URLhaus Database

You are currently viewing the URLhaus database entry for http://flexistyle.com.pl/pub/OD3l-mZXF4Y6G-module/security-area/083269430-Xt8ieI/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	290359
URL:	http://flexistyle.com.pl/pub/OD3l-mZXF4Y6G-module/security-area/083269430-Xt8ieI/
URL Status:	Offline
Host:	flexistyle.com.pl
Date added:	2020-01-16 21:27:04 UTC
Last online:	2020-01-22 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-01-16 21:28:03 UTC to abuse{at}home[dot]pl)
Takedown time:	5 days, 17 hours, 45 minutes (down since 2020-01-22 15:13:54 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-18	Untitled 73708.doc	doc	fb680f476f064419b4c691854253bfbed052197faafca93d027f487c8de86785	43.33%	Heodo
2020-01-18	Attachments 34731348_09837.doc	doc	5bb8b7197cc1e9717f275644d2d24e4c332776ec9da58322e3d1520bf2d18e55	43.55%	Heodo
2020-01-18	70075-2765381544.doc	doc	7e6a4bbd6980416fdfb0a0a4f640f34c9b85b3d591e02d2e6c25fe0b1952b493	40.00%
2020-01-18	84657.doc	doc	a199f7115c7a50f782bdd9c055313c4b7488b0220779f0bf60d8bc57a05588e5	38.33%	Heodo
2020-01-18	155958-624594.doc	doc	723e18efedff5086e5ee078490176f0c7e408ebec167c0ee458c9976c3745a48	36.07%	Heodo
2020-01-18	UNTITLED 2081457_821324.doc	doc	8ec7b546faca87b18192561fdbe4f11954c88dcc3fe617bf340f27821d6d4989	33.87%	Heodo
2020-01-18	Attachment 4980-5014149.doc	doc	0725c7fdaa743d5e01fa2f8ac36988c0210db3d037aff2b46b649d1d8c359ec6	26.23%	Heodo
2020-01-18	Attachments 67126732_79737.doc	doc	05ed49924f9a734be2613850bc14127dd985d33127bb4974abe4141032765d35	29.03%
2020-01-18	Attachments 346.doc	doc	382d4b003341ac1a0515f9034bbc23810f761be5352f3d7879cc42a688d7faa7	27.87%	Heodo
2020-01-17	298722_2542.doc	doc	934d09dc782edf79b211e9f093e41287e15c64271bb2075d1ac9c9326f1db595	22.95%	Heodo
2020-01-17	UNTITLED 686367794.doc	doc	662c45aa9a011fd5404b6d5ea8d2bb53a0b723d8fcdca58a66dc66aa6561b0ea	20.00%	Heodo
2020-01-17	71260636.doc	doc	b9c15d055c517660d17d42e9339bee94435bac3f675cf54f3174efaf73cad47a	20.00%	Heodo
2020-01-17	6279176_198.doc	doc	e7c83acc1f74cebdaccbfd1af1697b358dcc86a93cc49a977602623a237a7b6b	19.67%	Heodo
2020-01-17	Untitled 075121.doc	doc	7c00f98b5ef5a762e53d392dfe229f00db813cf40ee114c3406c084f1474454f	21.67%	Heodo
2020-01-17	Untitled 127107491.doc	doc	5a0bb9b15555a25dc31379feede50b11df32b3fdcb7fa379d4e0a04fab25a7df	20.97%	Heodo
2020-01-17	Untitled 4196106.doc	doc	14bb34f9809c158815060a077bfd7fd2c0f71ba0feb346eb5b9c65604354f35c	21.31%	Heodo
2020-01-17	2407.doc	doc	d38fa75be4d2453e9c5bed4a61a775dfb952ad6c991e9e68c9868aa085b94d16	18.03%	Heodo
2020-01-17	5573492-70288351.doc	doc	4926c006521338ee85d1c82e53db2c39908c6e427d7570cfda91eebfd40b04eb	22.95%	Heodo
2020-01-17	Attachments 70220.doc	doc	ed3f5dfbda732c80c2f439ff47c8c6d45ce5215d5cca1ad8765c955395cc6881	23.33%
2020-01-17	85196971.doc	doc	a45dce53a3e6f9efbd71ffa07fabe3f67bbd2c4fbe7852123172e4a0405aa71d	19.67%	Heodo
2020-01-17	2952526-5536123.doc	doc	f6a634c9998a0d1b36562b23d5956f5f3da1369c9827c9cb198856ef2197ea35	18.03%	Heodo
2020-01-17	Untitled 500788.doc	doc	0910756013c93bd04bb0df0b501ac958c61e561bf65b445b4b0a56e597a1310c	18.33%	Heodo
2020-01-17	7268-61756556.doc	doc	70bc9fa11de427443cc32fe5c68e424ce770562ef9fb622d232b78b67c6e6d99	n/a	Heodo
2020-01-17	52536.doc	doc	3e8a03dddac2dee71500bc999f719995238ec62bcb3a387cffed6ef7662cab94	19.35%
2020-01-17	205354688.doc	doc	c5a39e53a413699b4b2b145e631810d46fa5d66b2bac69c770f15535d3f2461b	n/a	Heodo
2020-01-17	Untitled 02844083_69381.doc	doc	c337f30bb0849f7809a7492b21ac4096beb20d982dd2080d1879c14cd84cd617	41.94%	Heodo
2020-01-17	Attachments 45966.doc	doc	baff02e524a1dc5e3aa3c7d79cd378bc8c858c899d1e25e75b0c13bfcbeb48fe	40.98%	Heodo
2020-01-17	8714571474.doc	doc	50fe680f097aa4650da00941e37bf14bd1161820465c26b782073eb65052af9e	n/a	Heodo
2020-01-17	0635636268_1889.doc	doc	6d32e86fcbbae85b744c8882e200b3e0bc4c568c6c485cf579e77a912d5b2bb1	37.29%	Heodo
2020-01-16	26849235.doc	doc	f942462b771aaec7fb9e1bb8fc3eeeed0fa6c2b229eb6950b8135afa16403305	n/a	Heodo
2020-01-16	Attachment 781.doc	doc	ff459925a85db389a7edc8d34a3790aa03a75c0169484d7aed22ed773e14016f	37.10%	Heodo
2020-01-16	2432702_501.doc	doc	5b5fc12126eed77880537114373507d05bd137495a2a431d504b63de952c5851	36.07%	Heodo