URLhaus Database

You are currently viewing the URLhaus database entry for http://www.ezelleproperties.com/wp-admin/multifunctional_711456_lTCJr/test_cloud/SFPjo6DP_s2kd0issGz/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	415372
URL:	http://www.ezelleproperties.com/wp-admin/multifunctional_711456_lTCJr/test_cloud/SFPjo6DP_s2kd0issGz/
URL Status:	Offline
Host:	www.ezelleproperties.com
Date added:	2020-07-20 16:29:04 UTC
Last online:	2020-07-21 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-07-20 16:30:03 UTC to abuse{at}amazonaws[dot]com)
Takedown time:	1 day, 6 hours, 57 minutes (down since 2020-07-21 23:27:04 UTC)
Tags:	doc emotet epoch1 heodo ZLoader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-21	Arc 2020_07_22 TRN91988.docm	doc	cbccd20b9bc23454ec01bec4a0094e77dcc43d577666259f8d97aa30a118ac35	26.23%
2020-07-21	Rep V319734.rtf	doc	97d6a51f311c9af7f316be2f4d5ed00901bc5eb08c6daffb87fcf98ba3bd851e	27.87%
2020-07-21	REP 20200722 8808031.docm	doc	a8eaeae150c0c2f63c21f90adf8634bbd7653092f06a273410a5c26df3f0e25f	26.67%	Heodo
2020-07-21	file-20200722-S43534.rtf	doc	205a04626bdf6f3da605d8f8ba60126d02451085528330524d899a38520be8c3	26.67%
2020-07-21	dat-LR467013.docm	doc	6852b34db0c7a6150c1095a704236a1938b4ed46cd9d7bdfd412555ebf61890a	26.67%	Heodo
2020-07-21	dat.doc	doc	db88b385b97b7038cd233960f7f99ce350a72a3eecf6bbbcb227645f111d4e7c	26.23%	Heodo
2020-07-21	FILE.doc	doc	c14b2e55a66651e287542e13c52b9e5490534ee0d55cde933f5b6f0744ca27f9	26.67%
2020-07-21	REP_20200722.docm	doc	1a3131840aa881ca39803d20f5224e9339a2cc959ac92ab756f6ded8d81a1a90	26.23%
2020-07-21	Dat_P71872.doc	doc	fe0262abd2e28972585a28e0db4036c88dc6bc7858de8135e9cf58c599228037	26.23%
2020-07-21	arc-20200721-62856.docm	doc	31f2efffc02e6ee0f8a7339acbb1eb5aa9faa94b66709417b22f4c2fbc77e7d2	31.15%	Heodo
2020-07-21	FILE-20200721-XVJ421.docm	doc	2748fddcf19685fe54157b965c7332d3abe89dee666467ba9655e4ffb6d805e3	32.79%	Heodo
2020-07-21	Doc-20200721-Y638533.doc	doc	954e8a3b2f224ae59b0cbc54c3f0585184cc2e26aed9315eefae4f05fe73a708	33.33%	Heodo
2020-07-21	REP_2020_07_21_L071.docm	doc	50d5051a82f97571415ca2550517c6872eca80692c7d6db605082a0b9876d34d	31.67%
2020-07-21	MES_FE70133.rtf	doc	e79bfe79de1a90309dfce80db1cec1e5546d40c16c83e9bd96f19cb888a61f19	29.51%
2020-07-21	DAT_20200721_975229.doc	doc	f76760e19ef8c715a396435ac9a3fc931699e03a431a25ba0f9d0f20c104495c	28.33%
2020-07-21	file_2020_07_21.rtf	doc	193921b13cb10f97c4211e6694ee26cf2ebb7d6eff920ca64cc0d96252fc3487	29.51%
2020-07-21	File 20200721 3499859.docm	doc	1b3a66fa218971358919a1dc0cbfcd9fdaac7ec3278bed6109f0df2550dfe3b7	31.67%	Heodo
2020-07-21	list-2020_07_21-627.docm	doc	7203fa5731e4f60d782eb7248af9620384981a39282d70094f40946b1b7a60c8	30.65%
2020-07-21	arc-J807565.docm	doc	3d808e9e116ecad94d0839d1a951f8aa24c96f6dfaaa774a889edbb38c857b56	31.67%
2020-07-21	MES_2020_07_21_6281.docm	doc	8771e257fc13efea0c60ee072b8fd918f12f287632341fe5f20756d5675112d9	n/a	Heodo
2020-07-21	inf_93963.doc	doc	17edd29207d9e7cfbd660d6dff7a0c660acefd0b02131aa2eb8d280975bdca74	31.67%	Heodo
2020-07-21	Mes 2020_07_21 333.rtf	doc	04808644927ee4ee2afd1635e4f998de9740c04dc4bf72336e4c7faaaa7aff16	29.51%
2020-07-21	ARC.docm	doc	519ac8bbe23cc0506580ac08c5bc589d9d5382e00ea81898846715cef7502d8d	29.03%
2020-07-21	LIST 2020_07_21 6341873.doc	doc	e6294d7fbee243e8b73deee0a892f92f51e5c1ea412f64e55a109c42c9922018	30.00%
2020-07-21	rep-20200721-XMU287995.docm	doc	95d8b345f72bf52ee554c32232d32359be4cb131298f45e717641f6dd3e2bcad	30.00%
2020-07-21	LIST_20200721.docm	doc	f8b6027e9d4e24699d0d2de7d514c4fbc237b8f4ea6aa8aab0cb693fb0c26834	n/a
2020-07-21	Mes_20200721_7871.doc	doc	e03def51cc78a91e3c97945ebbf083bea9efa86f55fde07a8c4bae905c1b8671	27.87%	Heodo
2020-07-21	file-20200721-M937897.doc	doc	d1f13cff50c5950b6842f81fb632405df63e1d6a953d4d912b3f5ecfb1afa55d	26.67%	Heodo
2020-07-21	INF 20200721 A7101.doc	doc	15617b37ed587c9af7ec3de8d4aabd3de95ded6604f652abea14822da2c94ce0	28.33%
2020-07-21	Rep 2020_07_21.docm	doc	3b2f5f46ff691d1339cd98d00d79cfc31b0a7c7820a17c45c7be9197a392f2f6	26.67%	Heodo
2020-07-21	dat 2020_07_21 KOY630288.doc	doc	8e5c404214aebb7a65039287dbc762e68cdd4018a635783be1f7c241ae3203ef	25.00%
2020-07-21	inf-20200721-BLB7340.rtf	doc	a82dd2141315d36a0f9ba74bb443a40e0495cd089323254c35d0c4686249de7a	24.59%	Heodo
2020-07-21	Mes_20200721_42755.doc	doc	55a103c16b3c4d8958091e55cfb62091fd2d209e07ffba0a5c88252946b8ae39	25.42%
2020-07-21	file-PN23695.rtf	doc	bde282cb96f5986ecffac2e217f661fa0f00c92f1e4b2a788aad9cbd53a2eb51	25.00%	Heodo
2020-07-21	ARC_2020_07_21_69075.doc	doc	ad614712ee0ad71a7408a527a3a2051489b0ff4f08038b7a676ad967ea160fb7	25.42%
2020-07-21	file-2020_07_21-KA6518.doc	doc	23bf0066e26b5b6e2403af2810c57d5ee5c0e04cfb175df6c134826cdb68bce9	25.00%
2020-07-21	Rep 2020_07_21 LNM1992.doc	doc	38a052e49569227f531849f52c6e801e5abb2c68a7dd2c5a9fca8e92ec6b0211	24.19%
2020-07-21	MES 2020_07_21.docm	doc	deb29a892e444cde34fe7642bacbee1bf74d35fcff478966636eec77c5e28646	25.00%
2020-07-21	FILE 2020_07_21 V293.doc	doc	ecdaf78dab236699d9244160f6b4865a5cdc8481ff2e8d798df9a342d10f1654	25.00%
2020-07-21	inf-20200721-S1448.doc	doc	44d93b12f57a0d476e774d58da761e56ddd20f6d299acc2390a9111082e448de	23.33%
2020-07-21	LIST.doc	doc	f84df4afb6ec0e756c79748271dd66528e1f262427405a4171c48b7ef395b22a	25.00%	Heodo
2020-07-21	DAT-2020_07_21-8757.doc	doc	77381e8fde74067c151274bc344395ef59df227e209ec80c0d7879aacbd5d654	n/a
2020-07-21	file_DIY806.docm	doc	eec0262941bfb2dcb8d29f6ef1ccc699726ac66beb04d7d34e8da3281cf19c38	25.00%	Heodo
2020-07-21	FILE_20200721_U6610.rtf	doc	2e716647297132c94bca63747c48379889273658b12366fbe0e689a2b9966470	24.59%	Heodo
2020-07-21	dat 2020_07_21 HFQ902.docm	doc	c915922a81a8064f3c80285e3615bd5aaeb6452a92f4588fe03bdc81caa840a9	24.59%	Heodo
2020-07-21	MES-2020_07_21.docm	doc	09d5cad4c8b70edf0e4e47c1abcbbdec9872ca65c129f100c3eaa76ff6197497	n/a
2020-07-21	ARC-2020_07_21-3044.doc	doc	a8d9eceee2cd3735b96abf3528e7ec3e8e2d8ceb8991c00c7ff479e9034655f5	34.43%	Heodo
2020-07-21	LIST HGF359.doc	doc	cd7e26bbcc41d0820e6e2e0e42e56bef410264d6bcf74033fd1fe26d52b389ea	n/a	Heodo
2020-07-21	INF 20200721.rtf	doc	793132996a7b6875055c2bdbde2173f37e68ce5f04ab651acad13f84ab89cb82	34.43%
2020-07-21	arc_2020_07_21_RT3016.doc	doc	276568f9c3bb230aabe183dbfd02ad1c36b7aa141d382d34a839a611a422c07f	33.87%	Heodo
2020-07-21	rep-5012180.docm	doc	754a0bebe018b079d9d9260256ea2106b4b5ad9a654c8b8a1989bf6e3f4568f7	34.43%
2020-07-21	mes_20200721_I160633.rtf	doc	5816bc271d88617e627d64210b8ac9df417f8072b362af861ade766137eb1564	34.43%	Heodo
2020-07-21	Rep-0005.doc	doc	64e7979a0a88d8e4966eed6599bb3da83701dd82475c6aaf386f829bd3cd0672	n/a
2020-07-21	List 20200721 275302.doc	doc	3bc869822322f3e700ec706660323daeca6ea90553d0bff45ce1fdc1ad6dfcfb	32.26%	Heodo
2020-07-21	file_20200721_VQ93886.doc	doc	122b0d68ee819b2ceb91c0b2cdcc0327860dadbb29f884a776968a58c9480ec4	32.79%
2020-07-21	list-3581.rtf	doc	e2a49ec64650e56e967e8b0c31b7e21ad3f1ab14516c6dc02605aaeb90f7b87c	32.79%	Heodo
2020-07-21	ARC_20200721.docm	doc	41718a7885dc57496b953e118a0e425ba2af1e37a2a3a868cf05ac83e3db792f	32.79%	Heodo
2020-07-21	DAT 20200721 8720108.docm	doc	276dfa20b9cffd3ac104aeafed599b2f70a9fd0e8d4faf1d86ffd46e8354a416	32.79%	Heodo
2020-07-21	dat 2020_07_21 79267.docm	doc	cd605825d74d60677fec41c84dc39462658ebbd5edd8e29cfe9610a29291b3e9	32.79%	Heodo
2020-07-21	Rep_2020_07_21_NH2950.doc	doc	6c7da386cdaa6398c065aafedeb01b31ec959ecf615e9601a81a2c86488c4c86	32.26%
2020-07-21	mes-2020_07_21-EZ9512.docm	doc	4e34674eaa422795c92ef9cb66994e18a57553e217b4bb4de69c1369608e36e6	31.67%
2020-07-21	mes_2020_07_21_8887.docm	doc	49b857e2068f710d1facd444264c6d8804ecc9e2ba9660953b24bbf213cc66ba	29.03%	Heodo
2020-07-21	Doc-2020_07_21-6595042.rtf	doc	33e64096db5340fb26c5b5d6f9b1dd89674d3a77a96a25fafcb878d9929fc9da	29.51%	Heodo
2020-07-21	List_20200721.docm	doc	211aa330e781af24810676e704804e6f939793cf7572674e42de54a4f7513735	29.03%
2020-07-20	Mes-20200721-7526907.rtf	doc	e00291bcd00edfbf9f8f55a1f34576b512404c036b744d0ce846397f8a83bb1f	29.03%	Heodo
2020-07-20	rep-2020_07_21-30925.doc	doc	518def77204a86e55289809beda7c491b0f9ab290b10d7b4bae1c670a0f69c8d	29.51%	Heodo
2020-07-20	Dat_2020_07_21_G29870.doc	doc	68f85e639cf07fc84c8204cec1bd82fd8985d854aa17d02c89b58b255b98ed48	29.51%
2020-07-20	DAT_20200721_VWA5675.doc	doc	44c487bb620fcaf9ecd88961303e24f705390f3c23b0154b738fd30873832c0e	29.51%
2020-07-20	list 20200721 ZZ749556.doc	doc	c0696d196c346305861f4e358f48f216dcdde4251309abed3547504007cb858c	27.42%
2020-07-20	Rep_20200721_FR5039.doc	doc	616dde6dc6e22e28f4149e26996578dde114b40f896cee3cb36165d52ff70857	27.42%
2020-07-20	Rep-2020_07_21-061.doc	doc	1269bdbbc40be92cc1f13918a692b34fdfeec466bd7d872863ecc405ff38f77f	27.42%	ZLoader
2020-07-20	INF_802.docm	doc	c6050ddd07c6d8c4aee73c52d0e50d6056ebd5f3e82550d8c771fc4353d489fe	28.81%
2020-07-20	mes_MT990890.docm	doc	3b93eda94becc07130cb0b7b3bd4f351444c2a0810a9bd983913a4a5d833b3a5	27.87%	Heodo
2020-07-20	ARC-2020_07_21-93860.doc	doc	ec87e9999c894cdef59c964d06c6de6c7a7134d373b4e754180d90dd5fb23f64	27.87%
2020-07-20	list_2020_07_21_2631788.rtf	doc	d28f9dea8c5837be7474d3735799da462ae74c0a0f3e7279a3eb8a50ba6183ee	27.42%
2020-07-20	INF 2020_07_21 856.doc	doc	10e15c8850925b8f03210b06fdc2e0e87bd7339bf6a185992346e2063cbe1e99	27.87%
2020-07-20	Arc.docm	doc	6f644a06ca787f32149885c5a6c522c5cb5f0b40cd112d8a306d239b316f4d55	27.87%	Heodo
2020-07-20	FILE-2020_07_21-6172658.doc	doc	3aedca3992d77371154f015834399c14aab576050a53efa01fb5714e01beb841	27.42%	Heodo
2020-07-20	REP-20200720-357.doc	doc	d06b767d98bec7fa338114b2e77b1db8b1a8962819fda91258575e6cc7910b31	27.42%
2020-07-20	inf-PWH3337.doc	doc	dc9d3da24212096b6029163166558cefcd8b37aae588dd461d9b5c02700700af	n/a
2020-07-20	FILE_2020_07_20_641818.doc	doc	a596ea13973162232be90c68099e1b664aadeb7150a6c7e70ece1bae29dcce39	27.42%
2020-07-20	dat-YIV8613.rtf	doc	dc83903be08352444bfd3116d33bda30da619c60371f037e0bd56f82a2a768fb	27.42%	Heodo
2020-07-20	mes-20200720-39005.docm	doc	ed29b479d20901bb285c8146d9a69a73a34eadaa4f6c86aca69aeefe96f4fe0f	27.42%
2020-07-20	inf-20200720-788124.docm	doc	91c4fe9d34bcf9e830f05e08d4ff0981db5eef2c345b5c6147d697d49f80af5e	n/a
2020-07-20	rep_JWU081741.docm	doc	d2592f81840c6459ba7e0d05e58f48c703e29b3a97134a5bec16e60e85e72098	25.81%
2020-07-20	Dat-97069.docm	doc	36a8c92bf1e17c731797dffede2d91ede145d83d3328bac42e2b046f296abf77	25.81%
2020-07-20	LIST-TPH6904.rtf	doc	8005b9ca1985b623968849a6db53eaa3dfa9e3a93ac623e439235d133d2042bc	n/a	Heodo
2020-07-20	doc-2020_07_20-XL0018.doc	doc	c80914cd78207fba0edb12b286a7d21c3d616e6d3ff2951298af4b2ed23d9e9f	n/a
2020-07-20	FILE-2020_07_20-U6255.rtf	doc	4fe945b83567f1855dbc8ea4f8e0e0e2258117238ca2184dd10ba6cf797377a7	25.81%
2020-07-20	INF-2020_07_20-79378.docm	doc	273715911e1178c907cb8b89f84a64ea68a1c08218cdbea0e07528f92c1b3f16	n/a
2020-07-20	Inf_2020_07_20_76998.docm	doc	a8b114a82f64917ed11c8e081de40eb7121b26ae5e8c8aae05d858ec88c370a1	26.23%	Heodo
2020-07-20	inf 50021.rtf	doc	65177717b6fd8b0a589c64a14c0f03064f055d5855247580c6926b0b2966e44a	25.42%