaroglu.com/RRM/venb/
URL Status:Offline
Host: burakbayraktaroglu.com
Date added:2020-01-14 12:43:07 UTC
Last online:2020-04-07 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-01-14 12:44:07 UTC to abuse{at}as42926[dot]net)
Takedown time:2 months, 24 days, 9 hours, 11 minutes Bad (down since 2020-04-07 21:55:14 UTC)
Tags:doc emotet link epoch3 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-01-16invoice-IGBV953_76075885.docdoc b44638c59970903aff549cbdb9555ba334f7471ff807475bb8e1713cfa35b0afVirustotal results 29.51% Heodo
2020-01-16invoice YC486_179154702.docdoc 5d84abef867e9831eec3084ed35afd024b146946b2a83694e682e80738654d01Virustotal results 28.33% Heodo
2020-01-16Invoice-BW17_203587918.docdoc 6980a7c6b57f516610273662e2e44a20a81e4aaef836f7ba288b2b914caa66baVirustotal results 25.00% Heodo
2020-01-16Invoice 20_81693975.docdoc 52a5344c0fc9ddf5e6d817f2c170f379de298442e9f1095608e1b87de85eec5eVirustotal results 22.95% Heodo
2020-01-16Inv I938_49.docdoc d102ef03b39953b53e98b31f5c26f3cd37e209c38cb9204da92b652a46e0f744n/a Heodo
2020-01-16Inv-NJ525_93185.docdoc 37e98c8ff3288199a2a4ae056b48dde6ad9ed9cbaf76e837ded084ad42271771Virustotal results 44.64% 
2020-01-16Invoice-NW40_1881.docdoc 269965b4af6141362583544cfcfab53caa4b1b3eed4f19502792575b2786d47bVirustotal results 42.62% Heodo
2020-01-15Inv MW873_37.docdoc 25580aaf887b45f623b2b3a211ba76e8cf6a034348736a9772e4fa59c4e38028Virustotal results 41.94% Heodo
2020-01-15invoice_SWO86_7901.docdoc 0f0f2f15c319d7abd2bf1f48a46a0cfcb8f4b08e03340187d2a119f1c64576abVirustotal results 36.07% Heodo
2020-01-15INVOICE_JBZ29_839.docdoc 3d8e29fafb3a34382564edcba3c640bb4626eae9cdd23813b45208d0dc20ff99Virustotal results 33.87% Heodo
2020-01-15Invoice JO49_07134.docdoc ced74a717f09aa4ee30f883e7140c28a91a1911384510acf14127ecd77ae577cVirustotal results 35.48% Heodo
2020-01-15INVOICE-FL39_0008.docdoc 1a86b0027ed894d1cdf56b5880263c545a5fced00774690756a6c3c0a86cb013Virustotal results 29.51% Heodo
2020-01-15invoice IHO84_499.docdoc abc61f312162f9df332438a4bbeec7b50ee4294b7ba314212f0b549bb14c08c8Virustotal results 27.87% Heodo
2020-01-15Invoice-D353_0809.docdoc dcedb53b529085ae7137a2988e6fae5bddcf56c9411337d2b8a2d449f0091086Virustotal results 24.19% Heodo
2020-01-15Inv_CL386_15635.docdoc 78a310a044510fc979e903828bdc3831844a04b5c01b34397e52e3bd62c96674Virustotal results 20.97% 
2020-01-15INVOICE-MDG839_617.docdoc b7d6a9d883ceb3098ae6e82cb15a930133fd838486587f4f1fee1145cfc87b3eVirustotal results 22.95% 
2020-01-15invoice_MH086_41.docdoc d8c471af6cd71b2f8f787a8495e917b1840894d61b338e78b5acac899cadf519n/a Heodo
2020-01-15invoice_X044_579.docdoc 5307129b5f654008272ddb0718388460a9f405cbbe2ce3c7dee8d0992a153dfen/a Heodo
2020-01-15invoice-Y66_17.docdoc 8286cb8a72b77a5dacae5e1e4d7cf07916449ea76edbb706d7be01b6282b4968Virustotal results 17.74% Heodo
2020-01-14Inv-M381_50518.docdoc c912fbd5e3979ce3299c6cab4db775c4d86fcd1c779d4c2b402931f558484d99n/a Heodo
2020-01-14Inv-J356_002.docdoc 13d193730643fc99a4fea46ccf55f8083cce38c2af110decdfddb59a598d7be8n/a Heodo
2020-01-14INVOICE M205_555.docdoc c088977bf0174e3632493d2aef08b77a3aa0d3fe40c4ea66ee38f8bd96a6e6c6Virustotal results 16.67% Heodo
2020-01-14Inv-HYL43_7516.docdoc 88d703fe59f728817d930aefece5014cd75324b02568f6d2a9f69efae7915871n/a Heodo
2020-01-14invoice-FJ42_7526.docdoc 75eb88048fa201b46d96cca9fa12f4b4917232c3d963596554a6970d007a639eVirustotal results 13.33% Heodo
2020-01-14Invoice_RWF81_446.docdoc b292109b95153bd3338548b9cae28b7783b99fb07bd89d00130024493e4fa9dcn/a Heodo
2020-01-14Inv-M841_84.docdoc 5512265b6fbdea99b35c4cc766cde6af08cba2a1dd164d56becebdfd6e5e0c1en/a Heodo
2020-01-14Inv-PF00_535.docdoc d50fb4d2b5aeca55182160f95f244527af5d00d92c8e760906394e338cfbe992n/a Heodo
2020-01-14INVOICE_YLX415_13706.docdoc bff484c3a259993eded74499820830eb2da53828fcc763b8f600261572c42b98n/a Heodo
2020-01-14Invoice-LRB16_204.docdoc 0faf3fd55b88c2f80c3c5cd739ce0bf7f31ab2beab1ee1922485d42cdbfddff3n/a Heodo