URLhaus Database

You are currently viewing the URLhaus database entry for https://ouryen.com/wp-admin/available-resource/external-space/y5rkjFAe9B0L-48KfMK6Kqe/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	415529
URL:	https://ouryen.com/wp-admin/available-resource/external-space/y5rkjFAe9B0L-48KfMK6Kqe/
URL Status:	Offline
Host:	ouryen.com
Date added:	2020-07-20 20:56:05 UTC
Last online:	2020-07-21 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-07-20 20:58:03 UTC to abuse{at}digitalocean[dot]com)
Takedown time:	1 day, 1 hours, 48 minutes (down since 2020-07-21 22:46:25 UTC)
Tags:	doc emotet epoch1 heodo ZLoader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-21	arc.docm	doc	205a04626bdf6f3da605d8f8ba60126d02451085528330524d899a38520be8c3	26.67%
2020-07-21	File 872.doc	doc	6852b34db0c7a6150c1095a704236a1938b4ed46cd9d7bdfd412555ebf61890a	26.67%	Heodo
2020-07-21	MES-20200722-L8357.docm	doc	db88b385b97b7038cd233960f7f99ce350a72a3eecf6bbbcb227645f111d4e7c	26.23%	Heodo
2020-07-21	Mes-2020_07_22-U2072.docm	doc	99b15b640124bbe2d317af00e7c30fd65e9b97abdb6e07947205d5bdd73c5737	25.81%
2020-07-21	ARC LQH15136.docm	doc	8aa3e958943656f026b02437d4c84ed9268018560390b8ab0d9807c7b23c8b41	26.23%
2020-07-21	Doc-48894.docm	doc	7262452af523481d22f70888f7619a9a6da291bacfefdbc45ed95492326d2274	26.23%
2020-07-21	Dat 20200722 5223.doc	doc	d5af3b606fe2dd9a542f85aed4bab475b5d2f91b9dc5e3e5091cc385e4624869	25.81%
2020-07-21	dat 20200722 W23461.docm	doc	bcc1834e956cf9ee218e2956ae6511170e810ad54d6738ed11f98620609a3e30	26.67%
2020-07-21	INF_H559.doc	doc	253d4ce06935b6b78211d3f7b0ef787b74e019761199199ab5720333db23577a	25.81%
2020-07-21	REP-2020_07_21-61976.rtf	doc	a498a07bd860a86bd937ea230aea64bdbc55c3040d90c13e57a2670608c1af3f	31.15%
2020-07-21	REP 2020_07_21 QUJ456.rtf	doc	31f2efffc02e6ee0f8a7339acbb1eb5aa9faa94b66709417b22f4c2fbc77e7d2	n/a	Heodo
2020-07-21	Inf-20200721-787.rtf	doc	050da6467ba07b4ad283cb19242ba04f2ad1abf3220c2eae335a348c061b49af	31.67%	Heodo
2020-07-21	INF-638.doc	doc	5676204dc114c9f08d3e8b9d365abd67056893923c3fb15afed9d3ffe357507a	29.51%
2020-07-21	list_2020_07_21_I778.rtf	doc	d678baaadbc56de5d5136a2bae9b233710d4016b9d09094c907e6a1442f7fca7	31.15%
2020-07-21	Dat-2020_07_21-BYH51514.docm	doc	193921b13cb10f97c4211e6694ee26cf2ebb7d6eff920ca64cc0d96252fc3487	29.51%
2020-07-21	List_20200721_7623.docm	doc	3e9d864db108ff21b3dbc6aee0596264668e95aa02677c5e98cb40bc9bf40998	n/a
2020-07-21	Mes_20200721_14360.docm	doc	7203fa5731e4f60d782eb7248af9620384981a39282d70094f40946b1b7a60c8	30.65%
2020-07-21	Dat 2020_07_21 WG9482.doc	doc	3d808e9e116ecad94d0839d1a951f8aa24c96f6dfaaa774a889edbb38c857b56	31.67%
2020-07-21	File-2020_07_21-GJH11798.rtf	doc	87d3dee382ec0e4a5a3c0c6979d2e460be44819c475c2cebe34bc5a83bb26b98	n/a
2020-07-21	file_2020_07_21_EM939.rtf	doc	2da4a10c384d2bf3468b73d621de109cab5a29179b9d6cf4102c7b46dd937261	31.15%	Heodo
2020-07-21	Arc_20200721_PUC02004.rtf	doc	4de321a8533808438637e1c145e5ddfef9f24da81cb5129fed75c13218abecbf	32.20%
2020-07-21	inf-ZCV0144.rtf	doc	519ac8bbe23cc0506580ac08c5bc589d9d5382e00ea81898846715cef7502d8d	29.03%
2020-07-21	LIST 20200721 88333.docm	doc	fb03ffd1375a8f6c374ae010a9531c83c9383799710c0fbe06499d46a9eccf26	n/a
2020-07-21	MES 2020_07_21.docm	doc	e6294d7fbee243e8b73deee0a892f92f51e5c1ea412f64e55a109c42c9922018	n/a
2020-07-21	Arc 20200721 V575.doc	doc	76b3bec66b692ad45b4c647003c0e5e5b5a3d416c87a613b7094960050adad61	29.51%
2020-07-21	ARC IDL8393.docm	doc	37aed6f66e26d67c404f293d6eede26254f40b2470ec3bf486f9e7fdffec0ba1	n/a
2020-07-21	ARC-20200721.docm	doc	abc5d61e460dd7012dd5db11834813772ba453b4bbc00771a5256848e7baea44	28.81%
2020-07-21	INF_2020_07_21_54245.doc	doc	15617b37ed587c9af7ec3de8d4aabd3de95ded6604f652abea14822da2c94ce0	28.33%
2020-07-21	doc-XA07111.docm	doc	6166ebbd7b66dd9173a4731d1d34051e54c6826ee275be43d34ecfad4a0d5e7a	n/a
2020-07-21	LIST 2020_07_21 2241528.docm	doc	c7822a15dfb48ca078ebc0a41816b3bb1925bba9198831892a7e77fe64e84f42	24.59%	Heodo
2020-07-21	ARC-2020_07_21-15437.docm	doc	a82dd2141315d36a0f9ba74bb443a40e0495cd089323254c35d0c4686249de7a	24.59%	Heodo
2020-07-21	MES-20200721.docm	doc	4a245c3424b436cc23d07727f5181cf185c57b77fe1a1a95286fc12c91c36403	n/a
2020-07-21	Arc BR93447.docm	doc	bde282cb96f5986ecffac2e217f661fa0f00c92f1e4b2a788aad9cbd53a2eb51	25.00%	Heodo
2020-07-21	Inf-20200721-EC964.rtf	doc	ad614712ee0ad71a7408a527a3a2051489b0ff4f08038b7a676ad967ea160fb7	25.42%
2020-07-21	DAT_BU09750.docm	doc	23bf0066e26b5b6e2403af2810c57d5ee5c0e04cfb175df6c134826cdb68bce9	25.00%
2020-07-21	file 20200721.docm	doc	38a052e49569227f531849f52c6e801e5abb2c68a7dd2c5a9fca8e92ec6b0211	24.19%
2020-07-21	doc.docm	doc	deb29a892e444cde34fe7642bacbee1bf74d35fcff478966636eec77c5e28646	25.00%
2020-07-21	File_20200721_9670788.docm	doc	ecdaf78dab236699d9244160f6b4865a5cdc8481ff2e8d798df9a342d10f1654	25.00%
2020-07-21	Arc-UFD81403.doc	doc	9e501526cd1120438e501f104b58148cdcc62bfd5bdf617d87542dafe9240303	n/a	Heodo
2020-07-21	Dat 20200721.rtf	doc	477bc137f269ae86b7049d592f7588c5f063e569db20bd09ff2bea3a04aeba06	n/a
2020-07-21	doc_2020_07_21_27833.rtf	doc	77381e8fde74067c151274bc344395ef59df227e209ec80c0d7879aacbd5d654	n/a
2020-07-21	Doc-8582.docm	doc	eec0262941bfb2dcb8d29f6ef1ccc699726ac66beb04d7d34e8da3281cf19c38	25.00%	Heodo
2020-07-21	inf USA248.doc	doc	2e716647297132c94bca63747c48379889273658b12366fbe0e689a2b9966470	24.59%	Heodo
2020-07-21	arc.doc	doc	c915922a81a8064f3c80285e3615bd5aaeb6452a92f4588fe03bdc81caa840a9	24.59%	Heodo
2020-07-21	list-139.rtf	doc	09d5cad4c8b70edf0e4e47c1abcbbdec9872ca65c129f100c3eaa76ff6197497	n/a
2020-07-21	INF 2020_07_21.rtf	doc	a8d9eceee2cd3735b96abf3528e7ec3e8e2d8ceb8991c00c7ff479e9034655f5	34.43%	Heodo
2020-07-21	Rep_2020_07_21_898585.rtf	doc	aa4a6dae1e4ea4aaa6e4539fa9a3fbb129544c7d56807321757f41321b723abb	33.87%	Heodo
2020-07-21	Doc-816.rtf	doc	f78e874b4d5c5dedede72b85b571f2b04d8edba617b6634d95c2af181e6e4dd7	34.43%	Heodo
2020-07-21	File.rtf	doc	793132996a7b6875055c2bdbde2173f37e68ce5f04ab651acad13f84ab89cb82	34.43%
2020-07-21	Dat-20200721-0284.rtf	doc	276568f9c3bb230aabe183dbfd02ad1c36b7aa141d382d34a839a611a422c07f	33.87%	Heodo
2020-07-21	Dat.rtf	doc	9e7349a986f7139a74245edcc8f0028bd6a10f81e79a7ac8bf7134e6d4932c2d	32.26%	Heodo
2020-07-21	INF-2020_07_21-126.docm	doc	754a0bebe018b079d9d9260256ea2106b4b5ad9a654c8b8a1989bf6e3f4568f7	34.43%
2020-07-21	List 20200721 JQI464.rtf	doc	3b8d069085588b448b85cab8b5d59f09dd147c35ebeeaee9e85b2c957011ca87	n/a
2020-07-21	Mes 0138516.docm	doc	ace014e43d78870f28d2a732d72b60fe0c602b71dcc8771989e5cfc0bb1e0bef	33.87%
2020-07-21	LIST_20200721_ST1860.docm	doc	3bc869822322f3e700ec706660323daeca6ea90553d0bff45ce1fdc1ad6dfcfb	32.26%	Heodo
2020-07-21	list_20200721_42793.rtf	doc	122b0d68ee819b2ceb91c0b2cdcc0327860dadbb29f884a776968a58c9480ec4	32.79%
2020-07-21	mes 2020_07_21.rtf	doc	e2a49ec64650e56e967e8b0c31b7e21ad3f1ab14516c6dc02605aaeb90f7b87c	32.79%	Heodo
2020-07-21	FILE_0877552.docm	doc	41718a7885dc57496b953e118a0e425ba2af1e37a2a3a868cf05ac83e3db792f	32.79%	Heodo
2020-07-21	Mes_844.rtf	doc	276dfa20b9cffd3ac104aeafed599b2f70a9fd0e8d4faf1d86ffd46e8354a416	32.79%	Heodo
2020-07-21	doc 20200721.doc	doc	176237b901fd642cfb1c3a9fd8c50cdbf0d5ec30df6c98142d3a0e48839f9d51	n/a	Heodo
2020-07-21	Rep-20200721.doc	doc	1ac71bc3a613397302fc4eefbe3d81f107740541b6a87e051b452eaa6e74f3b8	32.26%
2020-07-21	Rep_20200721_ZTF103761.docm	doc	52806dd9a9f08f00c7fd38512ceeb4204d74ec64041dfee5fcc16f1ead3765eb	29.51%
2020-07-21	arc N574.rtf	doc	4e34674eaa422795c92ef9cb66994e18a57553e217b4bb4de69c1369608e36e6	31.67%
2020-07-21	Mes_2020_07_21_BS01048.doc	doc	49b857e2068f710d1facd444264c6d8804ecc9e2ba9660953b24bbf213cc66ba	29.03%	Heodo
2020-07-21	arc-PNC226430.docm	doc	33e64096db5340fb26c5b5d6f9b1dd89674d3a77a96a25fafcb878d9929fc9da	31.15%	Heodo
2020-07-21	DAT 44824.docm	doc	1e585df85081a824f1ec5c3f6a51599addb89b03a63bc0a5883c5f9c2d877187	29.03%	Heodo
2020-07-20	Rep 20200721 ZM700.doc	doc	cce8e5e706869261ede523822b673dd52e48d4351de8600f5ac209a7f0189629	29.03%	Heodo
2020-07-20	REP-20200721-663803.rtf	doc	0d657d365282571dcf58adbb3a758c81fa3df50bc081a60d01f14c5431b9492e	29.03%
2020-07-20	dat.docm	doc	f83e32a15080c0f31451809377046083d52daef3354edecea6db6ccf4158a43a	30.00%	Heodo
2020-07-20	doc.rtf	doc	107cf68ace70917126432b415c7a9b4a18e3f87c304c1ea780b1fe0950167c29	29.51%
2020-07-20	LIST 760.doc	doc	a6ca24bb5b1de30cd63ecceac1727ca4102ed289d65fa05c550c4485e6ca372b	29.03%
2020-07-20	dat 20200721 FO785.doc	doc	c0696d196c346305861f4e358f48f216dcdde4251309abed3547504007cb858c	27.42%
2020-07-20	REP-20200721.docm	doc	1269bdbbc40be92cc1f13918a692b34fdfeec466bd7d872863ecc405ff38f77f	27.42%	ZLoader
2020-07-20	DAT.rtf	doc	4d5d4a16ec11a850141a0a77026153d2a409bb4602e624623ee007e79dfd9639	27.42%
2020-07-20	Arc_2612430.docm	doc	c5dc7db865c477ba217342107932a67cab54659a8a870fa16a9d2f21ec3aade2	27.87%
2020-07-20	arc_2020_07_21_5550.docm	doc	959e1b792a528fab48fa32c87234357760ef40d9b01426cfa04ba657a41a326f	n/a
2020-07-20	dat-54399.doc	doc	8d861becdf66c056d51b6b585d1d2c98ec75e77bc3af28d354edb72f3ebb65ad	27.87%	ZLoader
2020-07-20	doc BQG205451.docm	doc	d6da6435e94d2fbb2a3847c934bf0b6d41c613337ac951b10fd5851eb98a9bf3	27.87%
2020-07-20	ARC A5465.docm	doc	3a26f638eddb01e30b8a712291a03088645dd9d2986cbe415bc1b87cd8eb70ac	27.42%	Heodo
2020-07-20	Rep-76925.doc	doc	3aedca3992d77371154f015834399c14aab576050a53efa01fb5714e01beb841	27.42%	Heodo
2020-07-20	LIST-20200720-OSC33971.doc	doc	d06b767d98bec7fa338114b2e77b1db8b1a8962819fda91258575e6cc7910b31	27.42%