URLhaus Database

You are currently viewing the URLhaus database entry for http://abakus-biuro.net/5KIZLLC/PRK166066140HWKI/1294806602/ITAH-LRWNP which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	40097
URL:	http://abakus-biuro.net/5KIZLLC/PRK166066140HWKI/1294806602/ITAH-LRWNP
URL Status:	Offline
Host:	abakus-biuro.net
Date added:	2018-08-08 16:28:51 UTC
Last online:	2018-09-20 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	unixronin
Abuse complaint sent (?):	Yes (2018-08-08 16:40:01 UTC to abuse{at}home[dot]pl)
Tags:	doc emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2018-08-10	WIRE 23QQBPCW.doc	doc	136cc4762f5d36541f46e018328397e1bac634a88282587ba26385c780288087	34.43%	Heodo
2018-08-10	WIRE 333CWJNJC.doc	doc	3751fcf093e112800f61a83b4ed5392a6665ef1d8be22a104111aec55b39d709	35.59%	Heodo
2018-08-10	ACH 7536GZPHDUN.doc	doc	2759147c5b948b705943cc4dfe7932aaeb14bda833ed00a850d1ee5543bac6c3	n/a	Heodo
2018-08-10	WIRE 2I Aug-10-2018.doc	doc	aea801f386a57a8b1bc1ec560cac259455cf1de3fbece36ab27ab54cba4805c7	36.67%	Heodo
2018-08-10	PAY 7RHI Aug-10-2018.doc	doc	7a103ac80d6b58922f979c4f6ac95aebf085fbbaa02e4ee269d13231b39c63c1	n/a	Heodo
2018-08-10	ACH 4411PKJWTV.doc	doc	fc368060fb4946b073b55e56d495e7ab249dbdabbc8f7cd809b55089c9854fea	33.90%	Heodo
2018-08-10	WIRE 8JDAUFCP Aug-10-2018.doc	doc	56de2fad613807e46613e7159681a962cc8c54fc6ed20c7c3e90e104cdbfeaff	n/a	Heodo
2018-08-10	PAY 8NQKI Aug-10-2018.doc	doc	a10a4ba4a1727a05d019f8f59d90d72419e63bb4d3c80c49037a194f77592563	30.51%	Heodo
2018-08-10	WIRE 90864XQQX Aug-10-2018.doc	doc	a710c78fbd5aa2ddb9bf81654400f7d5d593cef87a97051a05b9c7af6bd6c8e6	n/a	Heodo
2018-08-10	WIRE 842828TMOYHPRL.doc	doc	21e781747a69ebeda636616b47fdd4ff871b9c672aad10f3cf95cbd55eb8b169	31.67%	Heodo
2018-08-10	ACH 677979UUW Aug-10-2018.doc	doc	21982965fc5661c509d1833f8fe9caf02d7649619b7b542d7a735abd7936a9cd	32.76%	Heodo
2018-08-09	PAY 4704QKRLGSMP.doc	doc	df45a5983c2aa39471161f61f5336acaca2c18c552845467f84a8ca7cac84792	n/a	Heodo
2018-08-09	PAY 750ISA.doc	doc	da09534b67058e48e72b4a9b7a1d620818291bd7f684a4b05ce6a08ce079c90f	31.67%	Heodo
2018-08-09	ACH 2QCXEZH.doc	doc	cfa7724adc8ed5123e38607f34fbbd7bbdeb531ff1456b0733070f15c2ab1217	n/a	Heodo
2018-08-09	WIRE 5650OJJ.doc	doc	340f3db26a6b990dfddad4b6685c9b557b7dad1afc6902f1099e90a159753488	33.90%	Heodo
2018-08-09	PAYMENT 3270118BIR.doc	doc	432e420e92ea7d24bd6ce29a64e707bb01de7fc178abbe4a1563be91acbce3c9	31.03%	Heodo
2018-08-09	WIRE 53505M.doc	doc	f9074f28aaa45903dad08e615cd836241f83bf7a43bf500c8a09785eb774e547	31.67%	Heodo
2018-08-09	PAY 61MSWWP Aug-09-2018.doc	doc	4e1b752854a3087ac35addcde982f4f9b4b254a3601642fb0142ebb3803dfa34	29.51%	Heodo
2018-08-09	ACH 84IRD.doc	doc	4234d1c86ec274f439ff4948c531fc4ba9f1e78a0bade4ead82da90bd3272fa1	39.34%	Heodo
2018-08-09	PAY 24LBH.doc	doc	9c45f42b5e6c88fc0d80708c11a9931be80e44aaea9a895379b8c8e2d92e1d19	39.34%	Heodo
2018-08-09	WIRE 0435N Aug-09-2018.doc	doc	16c52af73c5ae5f2b52196cc111f1b3c924b0dc4514765728826d8c20331e36d	40.00%	Heodo
2018-08-09	PAYMENT 07631I.doc	doc	450643ad882f8d3389d9d8a744f14843cdb7fbcc0b1509229f411ac91acdbc94	40.00%	Heodo
2018-08-09	WIRE 735HSSRBK.doc	doc	878d58170dc994cafb826f76d5c7f3fdf3b85b8e9e5173db79b714b7dedb10fe	38.98%	Heodo
2018-08-09	PAYMENT 235400SVR.doc	doc	a0bf11fa96167e44fc8d6f7b2218e2374d95e5aa08db81a1b763e509a53dfe83	n/a	Heodo
2018-08-08	PAY 091200CKD Aug-09-2018.doc	doc	87f377899e7ddb72b1ee1d16d7726b36da047152e8aac4d30ea7e192c1c54931	37.29%	Heodo
2018-08-08	WIRE 339UXQSHR Aug-09-2018.doc	doc	49d5101538826a1af8671f1cf85416870d4aec5dedd74c4727e4b07fd0b82297	32.79%	Heodo
2018-08-08	PAY 3238BCS Aug-08-2018.doc	doc	9d27b9db23468f6c1c167b9196facd7dfd8435d5d7f1b5fbfa2ffa90812934af	37.70%	Heodo
2018-08-08	PAY 16366GYWENW.doc	doc	7719ffce9acd3c3db888dc04273188fb87b1b3e5e1fafc65e8e47f61f56b254a	n/a	Heodo
2018-08-08	PAYMENT 1838031UCC.doc	doc	4a016dcd5e8b7c307101b1f263e277197c5d89d51b450ba2678c6885c18e377e	35.00%	Heodo