URLhaus Database

You are currently viewing the URLhaus database entry for http://baakcafe.com/wp-content/sxc-cwz-8538/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	300036
URL:	http://baakcafe.com/wp-content/sxc-cwz-8538/
URL Status:	Offline
Host:	baakcafe.com
Date added:	2020-01-28 14:42:28 UTC
Last online:	2020-02-03 05:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-01-28 14:44:02 UTC to abuse{at}ovh[dot]net)
Takedown time:	5 days, 15 hours, 0 minutes (down since 2020-02-03 05:44:24 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-30	invoice_NN9_93047233.doc	doc	e19f3ccd025e9f2bf16662b492d87df22a168d2a2c089f84b405062539cf2bb3	31.25%	Heodo
2020-01-29	INVOICE_R02_0313075.doc	doc	5452b9448c3310adaa86f6020c32d6ae4727fce5049f613ad9242e2f35e94eff	22.58%	Heodo
2020-01-29	INVOICE-QD322_1317989.doc	doc	e14bd51bea91be160aefdfd75c853ce85ef348e87400f0d1e14b64c7d46eb748	33.87%	Heodo
2020-01-29	invoice-M21_235233144.doc	doc	bd1eac417a2f82f5ed9f7dc86783678343738758322a16a7d21d77cd587a4f55	30.91%	Heodo
2020-01-29	INVOICE_L27_97465151.doc	doc	3bdbcccc69e55ca69203cb80868675eb9aed4e2e9f880d181e51bb341905b8b7	28.57%	Heodo
2020-01-29	Inv-LPV254_805715825.doc	doc	8a502f32c4e9b027761b883615a99071262858fe124e0f76a51ee65583ff4c59	27.42%	Heodo
2020-01-29	invoice-Z2_402633860.doc	doc	d799161c11a9fa5cebf813d7e231b0eccef0ef32baed2c1fabe5f0b250449c79	26.56%	Heodo
2020-01-29	INVOICE-KWRC305_409051561.doc	doc	ae350e475f5f34203313d523d6a5b8eec86357ef06ca6c9cc222d2c353506387	27.87%
2020-01-29	Inv-GZVP78_806455.doc	doc	603a04c67b941a3ff9345c94e890896e5570dd544e8ca3998f5197f45ab28f00	26.56%
2020-01-29	Inv-J985_63005911.doc	doc	19f29957bde797c4505244aec4c78ca3ff7e264967215abd6444d9f7c31da7ed	25.40%	Heodo
2020-01-29	Invoice-Y09_3113713.doc	doc	b14d70827d5d668aeb31e94be512fea9fb38ead8ec12cdf7617616801c76b6e9	32.26%	Heodo
2020-01-29	Invoice ESL909_380096122.doc	doc	b49c9eba58537f8d856daded80bc9493a83c508d73423b98686d4e8b232d61c3	32.81%	Heodo
2020-01-29	INVOICE-SL35_28951067.doc	doc	7cf8f24d7e8b1e2f63bfa7a18cd420a03fff44126e80aed8cb90fba3c4e986ac	52.46%	Heodo
2020-01-29	Invoice 9_291764.doc	doc	3a7a8518b41dd6c05289a08974c95a0038be4e5d1b0588edfd0589fcf22b0c8f	49.18%	Heodo
2020-01-29	invoice-SXR4550_53357273.doc	doc	11b4519b76957b0758381f8e19c5e15d8744f7974716642aeb586c615dde38fa	48.39%	Heodo
2020-01-29	Inv-HP4_313639462.doc	doc	bdcef0f16c70086414ff95b69fdbbe7eb0c9814308d3d60143b6c04dfc077257	45.31%	Heodo
2020-01-29	INVOICE-M53_341838.doc	doc	f6879431b901df789082452c1c4ffa29e857d247886e421df6dda5fb3d81ca5e	46.77%	Heodo
2020-01-29	invoice-FC843_579329.doc	doc	ea3a0a223474592635d1fb7a0731dd28a96381ad2562e3e064f70e2d4830c39d	49.18%	Heodo
2020-01-29	INVOICE_8_1030158.doc	doc	01dc8f2a419b640e733d067267aee6135ea117fa9704348547a0a2a0cc32926e	46.88%	Heodo
2020-01-29	INVOICE-ZDPU3_9014333.doc	doc	c25db0a6d33ba3de2ea0ea992b98117d92ef8cc0a1dc6d9ff79788db6ce7e06e	47.54%	Heodo
2020-01-29	Invoice-E3_5833479.doc	doc	0d1de45954adee600bf2a41e5b1de25ba4ead4b3938d1c987f6bdf8e48fb9a42	43.55%	Heodo
2020-01-28	Inv-VWJA086_552783555.doc	doc	f9a330484e52de8ab57a920eb93d6308dd150ba0001e7ba7cfb2a50edfec5ca0	43.55%
2020-01-28	Inv-0238_9164127.doc	doc	cbb70b343a501720d8750b792ce9ff7bc424725205f02f2f7a68ff00f8064229	43.55%	Heodo
2020-01-28	INVOICE-JLS966_403914274.doc	doc	ce91dee8cd26edf5a8b2284d0c4cf386715f7e9385fbea5a17b3f3af941ff8a4	n/a	Heodo
2020-01-28	Inv-497_0177077.doc	doc	37333de49c401a5feb18ad210055c826d070216914a6050dda8204235eeb3070	n/a	Heodo
2020-01-28	Inv-GPUK355_8020946.doc	doc	e8c780bbb1f9fd071b00776b138b3cf27c3815c7203593068e78774d4dbdb36a	30.16%	Heodo
2020-01-28	Inv YT7181_206826.doc	doc	b351412551b1d480fe50603de72c1d23a0afa22991461d2b812edbf5ad7d6021	25.81%	Heodo
2020-01-28	Invoice HQGL783_7391553.doc	doc	ff71f06910cdebceb665fef3861262fbabd9f92ebd7285926a1b3d4ed3a7c166	26.67%	Heodo
2020-01-28	INVOICE_554_681831.doc	doc	c72d3a18baf0023ac80353b06452c4fd43e003247f97c3aa98cee47b2f4bc27d	25.81%	Heodo
2020-01-28	Inv-MY38_671070160.doc	doc	d20e46f18aa02f66e789fb21031a4e615e5991be418bb44a2595931e229989c7	25.81%