URLhaus Database

You are currently viewing the URLhaus database entry for http://lula.vm-host.net/wp-content/plugins/o714-badx-66007/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	293684
URL:	http://lula.vm-host.net/wp-content/plugins/o714-badx-66007/
URL Status:	Offline
Host:	lula.vm-host.net
Date added:	2020-01-21 14:19:05 UTC
Last online:	2020-01-28 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-01-21 14:20:04 UTC to abuse{at}eapps[dot]com)
Takedown time:	6 days, 21 hours, 51 minutes (down since 2020-01-28 12:11:40 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2020-01-24	INVOICE Z008_6242992.doc	doc	d821a8703d05edd646a699d3b35e4479561e7129d9c3b0c8ed0d36d87fd7e5c5	26.56%		Heodo
2020-01-24	Invoice-WQ67_42979336.doc	doc	8b2e4b7244319f99c6c6813e954f42c6f9580320d266b016e4752e25c56f812f	27.42%		Heodo
2020-01-24	invoice 640_380050049.doc	doc	21ed646e9c73d65b5355a50adb7b3a7b2f6d76b45d4248e2ad2480fd784ee8b5	25.40%		Heodo
2020-01-24	Invoice NDQG11_603770.doc	doc	7b4b6ac3d2e40c5b06c25952410b3768cba4bcb9400e50fca921115eaa1ab311	25.81%		Heodo
2020-01-24	Invoice-UC4760_090216.doc	doc	5592927603fbd6cec249d5122af058b4c7b1fec2d5a59d0a6ed016a81c43fc97	27.42%		Heodo
2020-01-24	Inv-GI95_522227.doc	doc	7c181b5800d9b531de9f431cbd6947e93f55ac0e5f6fcad200acf2466f411a8c	49.18%		Heodo
2020-01-24	Invoice_F5_1952705.doc	doc	3019c5713b1eae96e9080ac03f4c948abb9012ec8937fd082bf6f26c9aabbd98	46.77%		Heodo
2020-01-24	Invoice-UZ51_923291294.doc	doc	8e96c8617604fd15ab39a4e48e257ad769bfc12440f857da0cb0b21ddcaa86dd	47.46%		Heodo
2020-01-24	Invoice WZM1963_101868.doc	doc	5c566546a1462e17becc0023ddfae0f8e4d8b495e4feda5bcc5f7fa52e0ddd0a	45.00%		Heodo
2020-01-23	INVOICE-QV4_494204.doc	doc	4d65aa1d4d4356e59a68839a7e437a4e3d207e6bf481c90baf4ba6de5b9d0ed4	34.92%		Heodo
2020-01-23	invoice-R3_796296901.doc	doc	4cb4d8d3fe9f861f5ab75bb11d23fedf98a1561b3aac9173f5dc211b8bb8bd5c	40.62%		Heodo
2020-01-23	INVOICE OYLB48_371146555.doc	doc	c178793508c9ec1955d363fa70ab41ca7a17928c7445a1594789904e320ce640	29.69%		Heodo
2020-01-23	Invoice-KKUJ2543_556092332.doc	doc	af8976ac691aa40327d9844ef283ec4de84fd38c56d57218befd747516e4e92e	32.79%
2020-01-23	Inv-KPYH02_86809992.doc	doc	a822d46ff789d95a0a7433319bc99c759a917cbcc998042645f54bd8bed3eb40	31.75%		Heodo
2020-01-23	invoice-IERC40_42208089.doc	doc	3475216fd7f40791c7a6f620a37544ce6ff9866f4ade999ad3e4eab76ccb91a7	31.75%		Heodo
2020-01-23	invoice-CO957_49385254.doc	doc	93500a32e011f40c983cee5dd2d53b447421643672ec0823b81e5f7d5125a6ee	31.75%		Heodo
2020-01-23	Inv_VOC70_78146599.doc	doc	e41c558156d999fcb01df97b67cc0df4652e2799d05f12f7bf987d9d54e668ac	29.69%		Heodo
2020-01-23	Invoice_LJG511_2542742.doc	doc	343354c5822df99e96d6b88dc7da718785a030ba68942f8cb71584e3ddeb78e5	26.98%		Heodo
2020-01-23	invoice 761_122939206.doc	doc	72740660ce310e6a3473852c7f6cccd0580c45847c8faaceb2745591c5a9fd77	27.42%		Heodo
2020-01-23	Invoice_S987_92535949.doc	doc	4efe99e760c862d17d3128bc8c9bfe85a4512b981ac9944bd6f3c38d0d02651b	28.57%		Heodo
2020-01-23	Invoice-HBI1_45452777.doc	doc	6e51e0155d05dcff84597c83d9f3ecbbbc59c0d1763e7b147cc5592e3cbbd704	31.75%
2020-01-23	Invoice-099_641720892.doc	doc	f7fd1bc385e801ea09e47dffb635b82ff487f4b83f694447946569117c848462	26.56%		Heodo
2020-01-23	invoice SMCF1250_391873548.doc	doc	ef477d74f507594ec53f04f6c9cb1c1824df07044c0197d32197ff0f5c706d21	20.63%		Heodo
2020-01-23	Inv VAL8843_151978.doc	doc	023430cd6c69dc69f461d433915b89ed4b22fab2cbcc9882319f266d3e20f6d4	22.58%		Heodo
2020-01-23	invoice_RFK826_472244.doc	doc	68ac922c713a804c7deb999f07b98b907019e4c339554a965ee4251d5459b660	22.22%		Heodo
2020-01-23	INVOICE_YGW7_499921635.doc	doc	0f8e10bbdc8728918591e85cccb046c2773c40bac92da35c9474905528e4f22e	20.97%		Heodo
2020-01-23	INVOICE-WN4670_333282.doc	doc	b4f3c614764ab55febfefc958d4fb70920c4c17380c6d2adf4f77d68878598da	33.33%		Heodo
2020-01-23	INVOICE_XOY0048_955432.doc	doc	0fb7365da093214e7716801f1201aeae256ff726cb0d3b8a52cb379690744490	32.26%
2020-01-23	Inv-F1387_307107481.doc	doc	a6caf4ef566d28695b60b4316c66a9354a608127c38c5725d8bcde83f06c1ac3	28.12%		Heodo
2020-01-23	invoice 107_488501133.doc	doc	8fce0c3f5b2c7f7961769c009486ee767f9463bf3f80aee244f964717b5f0fc0	34.38%		Heodo
2020-01-23	invoice-Z30_708873.doc	doc	cfef2d0896c8f6b8665524c08dcadeaf306d68d6f41337b34bc6916d2b06e12d	32.26%		Heodo
2020-01-23	INVOICE-NMP082_94785187.doc	doc	b880f03f8d1480e05b41dd7f4f69cf55c05166f273b59619d8af1386d2c92316	33.87%
2020-01-22	invoice SDC5_8150717.doc	doc	5f90a562e8540b29714d08b103b911722e04e3662b4fa2326d1d4aadae35cc18	32.81%		Heodo
2020-01-22	INVOICE-FSN3_811116.doc	doc	8011476e9a36ab9f8defcd9fab9979d4a19203eec24376520d244caea880f353	28.12%		Heodo
2020-01-22	invoice_FWO2_77930784.doc	doc	f3d0f1bfe76e8a822d17bd917aed62d45fa8202d1906566abf7eee43e2881994	27.42%		Heodo
2020-01-22	Invoice-SZ781_9163840.doc	doc	029859049d0e521193d86baf0d209080d9d885e31b9ecab91b2c2484acd58af8	30.16%		Heodo
2020-01-22	Inv PJC195_062347.doc	doc	6318e663d8ed1530d52e0a3770b033d00fe037533ccf2e5a56e9f36a7eb28653	33.85%
2020-01-22	INVOICE_IGO6_29027264.doc	doc	cbaddeba959973a1c5448014b7fea29e3dc1a12f91257723f32b4671fffdbc5d	31.25%		Heodo
2020-01-22	Inv-Q8_3636407.doc	doc	65c7a5643d85ceecb76612f8ae912c3bee670e1a62f6c7ec02161277d2e11189	27.42%		Heodo
2020-01-22	INVOICE-COAD1_168502781.doc	doc	52d7f4734f53db7694e9447a9828892e502a775c853659a424cc5387f4bdffc0	27.42%		Heodo
2020-01-22	Inv-17_65754217.doc	doc	8c7789d0789c1577504a4fe78fcd941bf7213492ee0ac852e59a69e5f3365f2d	27.42%		Heodo
2020-01-22	INVOICE-E4_261216749.doc	doc	033a4c80c7605607fcab6670ef5c1ec7745d1a32e35a0e5d5805851860c0ed58	31.15%		Heodo
2020-01-22	Inv F7_735174.doc	doc	a92d0f72b0064095dfb9f3c33107f9d2968dacb8267450d79a0e0d265fe23941	30.65%		Heodo
2020-01-22	invoice EVBY627_713093.doc	doc	4a9cb1f8c8e74e302d7f141af65afaefe4f0d85c539a9cdc03380e6365f57044	29.51%		Heodo
2020-01-22	Invoice_OXC7_132843880.doc	doc	1bcbdde37aa474f7da9b6aa87a35050a574fde322383a5326ad3a2de336659a5	27.42%
2020-01-22	invoice XHL4007_728657222.doc	doc	a43dc802a0108342f8a4a1b4573770b5cbc35fca8be069827599a7708e2c16cb	n/a		Heodo
2020-01-22	Inv-MTT769_351870.doc	doc	88ce28544773169c40c27fca43e493f73d997ad67d58000d9554edd251754738	26.23%
2020-01-22	Inv_CKTJ2_6226945.doc	doc	e3c19433848a0b0023963e05496e09744003119af344985daad6a614cebfb1b4	21.31%
2020-01-21	Invoice IBRR5_5070509.doc	doc	1d0edf1be46e8567cdbcc608cb4556c0fd8af4a1f011a3a249c6d00e6e5ce8b1	n/a		Heodo
2020-01-21	Invoice_577_0863008.doc	doc	6e45a9ae91897bec6b4aaf8f30420016e4f6875e176f032b00102a67f94ed9a1	22.95%		Heodo
2020-01-21	Inv_MX9_08855452.doc	doc	3fb6dabd9e46b09e9906cad336321983eedb8601725e0cfd49c9e99ddefe09c1	n/a		Heodo
2020-01-21	invoice HJLI6_4791726.doc	doc	7501ac37ca9adce1a6c87e4cc6db66d985a25c0a47eab1ebb098d308f8b1a96f	22.95%		Heodo
2020-01-21	INVOICE-RBK17_018638.doc	doc	e373a7a4b54c1ebc385e4200abe5710412cf82d191ba8c77801ae899486cdde9	n/a		Heodo
2020-01-21	Inv-UVMJ5584_14441982.doc	doc	f253f8785cefee4784e91ed42a4324ca5ae930c1b6cacaae7e3f615514747545	21.67%		Heodo
2020-01-21	INVOICE-VLBR5_323692.doc	doc	bdf39af4e8605a394e719886071063c2fc19109e675c98184882a276be5a9b0a	n/a		Heodo
2020-01-21	Invoice-CX990_384900291.doc	doc	08a411548d58e3087177a29c74daa8e41a5fba66715c8017c29cadc0edd4bcea	22.58%
2020-01-21	INVOICE_M4243_778923.doc	doc	87171d8a9f307a3eb15346cf8cc328cd6d28398b7095e88b869a518060f7e5eb	22.95%		Heodo
2020-01-21	INVOICE ROA6092_460354.doc	doc	3d92ed3132524db1228a514fdb88d1762c0b503da60fdcc590414a8b0bfbbf62	22.95%		Heodo