URLhaus Database

You are currently viewing the URLhaus database entry for http://www.addahealingmusic.com/wp-includes/d4zkckftm2p/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	415518
URL:	http://www.addahealingmusic.com/wp-includes/d4zkckftm2p/
URL Status:	Offline
Host:	www.addahealingmusic.com
Date added:	2020-07-20 20:36:04 UTC
Last online:	2022-03-16 01:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-07-20 20:38:03 UTC to abuse{at}megatrhost[dot]com)
Takedown time:	1 year, 8 month, 3 days, 4 hours, 27 minutes (down since 2022-03-16 01:05:30 UTC)
Tags:	doc emotet epoch2 heodo ZLoader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-03-13	n/a	unknown	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855	0.00%
2020-07-22	DOC_00892884.doc	doc	91420939d17611e6b1215827089e2e118b07eaeb3034e72059b79148104ae337	40.32%	Heodo
2020-07-22	REP_96241343.doc	doc	432d6d6881a6d2006ee6d849c32688e7243f4b6f06e42ebeaab0665807c3140e	40.00%
2020-07-22	BAL_SM8323445403QV.doc	doc	c9f585e76195bccbecfc06a49ff58041d156b95ab4e7e12c664332b57a86e2b5	40.00%	Heodo
2020-07-22	XT1154085221FS.doc	doc	52d38a2e099e1a91adcac50b986c9283c6b503449c08f1ea50f1202176bfd48d	38.98%	Heodo
2020-07-22	GZN_070120_ICJ_072220.doc	doc	36da82529398c84564c41db4ee6bd80d8f27729d46fe18511455ce03a0c3a0f2	38.33%
2020-07-22	REP_VN4538178933WB.doc	doc	bff462e527dc2bbfbc6af92e64f4d57c7587401687561163e0a6a3ec37414d68	36.67%	Heodo
2020-07-22	HOBN_18455551.doc	doc	3249c6416297b56a2e2b0f8e5a7953a0d8ed783591de7cdac42bdc694631f11b	37.29%
2020-07-22	DOC_WJ6073163906PO.doc	doc	a1169e902ab8c4c2dc02af0a77012bbc44d149973cdf8002231a3f9f177a542f	36.07%	Heodo
2020-07-22	V_1755794070807085.doc	doc	75976bde3b02341d4f05b9672041e7cecdc933663249a73fc38982cd66982d47	31.67%
2020-07-22	DOC_6GGFGDUG.doc	doc	bd83f09ecfe601637ebab977d8f363a89860c60d16456c28bcbfc30ae1778885	30.00%
2020-07-22	K_06959373.doc	doc	a86f1e9e1fe56b2a602940171cc372f4aac4616897c720351e8b379a4c6520fb	30.00%	Heodo
2020-07-22	DOC_PO_07222020EX.doc	doc	55e84398cd55149723b8680739ed42c4a5b52da9a84aae98b979409d9dd11cd5	31.15%	Heodo
2020-07-22	T_LT1608052886AV.doc	doc	00ef2d68251c66dcd85acb5c11837148de33e43d9a98eda9d28435c9d74477e3	27.42%
2020-07-22	BAL_7ZVX7PX5I2H4UY.doc	doc	30c4cc96ab9f83017f38edba3d630eb388ab4540951a1f799ef60ff5659ea45e	26.67%	Heodo
2020-07-22	15231992.doc	doc	6999be5570232cb11189a152478254ef33470426036d88fa74b45305031efb73	26.23%	Heodo
2020-07-22	BAL_YYG_070120_GTO_072220.doc	doc	ee36488e9d6d8ea09cff02367c7212d0503f376346c3b40aed03e01c1b1aa668	26.67%
2020-07-22	INV_IP4460421933ZP.doc	doc	49e20fcd1ebe7943437c809b881031d59e45a98614d1c7af96b3c1835d4586cc	26.67%
2020-07-22	57733877396174168876400.doc	doc	adecd8241c21aa989810258e39d162aeb6ec0b86ca6a884fa3a542ad306a1c63	26.23%	Heodo
2020-07-22	PO_07222020EX.doc	doc	a76feea95a298d6f94ca0a719376f30e4409a18555e10bdb1e90a24c7facf294	24.19%
2020-07-22	FILE_PO_07222020EX.doc	doc	c14ddeac4500ec2bb65828bcf770f5ce11a369ca829f2c68587632e1dccfd995	24.59%
2020-07-22	F_PO_07222020EX.doc	doc	5f5a353ccf0dbcfaa0859d0a1db152f2d40735bce47864d7ef9c12ab93c8ca88	26.23%	Heodo
2020-07-22	M_PO_07222020EX.doc	doc	f9b9806f9c7c88864e0ff685eaab801a085f8c567b7d6993101bafa58c4833b8	24.19%	Heodo
2020-07-22	H_LHZ_070120_NBS_072220.doc	doc	593793a914684244b3c51333736fffc1cdc69c51759831c888b66e6a07ef8b72	24.59%
2020-07-22	FILE_JA8807021771YC.doc	doc	756efc8d3530d9e9b4141763d1a89a2092a54347108a59790356c0c3506082be	n/a
2020-07-22	BAL_PO_07222020EX.doc	doc	e138da30fb56344429ee51040714270123930932db14186bb12630a53d904fdb	24.59%
2020-07-22	REP_PO_07222020EX.doc	doc	ed1a41469969a80fefc58566124f44e0846bff21d8e51d897da0d10b2386174b	24.19%	Heodo
2020-07-22	FILE_REUW557.doc	doc	10963f8cec95f3f18634db9382cd4403523a624d72a459c29c9c3baf27097509	24.59%
2020-07-22	PO_07222020EX.doc	doc	afb0e524b7db64a122b728e245c9696835a816e3cf272da3b39ac35bba514abd	n/a	Heodo
2020-07-21	DOC_5808071939159466722103411.doc	doc	73962239e4a48429f588ed5950e69d8ba450efa22a2265afe97bf689935caf47	25.00%	Heodo
2020-07-21	DOC_CX7769317866VE.doc	doc	c6ca23f36d524391de9970059d2e0faf54270286e320503e3eadf282ab5082a2	24.59%	Heodo
2020-07-21	53283212.doc	doc	737dad0010dfc90068d5db4073a76c04f2e9aa7549373686028374e3bbbdb652	24.19%
2020-07-21	B9CO7L6024TU.doc	doc	5c3d472318679572aeebf4c76cf7f2ead0f39f72e9d9d3e26604c88f35364b4d	24.19%	Heodo
2020-07-21	ZUXF_IZD_070120_EPT_072220.doc	doc	dcd97e231a7928660c49c35be9d5b8f839ccd3e2b8882ddd60c22b1bd012ac4c	25.81%
2020-07-21	BAL_OEA_070120_JCZ_072220.doc	doc	bc7398dd8ac94a9ff8ca7a93f0755681ec84ca7fd05058ddc053cd16e1b3f4e3	25.81%	Heodo
2020-07-21	REP_50000738.doc	doc	c0af5b3ed8e1c92c57aa0e1b6f60d24b4ddc6a95ae92906d793d88413fa9904d	24.59%
2020-07-21	Q_CCIAD5WQOJI4QKP.doc	doc	c95057fce46c3c402c202fb3ac124dde463a8e1de0c26047fd254ffd11084f36	25.81%
2020-07-21	INV_FXZ_070120_DWU_072220.doc	doc	bfb0b36ae7105ad67727e68789279e3550b6750177ae7c2fc1007438f686f070	26.23%	Heodo
2020-07-21	KKI_070120_QVO_072220.doc	doc	eb3009e003594f7c6d5a2c373db44fe65d9acc0be9c31c317bf9ebfad08e633e	n/a	Heodo
2020-07-21	REP_KN4516497484SP.doc	doc	2f4719fe8c7d6c5de85448ec6a443b49b51cbee1b16d7d67e6a8e497a3b5cd7f	26.23%	Heodo
2020-07-21	FILE_PO_07222020EX.doc	doc	4a6f267daadb0dd612dfec5f99bfda7da3e527108b3105e2ad116bb9ccc92c51	26.67%	Heodo
2020-07-21	JAD_070120_YTQ_072220.doc	doc	cd6f41e3821d55917fa4a0cdbe223abdb97ed8da6f7870d449d8e81ed6f9ec69	26.23%	Heodo
2020-07-21	INV_734195478294629.doc	doc	6616cbabce1dd4cb3515191b2ed913e01a7ffc8b1cff8ec410600930bbdf7f3f	26.23%	Heodo
2020-07-21	FILE_57498887.doc	doc	5966dbc11d924231b5d148a1a821154f88e469adcb6e884d4dd5102c9e598e9f	24.59%
2020-07-21	DOC_P5B2T2FZ3WU4CI.doc	doc	df3b437a0a2555b3ae16c3634140dd1ff3832120d3376e4a11ec45a500250f4a	32.79%
2020-07-21	PO_07212020EX.doc	doc	253ad2d41181a76e9546d65aa0f8b49d02149b4377d46cd67263566ae929bdbb	32.79%	Heodo
2020-07-21	P_PO_07212020EX.doc	doc	6b606b07e4ddf623479f05fe2da2628bfb74b953116407b7e4ad3cd64421de36	32.79%	Heodo
2020-07-21	INV_SI5501689934SH.doc	doc	1eb40695aac83a3f528f16af863be6327354d555eadf1695c53904c523ac9a86	31.15%	Heodo
2020-07-21	REP_JY6356904635OU.doc	doc	c22e26dfab6e9d1a9b274c81e01683828409ad629bf7883a0d58600c1f8db403	31.15%
2020-07-21	BAL_BS3JHUN0ZHBKDLW.doc	doc	6acb37f46741819ca10ee4ccb7f88dc94b5dc36a3a1c5c366450d76db4b42a6c	30.65%
2020-07-21	REP_20968206.doc	doc	ffc575665829ae7905ee6e5f2194883080c4ec8d2fa69ac1770319767a1b5456	31.67%
2020-07-21	DOC_NZF_070120_KWM_072120.doc	doc	d087ddd4ab54eacd0bdaa2be04850c18ab694655cebfb68094cc191e7479b793	30.65%	Heodo
2020-07-21	REP_XTJ83PT811S.doc	doc	74db9fac3d9a684b81ce1975d06d184a85bc67d24466aed35ff6ee475e21d16d	31.67%	Heodo
2020-07-21	FILE_MDB_070120_DFD_072120.doc	doc	a543b622ebcc58314854fa85473ce89753b8c30877e2562d607aa9483023d16f	n/a	Heodo
2020-07-21	JA_91322462.doc	doc	cead2b444fb70319f7ad607f10b254f3888d97ee61adb8a5be9492f259718ec9	31.67%	Heodo
2020-07-21	EK_XB6221656102SV.doc	doc	c50850a81ad3ce08fc961162e1082494177f8e501dab0e698bce46ffef854ef6	27.87%
2020-07-21	BAL_IP6051488497JI.doc	doc	9730ab9a8c60bf06cd93ddc13f7a80f30ce61e20782b9ff1c85dbeff59e3062b	n/a	Heodo
2020-07-21	FILE_VTYJSN6EZ.doc	doc	26d6a947ace5dc20b8511699014a7230d627b181f37246807ea85cdeadea61fe	n/a	Heodo
2020-07-21	P_DJI_070120_GWD_072120.doc	doc	454c1cc1f9583beec51230534131bba60e6483bb9363ead5a4b7b33f54e30a51	30.00%	Heodo
2020-07-21	BAL_79376780.doc	doc	d79c71d538e01fa78030decd715462c870e06f70c88f52d1d917e2302ba1c140	29.51%
2020-07-21	9295279304373327029.doc	doc	7c0e49dcc082c8f4b4fac91339f378ea04ffb0ccbde5018346e4f95f30fcb05c	n/a	Heodo
2020-07-21	INV_7611041159699574043272721.doc	doc	5f3da5a1b6d61a46a16169eaf72e463f3f5483f15213d0799b577d4684e38a70	28.33%
2020-07-21	INV_69943079.doc	doc	ced32d6bf400cc3bb59aa1929efa4c17228064153ca0615288fc1fefde35f11b	27.87%
2020-07-21	INV_WUOQ4WLALJ.doc	doc	6aae57a7a60c8c2529948a9290becdc90f10be950ad2133ef7cbb1c366693f4e	26.67%
2020-07-21	DOC_15406737640.doc	doc	974a9bde6fa374685e63b50d21dd8254256dd8f6418d9d65e208a465a0141f73	24.59%
2020-07-21	FILE_TH5792502498KL.doc	doc	b4f865e3011a63a5b8a0da14876282d97d5144e153f8316025555d276602d335	n/a	Heodo
2020-07-21	KX6225444024UC.doc	doc	281280ed257511ed8f8f2b291a83ce2978bc6e6f14c52ca9ce10540c70cf0605	24.19%	Heodo
2020-07-21	INV_BML_070120_FIF_072120.doc	doc	a77f0d09a07d8f85b737d25216501b343e22c4e04a6f88b16dc1ab9ea1b2a222	25.00%
2020-07-21	FILE_94860565.doc	doc	b1a935c9a64f8a2191e613e696c6df7a5892c608ec14c6f72c3459c4a62f2865	25.42%	Heodo
2020-07-21	REP_4763638730403761208.doc	doc	c1d1210982635dadb2f24475c235301c47a2929b5b3caa913ebdad6df34a0c71	n/a
2020-07-21	DOC_MP9689609853CK.doc	doc	6ea128ea049d2ebacb539514c677bb05791d9844046f47e6e1e3dc783f2942fb	22.95%	Heodo
2020-07-21	74988513604823881290661.doc	doc	003110462b096556a9d96dca0472feaa2dee2edaf6d8d0e179dc08a8a8f2b775	23.73%	Heodo
2020-07-21	DOC_HUF_070120_QIW_072120.doc	doc	76135328ce70dd5755fa54408d962b10954d6bb5c47f883a7c2bdd1defbebb9c	22.95%	Heodo
2020-07-21	FILE_DYGLXRMEN3.doc	doc	283288b5bb193523ad2659b4cf322feea153048b6f27a8fa9673ca683bca177f	22.95%	Heodo
2020-07-21	FILE_9609969388168551951884.doc	doc	f2e0593ca696ec36f6b813e857b8fe6741252d7b65df42e5e16bb3c80bc7a90d	n/a	Heodo
2020-07-21	DOC_13554966.doc	doc	b3b5e742a9efcce621c8d70898b0ac59c13ad4c0e62b1cfc1b6642c403cfa5e5	n/a	Heodo
2020-07-21	BAL_XA3672577304WX.doc	doc	c0a07acdba0bcb551c7783cdc1b10474c024031f6f011ee1761843ca640b1c3d	n/a	Heodo
2020-07-21	INV_NY2346800596CU.doc	doc	b946948073ee057b1f1cdf3b7c54098e9eb35bb8736104d13e2f3febb038f2b3	n/a
2020-07-21	FILE_4728665720376.doc	doc	8b448dc2b315f49801c7b4d4b20a2d3163f9c9376a3c36dc4dc7a52513a101f0	22.95%
2020-07-21	DOC_7430913647999204938264700.doc	doc	660ff4d3124a99db58894556a3461eda17393ca94c27e075185e72536eb6735e	n/a	Heodo
2020-07-21	BAL_UCN_070120_LNR_072120.doc	doc	fc2bb7719f33ff249113e3c05c4b2b6fdbc99190e250b3073295e271c553f0d0	32.26%	Heodo
2020-07-21	T_PO_07212020EX.doc	doc	d604f20c04d25e448176ddfdf3e01865091590cdf5f2cd2c42eb9af7cf41c718	33.90%	Heodo
2020-07-21	LJ6060934871YG.doc	doc	53b9a409018adc25ac26a608d9fae417659211d8754dbf7f07c3e4710a026774	31.15%
2020-07-21	INV_159927456427914.doc	doc	f23c88283a5b29e45eb6658afb904be03923f73895e4f6b232f3e04e288bb715	n/a
2020-07-21	DOC_PO_07212020EX.doc	doc	9312e2d0d00f48b53f5ce88ad3c874968ebb3c219e93cf1c5848021de545956a	31.67%
2020-07-21	44807009.doc	doc	9e8362c34f689302d747bee833e604d4d7e10c7d519b401e9c9fe257bc241197	32.20%	Heodo
2020-07-21	REP_PO_07212020EX.doc	doc	c9d9cfb4d6f95d66b6480f5dfb60edf7b0c4581895b68dbf25a830f9006b2d3b	31.67%
2020-07-21	1004279253103.doc	doc	98f9e3f351ef4ad0fa44e42564bff893ca18599495d514658ebc5bcc78534dd6	30.65%	Heodo
2020-07-21	MWP_070120_MKE_072120.doc	doc	d6c5ff0dea2cbabf074ec5c1f7ca759925d9f469a37d4265919edf2414c60d5b	n/a
2020-07-21	INV_PO_07212020EX.doc	doc	4730939d31f08ebfd93ea7fc4230820f63862d8b509b000d67f995f57f9ec305	31.15%	Heodo
2020-07-21	NHD_2WHNRXXQ2.doc	doc	296943dcba8c391e81d42bf4b7887bd2929bfa9cb511d3e1a9056ca64013f00f	n/a
2020-07-21	S_GJX_070120_ULX_072120.doc	doc	6d41d1aae6fa70ae47a5f974e21ff291dd1cdcc4b921dc0d1393c73384169674	n/a	Heodo
2020-07-21	INV_TGB_070120_FPE_072120.doc	doc	e341cca78e446c93ee00c387cee3517341c104ac0587512879a602ff58871c64	27.87%	Heodo
2020-07-21	BAL_33898439.doc	doc	46e68edbdc3dd2b5e70179a93d4f788074fa29e649c64063f636ee4e37c42fbf	28.33%
2020-07-21	R_BSM_070120_GEI_072120.doc	doc	a7f4f8b9dddb70414bfdbbffd5c446c88b517c104a441be19151c8a711133686	n/a
2020-07-20	DOC_PO_07212020EX.doc	doc	9f082f2eeb02660ab639991cade576f8a7f72990579ddb87315b51374e11fc18	n/a	Heodo
2020-07-20	INV_PNP_070120_OQP_072120.doc	doc	1d9333d44f7442890d84cbc3972b9d00c93bf1556042f7b58c1386365eae3c76	27.42%
2020-07-20	FILE_61134966.doc	doc	6d46c114d54c2c0d4b12eb4cda0e82b6a35dccddfa4450907b61d3e54a235ad7	27.42%	Heodo
2020-07-20	REP_TPB_070120_MZD_072120.doc	doc	2a7edcd4009ca88459bd2ec64af866f700abb7acb68cc5b13a40315c51976df7	28.33%
2020-07-20	DOC_7688533435499092.doc	doc	d94cea8ea634ed8d8de82348acb5c417260d48a0f2b559531624b67f776c660c	n/a	Heodo
2020-07-20	N_OBC8I7X.doc	doc	86dc2706e8cf0a78688e5a503d6e8db55275a7ec3de655ec33a9db2f6ffeef57	29.03%	Heodo
2020-07-20	CSW_070120_ROL_072120.doc	doc	fc5b7108a0eaca8bbecdbea0d3405756a6cdb3dc9911363730b275e1e29acc4f	n/a	Heodo
2020-07-20	STLD_N4PIOYCGTAGSR.doc	doc	4ec7f2a0359b740dbbc849705f2856818bccc8fafa5a2237fd79640e61423255	n/a
2020-07-20	PO_07212020EX.doc	doc	148aa06dceabdc99c7588bd48277867f3d0528fcf04463562707fd66f953045d	27.42%	ZLoader
2020-07-20	INV_755509190608275.doc	doc	d076c294bf588b7c9f8db6b5f35a63758c5710feb5920c263ceb77a501bb9133	27.87%	Heodo
2020-07-20	PO_07212020EX.doc	doc	cfb6588d9181a97aa1f93b2b9f8af82134836e916938a80a217cd03fe4294811	n/a	Heodo
2020-07-20	CJ2869026704SS.doc	doc	eb0f6632e1ec41f11634db7c691a38cdae71cd06268568eebbd34ad96fd37618	n/a
2020-07-20	INV_NU0315087512UE.doc	doc	8163146178e6d55057843fa5f0da1b851d049bf802aea69b44aaec7352be33d4	n/a	Heodo
2020-07-20	DOC_VDM_070120_ZHO_072120.doc	doc	33c897cc3c1d11687231644af13032e24358c594f4b484a7040a3eeecfae7145	27.87%
2020-07-20	INV_PO_07212020EX.doc	doc	4fdba539896383e37ec2383fb569df4f17395dd40115ba8caba62127b7ebe949	28.33%	Heodo
2020-07-20	90464549423059881510.doc	doc	a00bd0c41a60173a7d02bec198e21b3be8ce018289a2120a48b3cea32160de78	n/a	Heodo
2020-07-20	V_UNC_070120_LKG_072020.doc	doc	6f07729a0d38233363651ce3760f506ded756ffb5010218df70d03bba767e7d5	27.42%	Heodo
2020-07-20	REP_87922293.doc	doc	635b7fd7c9efa73d3e19e636a20d81afc6db67e7d469a6ceb4a6d137a8d5b4cb	n/a	Heodo