URLhaus Database

You are currently viewing the URLhaus database entry for http://devc.121mk.com/wp-content/PARMRGlRJ/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	298692
URL:	http://devc.121mk.com/wp-content/PARMRGlRJ/
URL Status:	Offline
Host:	devc.121mk.com
Date added:	2020-01-27 09:44:05 UTC
Last online:	2020-02-02 08:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-01-27 09:46:02 UTC to abuse{at}cubenode[dot]net)
Takedown time:	5 days, 22 hours, 59 minutes (down since 2020-02-02 08:45:50 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-29	Invoice-H33_3534796.doc	doc	7cf8f24d7e8b1e2f63bfa7a18cd420a03fff44126e80aed8cb90fba3c4e986ac	52.46%	Heodo
2020-01-29	invoice 7_624576938.doc	doc	e32cca6446f2ddd8430400b16fc171ab3163cf8222669d7d9144e9c85904d5f5	46.88%	Heodo
2020-01-29	Invoice-TJI54_176577607.doc	doc	ce585ca3bbc24cf3e93360b57e2f8f9574cd89823963cd35ae08bb6a252d682f	46.88%	Heodo
2020-01-29	INVOICE-HUFX0_809887.doc	doc	0a84308348fee6bbfe64a9ef23bb9c32cb319bcdf5cf78ddfda4a83dadea4b8e	45.31%	Heodo
2020-01-29	Inv_257_008220890.doc	doc	32753598f94412fe3dc382dc12dcf2edf7881d9f07814c82aeec36481b9362b5	46.03%	Heodo
2020-01-29	Inv-NKWF39_791049280.doc	doc	ea3a0a223474592635d1fb7a0731dd28a96381ad2562e3e064f70e2d4830c39d	49.18%	Heodo
2020-01-29	Inv_CEMW156_0906166.doc	doc	849aedf219a4f6ab15e2c5c653a8bbd6fce909c51d2e95984bf6241f6b939e89	48.39%	Heodo
2020-01-29	Invoice-GE99_2817995.doc	doc	1fe8cea2fabc31ad37931e33bdba652c012489533daa90a699e3aee3b8d75b91	49.18%	Heodo
2020-01-29	Inv-31_04328948.doc	doc	0d1de45954adee600bf2a41e5b1de25ba4ead4b3938d1c987f6bdf8e48fb9a42	43.55%	Heodo
2020-01-28	Invoice-3180_999013.doc	doc	1f826649cf4d7894c52b645fe736ff139ff80f0e72ebad38385e8882bc545ca8	n/a	Heodo
2020-01-28	INVOICE-FH1088_691988195.doc	doc	0617b35ff84886cd395bbf20745f3b82a830d97b07b0085b0f4aa056bcd57cd9	42.19%	Heodo
2020-01-28	invoice-C437_522586.doc	doc	9dbf7690bf328942e99f61b0eae8db502e74c272b7499da4342e6ee7d915bda2	40.32%	Heodo
2020-01-28	invoice-2360_1982873.doc	doc	f635c4a870ec9061d6d0d75ad2909b9c7ebe4f21dda6a4c359211fe146df925a	32.26%	Heodo
2020-01-28	Invoice-502_4922893.doc	doc	e6551fa9814756f1d99f86fe2713d695e930e5930e397affed4aa07d4ea63ba6	29.69%
2020-01-28	Invoice-64_012727.doc	doc	92c3a1a03abdc8976c1b9e1b200a2b08e114d2e6dfa54566f81f16a2671e9735	25.40%	Heodo
2020-01-28	Invoice_NB2_5100098.doc	doc	ff71f06910cdebceb665fef3861262fbabd9f92ebd7285926a1b3d4ed3a7c166	26.67%	Heodo
2020-01-28	Inv_PLHI37_04356206.doc	doc	a7cd0e0d4371256091f7a81ff6100974822424c0c06e2dd5e07956b1ab62c19e	24.19%	Heodo
2020-01-28	Invoice-VAAN5966_026414.doc	doc	160fe2d4287a96770020461a685816eb0d9ba8b3a3275b86f708784b778f380e	22.58%
2020-01-28	Inv-N4036_024734639.doc	doc	a6b9f25b3f632a071e548d1e092d8557eedd074094e5e1a2dd684a724fb07fe6	26.98%	Heodo
2020-01-28	Invoice-W446_13777954.doc	doc	32a27468a4355d462e5de6e29290189f023ad6b51836d3134dcb19a74f615f51	25.81%	Heodo
2020-01-28	INVOICE-NA877_900818.doc	doc	fcdf9154d769d5e1f3935355b39b57010d978fd2dc9ad24a1df12131f7d34155	26.56%	Heodo
2020-01-28	INVOICE-F46_01628418.doc	doc	42cf3dc2c05800ee63913c2437b824f17dc2999d761edc2c318a7b94fd9ac4a4	22.22%	Heodo
2020-01-28	Invoice-K6_00533576.doc	doc	0f30073111c54d8f89bd3d4c031b77db7d32447f0bee27914ac94ffedc2baef1	23.81%	Heodo
2020-01-28	Invoice-TZC5267_575236293.doc	doc	37f7008209b0cf19267afa8ccdab629b76f4bfa992d7f77ce2c098e5e473c8db	40.32%	Heodo
2020-01-28	Inv-68_6494447.doc	doc	6f7ef2942319a8f55b338d43ac0717e2999baaf867ba160e6cdc15c85b47a4e1	34.43%	Heodo
2020-01-28	Inv-597_396380412.doc	doc	4732690cf746cecd8bd49d095d5514cf185703860490402cc2a5cfbb9e3fadf1	32.26%
2020-01-27	Inv_P95_0519998.doc	doc	11c1f2089f30fba10c0d8e7a46d5b5a163acc645ae1ac899f9c1da16fd34d5cd	31.67%	Heodo
2020-01-27	INVOICE-874_0717308.doc	doc	cf6fc0c9b296a21a605c029d19eab5d466b785cdc4efb16d18963b598f82ccde	n/a	Heodo
2020-01-27	invoice-RLG58_877030565.doc	doc	b8234c3a29dfe136921812c6011604fac4f3860df104d73b44365fd690d34e17	n/a
2020-01-27	Inv-TW3527_559258.doc	doc	844e6dce32ab6c95097c5fd947761f9c4c47cd4a18f6f88e94b906eec219b073	21.31%	Heodo
2020-01-27	Inv-5_763287279.doc	doc	b08e839fcaa91713751d0ce0fa1ed4f8bdd81ab3803347177886cfc3095440a1	25.40%
2020-01-27	invoice-AD7751_30630347.doc	doc	ff41ca3c8f2ec42a86f291c2cd1c4b023767b2b41782d20933cc96071bfb168a	25.81%	Heodo
2020-01-27	Inv-TJR2_99687758.doc	doc	dfaa827439562eeff34e4ee725e9e1d19ecab21556134361ab102dbb7f41afce	22.58%	Heodo
2020-01-27	INVOICE_D093_939398.doc	doc	0c487e050a7045c40d0a9350685d4b0a63b663c390707a09ebf770ae3a7703d2	25.40%	Heodo
2020-01-27	INVOICE_30_586251578.doc	doc	6cddcfd58c789c8db9ae41d6a91bf3070fa44d597a43db9d3726e6b7bf56a93c	26.98%	Heodo
2020-01-27	Invoice-RMJ199_505649.doc	doc	ace8618da66520684eb96d22854978008a5246ec4f1ec58246fe95c99911c5da	22.95%
2020-01-27	Invoice-Z253_334182.doc	doc	e026510aaee7aa7ee132803cced039b9c93cafad3c767969cbe1373b346c1c48	26.98%	Heodo
2020-01-27	Invoice_222_8443568.doc	doc	e6b9b81ce547eec06c402e08fd665a7426c66e956a6f2cc5ed510072bdbb4433	n/a	Heodo
2020-01-27	invoice_89_4686260.doc	doc	e8884f9a8ae1250edb8efd989f18ad27241735365d3a116519251b6aa3f86358	24.59%	Heodo
2020-01-27	INVOICE-636_826841616.doc	doc	79863d7ceed0d6607a97d4a22918af499c9f49944eb7b69ec07132601038490b	22.95%