URLhaus Database

You are currently viewing the URLhaus database entry for https://pellesbar.co.il/wp-content/available_zone/KNJGZ_VlzntlTk_kiIWP_cpY0PhyPrciSA/4bzklsgyst_s94u96/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	415465
URL:	https://pellesbar.co.il/wp-content/available_zone/KNJGZ_VlzntlTk_kiIWP_cpY0PhyPrciSA/4bzklsgyst_s94u96/
URL Status:	Offline
Host:	pellesbar.co.il
Date added:	2020-07-20 18:43:18 UTC
Last online:	2020-07-22 04:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-07-20 18:44:02 UTC to abuse{at}isoc[dot]org[dot]il)
Takedown time:	1 day, 9 hours, 44 minutes (down since 2020-07-22 04:28:28 UTC)
Tags:	doc emotet epoch1 heodo ZLoader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-22	dat_5247150.rtf	doc	04b189501cde3a8e14a2de3bb20b7313da30db8f0a7af0862cc14e400caebe06	26.67%
2020-07-22	DAT-859836.docm	doc	c20821e80c5ce943d4b87b9416329f0502a4da3c97044c8fd7016172353e1626	26.67%
2020-07-22	Dat-AVT00484.doc	doc	80cb12a6bbe9b2c3065f9007e9740b9f7d75dcf2bc68651848cb08f4ce619b39	26.23%	Heodo
2020-07-22	List_4118686.docm	doc	ebdc8f40febf78564180a0f4a84f3ec60622fdb13e5a18b627ecd8f86f4e1b85	26.23%	Heodo
2020-07-22	MES W1224.doc	doc	5ba62e60945b4eadc0eaa81b0f2b31ce3b6d8c785130a6000ce906dafef73afc	n/a
2020-07-22	Inf-20200722.rtf	doc	8d70f6580cf02bcae5c4c14396951b6e6c1ea10bcbcbb89f835c29dc7d2c8ceb	n/a	Heodo
2020-07-22	doc_T881321.docm	doc	3e65642f10d2b821a0c08b74d0ddfd34717dca5f9918551779815db934ae7963	26.67%
2020-07-22	ARC_20200722_Q379.doc	doc	d7b8fec9f533a9c31e7fe587b89552973d00bff30e4c7d8f7d4f2d93bc0eda1f	26.67%
2020-07-22	Doc_2020_07_22_T87103.docm	doc	ea444cde5a8ef5b6165a348732af41e4c634669259036caae42e242c5a7c9b1c	25.81%	Heodo
2020-07-22	Rep 2020_07_22 MQA10105.rtf	doc	7fb831a6988b9e816af85e485721d4e44b500b6a9d30af5b82cf9ec4d28eb584	25.81%	Heodo
2020-07-22	Arc_S8755.rtf	doc	d3bfea33a12c522ea8faa7840613e14c78035362c064c858c1467513a68ac9a7	25.81%
2020-07-22	inf-2020_07_22-33176.docm	doc	435f4fc1e9a6888f671e834bbdce6aafc5928c7dcffbbbe728f18573b73da965	25.81%
2020-07-21	Inf_20200722_N78167.docm	doc	3ef294ca4013371b69d6af647114806b71bb3dc07fd56f12c078703411d61b3d	25.81%
2020-07-21	list-2020_07_22-957.doc	doc	c1cc356eaf49711b7673b9c27f015163363a60417ad3b9b7e6883015b65d80d8	26.23%
2020-07-21	file-888.doc	doc	3e24c4373b1e2ba1e3d16925cd0d4a1752452402ae4aaa8ad8ce498bbff5335c	26.23%	Heodo
2020-07-21	List_20200722_WUG8215.doc	doc	cbccd20b9bc23454ec01bec4a0094e77dcc43d577666259f8d97aa30a118ac35	26.23%
2020-07-21	FILE 9820.doc	doc	2027e8348e8d2f364d55b2bf47f9a4b37fd2ff7aabdda5ed056e3f6cd42cf777	26.67%
2020-07-21	DAT_2020_07_22_WJ8177.doc	doc	139f5bcf4c7fcbe0a8a5d940c5d38dd847e2c979df74dcf680208e73b8ac668d	26.23%
2020-07-21	Inf_2020_07_22_I70179.doc	doc	7b6d030461fbd94c985e17703889f54e8012d5ba9af413f3009e010eb28fae17	27.12%
2020-07-21	mes-D65298.doc	doc	b88eeea6841abee77c07e6b5243d98213c6997de1033e14ddec0cf10b9b11c35	26.23%	Heodo
2020-07-21	FILE 2020_07_22 6781.docm	doc	db88b385b97b7038cd233960f7f99ce350a72a3eecf6bbbcb227645f111d4e7c	26.23%	Heodo
2020-07-21	Dat_2020_07_22_OKR248.rtf	doc	1a7ea77822d704fd09f8d01732909d19a62bc18b5d1d4a327261fd1daafe1418	25.42%
2020-07-21	Arc 7970.docm	doc	c52c38b76abbabdc92f8ae120296d6a44c5479c5624695adda1cd3aec00a0ca8	26.67%	Heodo
2020-07-21	rep-20200722-035565.docm	doc	1a3131840aa881ca39803d20f5224e9339a2cc959ac92ab756f6ded8d81a1a90	26.23%
2020-07-21	MES_513.docm	doc	d5af3b606fe2dd9a542f85aed4bab475b5d2f91b9dc5e3e5091cc385e4624869	25.81%
2020-07-21	Arc 207.rtf	doc	bcc1834e956cf9ee218e2956ae6511170e810ad54d6738ed11f98620609a3e30	26.67%
2020-07-21	mes_4444.doc	doc	253d4ce06935b6b78211d3f7b0ef787b74e019761199199ab5720333db23577a	25.81%
2020-07-21	MES IMM036951.doc	doc	a498a07bd860a86bd937ea230aea64bdbc55c3040d90c13e57a2670608c1af3f	31.15%
2020-07-21	dat-2020_07_21.doc	doc	238dcc628d07c6b0935926310ffab263be40646c23d2b4e4d7b89a7a6eb52dad	33.90%	Heodo
2020-07-21	Mes_20200721_N80085.docm	doc	0974a3c01f3b2bdfefa2c3f955522a50e05bea86eac7c7da493d7548b1b5c758	32.79%
2020-07-21	FILE 2020_07_21 97292.docm	doc	94afe20839c1b4794b268af701170510a03aca8ba4c42d4f37056f048b4f4312	31.15%	Heodo
2020-07-21	List-20200721-QOO206.rtf	doc	8d842d76f958c70be828a217a80c8398107c158a2320c0d36f3b75512b8deca9	29.51%
2020-07-21	FILE-2020_07_21.doc	doc	e79bfe79de1a90309dfce80db1cec1e5546d40c16c83e9bd96f19cb888a61f19	29.51%
2020-07-21	mes-20200721-GH15296.rtf	doc	7922f5b485edbeab235751b1f775ac411b5511202a73ad2df02e19943c686fff	30.00%	Heodo
2020-07-21	mes-20200721-570356.rtf	doc	3e9d864db108ff21b3dbc6aee0596264668e95aa02677c5e98cb40bc9bf40998	n/a
2020-07-21	REP_2020_07_21_H9183.docm	doc	7203fa5731e4f60d782eb7248af9620384981a39282d70094f40946b1b7a60c8	30.65%
2020-07-21	dat_2020_07_21.docm	doc	1054c41f6e0c85d12ee934edb47dc40dd79b6326e7c292477552590736c00fb9	28.33%
2020-07-21	dat.doc	doc	262962b5fcfbc2fd14aa121ea6d5731ee54807c1d8f5cb14aedfa6437d1b764b	31.67%
2020-07-21	inf_20200721_EVD824.docm	doc	c969a0b83fe39c15dd74759e9c07b8d753908346f3d8dcb940fccee01f146e92	n/a
2020-07-21	mes 20200721 FHX689954.docm	doc	4de321a8533808438637e1c145e5ddfef9f24da81cb5129fed75c13218abecbf	32.20%
2020-07-21	File_2020_07_21_X8494.rtf	doc	84208f7aeaf31442b3b84394ec70e6c7d6d03b854990a567dffe1702c392bf9b	30.00%
2020-07-21	Arc-IC855.docm	doc	a9e912c0733016338d181ec06475e1f30f28fc2159ee482787e913fc65085cf5	30.00%	Heodo
2020-07-21	FILE 20200721 61093.docm	doc	608a39d31a2ab34bf79ebd042bf10028b9bc7ed087dbb810306956dd1ba45567	28.81%
2020-07-21	INF_2020_07_21_1441756.docm	doc	c93cedd95b86e6902a23550fffd5be8beeb902d2a6cb4541588ba327a3978a7e	n/a
2020-07-21	LIST 20200721.doc	doc	e03def51cc78a91e3c97945ebbf083bea9efa86f55fde07a8c4bae905c1b8671	27.87%	Heodo
2020-07-21	inf.doc	doc	d1f13cff50c5950b6842f81fb632405df63e1d6a953d4d912b3f5ecfb1afa55d	26.67%	Heodo
2020-07-21	LIST_2020_07_21_3016.docm	doc	15617b37ed587c9af7ec3de8d4aabd3de95ded6604f652abea14822da2c94ce0	28.33%
2020-07-21	Arc_2020_07_21_ZKR080286.rtf	doc	186a6ee6322d2e6656e0125cba0536eef43d3a66e4ce73e129332dbb236cab60	25.86%	Heodo
2020-07-21	rep 909597.rtf	doc	c7822a15dfb48ca078ebc0a41816b3bb1925bba9198831892a7e77fe64e84f42	n/a	Heodo
2020-07-21	Mes_2020_07_21_352458.doc	doc	f71d024b4271aa2cce102ca4d7736cfd3a80503b28146ea2afd7ca8233164f88	n/a
2020-07-21	DAT 2020_07_21 UPX832511.rtf	doc	a82dd2141315d36a0f9ba74bb443a40e0495cd089323254c35d0c4686249de7a	24.59%	Heodo
2020-07-21	Dat-808419.docm	doc	55a103c16b3c4d8958091e55cfb62091fd2d209e07ffba0a5c88252946b8ae39	25.42%
2020-07-21	arc IA716.docm	doc	a1808398c37712705f11218018390d7aa7ceae6c9c8209ba305d140fbd4e900a	n/a	Heodo
2020-07-21	Inf_254632.rtf	doc	6501e724d89e5dd104908e13584625fd157ca3fffa620baaaa2c76997fe7347c	25.00%
2020-07-21	REP-2020_07_21.doc	doc	23bf0066e26b5b6e2403af2810c57d5ee5c0e04cfb175df6c134826cdb68bce9	25.00%
2020-07-21	ARC_2020_07_21_J53222.rtf	doc	77381e8fde74067c151274bc344395ef59df227e209ec80c0d7879aacbd5d654	n/a
2020-07-21	Doc 2020_07_21.docm	doc	590404bb24804914ea53c3480612bebc506f54e56553ef7b366d545a4eaac100	24.19%
2020-07-21	INF_GM71925.docm	doc	2e716647297132c94bca63747c48379889273658b12366fbe0e689a2b9966470	24.59%	Heodo
2020-07-21	INF_2020_07_21_BW5413.rtf	doc	c915922a81a8064f3c80285e3615bd5aaeb6452a92f4588fe03bdc81caa840a9	24.59%	Heodo
2020-07-21	arc_2020_07_21_C436675.doc	doc	09d5cad4c8b70edf0e4e47c1abcbbdec9872ca65c129f100c3eaa76ff6197497	n/a
2020-07-21	List-20200721-37495.doc	doc	27731098c7402e09d9c7e227a332f4878953ad3bd5d4126af3ef5fb06861cfea	n/a
2020-07-21	MES 2020_07_21 27870.doc	doc	aa4a6dae1e4ea4aaa6e4539fa9a3fbb129544c7d56807321757f41321b723abb	33.87%	Heodo
2020-07-21	File-20200721-G34566.rtf	doc	f78e874b4d5c5dedede72b85b571f2b04d8edba617b6634d95c2af181e6e4dd7	34.43%	Heodo
2020-07-21	Arc_2020_07_21_NB7376.doc	doc	793132996a7b6875055c2bdbde2173f37e68ce5f04ab651acad13f84ab89cb82	34.43%
2020-07-21	inf_2020_07_21_21798.rtf	doc	276568f9c3bb230aabe183dbfd02ad1c36b7aa141d382d34a839a611a422c07f	33.87%	Heodo
2020-07-21	dat_4535.rtf	doc	754a0bebe018b079d9d9260256ea2106b4b5ad9a654c8b8a1989bf6e3f4568f7	34.43%
2020-07-21	REP TQ60003.doc	doc	5816bc271d88617e627d64210b8ac9df417f8072b362af861ade766137eb1564	34.43%	Heodo
2020-07-21	doc 20200721 3061.doc	doc	ace014e43d78870f28d2a732d72b60fe0c602b71dcc8771989e5cfc0bb1e0bef	33.87%
2020-07-21	MES_2020_07_21.doc	doc	3bc869822322f3e700ec706660323daeca6ea90553d0bff45ce1fdc1ad6dfcfb	32.26%	Heodo
2020-07-21	Doc_Y831967.doc	doc	122b0d68ee819b2ceb91c0b2cdcc0327860dadbb29f884a776968a58c9480ec4	32.79%
2020-07-21	REP-20200721-O873.rtf	doc	e2a49ec64650e56e967e8b0c31b7e21ad3f1ab14516c6dc02605aaeb90f7b87c	32.79%	Heodo
2020-07-21	LIST_2020_07_21_7886.doc	doc	41718a7885dc57496b953e118a0e425ba2af1e37a2a3a868cf05ac83e3db792f	32.79%	Heodo
2020-07-21	DAT_20200721.doc	doc	276dfa20b9cffd3ac104aeafed599b2f70a9fd0e8d4faf1d86ffd46e8354a416	32.79%	Heodo
2020-07-21	File_20200721_TWF925287.docm	doc	176237b901fd642cfb1c3a9fd8c50cdbf0d5ec30df6c98142d3a0e48839f9d51	n/a	Heodo
2020-07-21	Arc 20200721 3137755.rtf	doc	6c7da386cdaa6398c065aafedeb01b31ec959ecf615e9601a81a2c86488c4c86	32.26%
2020-07-21	Mes 20200721 1997322.doc	doc	1236dd4116a2c4ba4427175d0a3e88c848f70dc6219f6b22f1997ae3ba80ba14	31.67%
2020-07-21	file 79907.rtf	doc	4e34674eaa422795c92ef9cb66994e18a57553e217b4bb4de69c1369608e36e6	31.67%
2020-07-21	FILE_20200721.docm	doc	49b857e2068f710d1facd444264c6d8804ecc9e2ba9660953b24bbf213cc66ba	29.03%	Heodo
2020-07-21	list-2020_07_21-WM0031.docm	doc	33e64096db5340fb26c5b5d6f9b1dd89674d3a77a96a25fafcb878d9929fc9da	31.15%	Heodo
2020-07-21	list 20200721 NVQ95017.docm	doc	99c6c8f02c2fef792bc8a5a6406b0baa294156cb38b8df191f98cfb5a90547f5	30.51%
2020-07-21	FILE_2020_07_21_2752612.docm	doc	cce8e5e706869261ede523822b673dd52e48d4351de8600f5ac209a7f0189629	29.03%	Heodo
2020-07-20	REP-20200721-593297.docm	doc	e00291bcd00edfbf9f8f55a1f34576b512404c036b744d0ce846397f8a83bb1f	29.03%	Heodo
2020-07-20	Doc_20200721_3510.doc	doc	518def77204a86e55289809beda7c491b0f9ab290b10d7b4bae1c670a0f69c8d	29.51%	Heodo
2020-07-20	Doc_8245639.doc	doc	f83e32a15080c0f31451809377046083d52daef3354edecea6db6ccf4158a43a	30.00%	Heodo
2020-07-20	arc-F28832.doc	doc	68f85e639cf07fc84c8204cec1bd82fd8985d854aa17d02c89b58b255b98ed48	29.51%
2020-07-20	MES_RV3297.rtf	doc	a6ca24bb5b1de30cd63ecceac1727ca4102ed289d65fa05c550c4485e6ca372b	29.03%
2020-07-20	Inf_20200721_543903.doc	doc	41d61ed5ec94c9f81d804487ad8f6132520d6ac7009a8c9a7b0c074ed0748e4e	29.03%	Heodo
2020-07-20	INF_75133.rtf	doc	1269bdbbc40be92cc1f13918a692b34fdfeec466bd7d872863ecc405ff38f77f	27.42%	ZLoader
2020-07-20	List_2340948.doc	doc	9d397f040fb1768faae4189e4e3e0aa60604b2b86617d979e1f61d90a8798fbb	27.87%	Heodo
2020-07-20	mes_2020_07_21.rtf	doc	4d5d4a16ec11a850141a0a77026153d2a409bb4602e624623ee007e79dfd9639	27.42%
2020-07-20	REP-5151.docm	doc	3b93eda94becc07130cb0b7b3bd4f351444c2a0810a9bd983913a4a5d833b3a5	27.87%	Heodo
2020-07-20	list 20200721 BNS807.rtf	doc	ec87e9999c894cdef59c964d06c6de6c7a7134d373b4e754180d90dd5fb23f64	27.87%
2020-07-20	Dat 3936301.doc	doc	8d861becdf66c056d51b6b585d1d2c98ec75e77bc3af28d354edb72f3ebb65ad	27.87%	ZLoader
2020-07-20	DAT_20200721_9718.doc	doc	10e15c8850925b8f03210b06fdc2e0e87bd7339bf6a185992346e2063cbe1e99	27.87%
2020-07-20	Dat 038.rtf	doc	f4295c97af0389a32cb42495d1b102a8e8698e5f107c50034cee1d0ef8735a1a	n/a
2020-07-20	mes 20200721 YV75950.doc	doc	3aedca3992d77371154f015834399c14aab576050a53efa01fb5714e01beb841	27.42%	Heodo
2020-07-20	Dat 2020_07_20 LII3972.rtf	doc	d06b767d98bec7fa338114b2e77b1db8b1a8962819fda91258575e6cc7910b31	27.42%
2020-07-20	Inf EUB397.docm	doc	7812b414ab8098b436f22af0523a1edb14b8af7eb4df4bac66f9268cdb074e96	n/a
2020-07-20	REP_895307.docm	doc	a596ea13973162232be90c68099e1b664aadeb7150a6c7e70ece1bae29dcce39	27.42%
2020-07-20	FILE-2020_07_20-A9225.doc	doc	dc83903be08352444bfd3116d33bda30da619c60371f037e0bd56f82a2a768fb	n/a	Heodo
2020-07-20	list 2020_07_20 08752.doc	doc	ed29b479d20901bb285c8146d9a69a73a34eadaa4f6c86aca69aeefe96f4fe0f	27.42%
2020-07-20	mes-20200720-XX732.docm	doc	91c4fe9d34bcf9e830f05e08d4ff0981db5eef2c345b5c6147d697d49f80af5e	n/a
2020-07-20	ARC-2020_07_20-INW027.doc	doc	fa441d24dc18f47c3205b5c37950b44346f110e1aaf7822e5a1d7894e2eebb49	25.00%
2020-07-20	inf_GA15557.rtf	doc	c8b4b7e686954bc7ebd4115f98ec29527b1b0d47d1a817adebc3c6b44c26d787	25.81%
2020-07-20	INF-R5738.docm	doc	0cd73a229418caf24e599b0db39e5ff3ae2903ffb83340c026c0ffa0f7e9f86b	25.81%	Heodo
2020-07-20	Mes_20200720_422820.docm	doc	2ed0a17884d80b91110cc117b3963361ae603c91ce2cd60de6131972d6a047b1	n/a	Heodo