URLhaus Database

You are currently viewing the URLhaus database entry for http://www.willingwater.com/wp-admin/y068zaq-c0h-635977/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	415712
URL:	http://www.willingwater.com/wp-admin/y068zaq-c0h-635977/
URL Status:	Offline
Host:	www.willingwater.com
Date added:	2020-07-21 04:52:17 UTC
Last online:	2020-07-26 17:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	TrappmanRhett
Abuse complaint sent (?):	Yes (2020-07-21 04:54:03 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:	5 days, 12 hours, 10 minutes (down since 2020-07-26 17:04:19 UTC)
Tags:	doc emotet epoch3 heodo ZLoader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-22	INVOICE_IZS2930_91759307.doc	doc	393ac27aa81e021260be2c3de9507d953b3d57f2dfd0ebee96d4a18af210b982	28.33%	Heodo
2020-07-22	Invoice_MWPC74_99497396.doc	doc	bc1674694af57a7a421c131be6eb3403a2d2392a862aaff679ac7d2087690953	28.33%	Heodo
2020-07-22	Invoice_UQ7_411644.doc	doc	02c7fd8ed2ff395eb8c7eb3caca1e0cec299f4db7480e6d19829069ce541bc7d	27.42%	ZLoader
2020-07-22	Inv 3158_629370255.doc	doc	0f2039a528f454dc85d45347c05e3deeed35f371d829ed160143b2cda326accb	26.67%	ZLoader
2020-07-22	Invoice KH550_843010630.doc	doc	4832f93778c37574a58c2119d6f0df1c00221503b83f91db3a165d2195eeb1ac	25.81%	ZLoader
2020-07-22	invoice-4_961425.doc	doc	eb7c02a2f5a7f9b6c76befb58faed0e6cba4cfc494eca22bd8e87b36fa241b66	27.12%
2020-07-22	Invoice_DFK76_935201794.doc	doc	134fcf928417712824838f1dbfb546e7735361bf131324ddffe62aedbcd5f679	26.23%
2020-07-22	invoice-XU4_767129.doc	doc	e7af4a6f667a4edbd224f0b3c1358fcc307b4f67688529201e0c1c9a91560f64	26.67%	ZLoader
2020-07-22	Invoice LZVM1207_00994603.doc	doc	ebec7284e20fdc5a633b8f505fd018ebfdb512a595eaf179e5d77b60d33970b8	n/a
2020-07-22	Inv_FM202_3835828.doc	doc	6475e70afc346103957694beb826b2eefdb2850c9939c91d6b514ce9e1cd32a4	26.23%	Heodo
2020-07-22	INVOICE-SRSH1_05707147.doc	doc	2a1b48f3aaada9451e14e735699dc6910a2df66a18b4f4497c7f4f6f159c8296	26.67%	ZLoader
2020-07-22	INVOICE-492_676489.doc	doc	14c000f66600b5ca3d6bac699b2d5c04ddcb6d8718fee703a5cc2c57fc7a1ce5	25.00%
2020-07-22	Invoice_IV052_205407275.doc	doc	7476dba24b28d2a074d7e75aea79591f98fbb95b065c91870b5a8198ab615f19	26.23%
2020-07-22	INVOICE-PD28_71333059.doc	doc	8cafecab78eb955d85ec99123092085c12c6f94ab003097360fd6bb694cec236	27.12%	Heodo
2020-07-21	invoice-VCC4_9064533.doc	doc	d1fe2bcc5439caf2963c2bcf85af9c8b8d4451abbc4675be82a33bf97ca81f18	n/a	Heodo
2020-07-21	Invoice-66_730949326.doc	doc	43025670822df6a6ae1ba1f56baae65c0d563c0c12410244aeb8fb166be9f737	26.23%	ZLoader
2020-07-21	Inv-NXXQ649_567903742.doc	doc	b697a31e24a1872813f044cfe369887a6850b80c7d79509587d7e4e6955ba322	26.67%	ZLoader
2020-07-21	Invoice EPCU580_592879771.doc	doc	3d8d9972ea35adeb0f1d1014490dd3f3595a14b01aa429e48fe21cdfca7daa31	26.67%
2020-07-21	Inv-PV1981_1192417.doc	doc	74a3c90f0a3c99e8816a94689a4cac44f886be61e0dc3f6d324a661c16c663f9	26.23%	ZLoader
2020-07-21	Invoice-DAPA23_74408273.doc	doc	29fd633ba82c884e342db1c88a40a28984b2cb2fc5cbb4fdd901a3c6e5850817	26.23%	ZLoader
2020-07-21	Invoice DQ2447_45327306.doc	doc	9e2fa2ec0c3818292f9a10539ef4bdcda848df84a8e0223cae2f28f82360a11f	25.81%	ZLoader
2020-07-21	Invoice-Y807_55808061.doc	doc	747095882ee4fedcb2d7306fbda6bcc5b792e877d427b855d80a0fdf5db073a2	26.67%	ZLoader
2020-07-21	Inv-WSOQ5802_2613545.doc	doc	2bf992bac6895328fca415aeeee4f89aff347608e709524ad9a2f549b007dae3	26.23%	ZLoader
2020-07-21	Inv YTRW0772_058143.doc	doc	72a76d3c5a30ccf7584528d7bd29ac47062d468d56a417063c19573496089d56	n/a	ZLoader
2020-07-21	INVOICE-AS5515_9557453.doc	doc	97af910f93ee8e736e135660fd84b888bdcc82c809ef30af7cac06da62907994	26.23%	ZLoader
2020-07-21	Inv_RQK61_9993808.doc	doc	ff78753a5dfc898ae4ad1957d3d5ebbfce28458b5ed38a163e38e35532e62c58	26.23%	ZLoader
2020-07-21	Inv_8311_75048513.doc	doc	d00a595a3e71c743fc04ec4a2ba0eaab9fe1d76d7b018423fc5cece4e4a62a29	31.15%	Heodo
2020-07-21	Inv_8311_75048513.doc	doc	d00a595a3e71c743fc04ec4a2ba0eaab9fe1d76d7b018423fc5cece4e4a62a29	31.15%	Heodo
2020-07-21	INVOICE-7627_3315236.doc	doc	3a5dd00ce1b9f75836d4575816fd4e49d546dfa29d24a4b5dff87b94d9b34b13	30.65%	Heodo
2020-07-21	Invoice K1154_97570880.doc	doc	efa78601a195a5d90844411d1e045d9589a8249a71bf35b0132e17b31a412c5d	29.51%
2020-07-21	INVOICE-UR6126_691366.doc	doc	5dd07737bc4bcd586aa9a89cdc86f5222873447eaaf558d404f31e3fb459f437	30.65%	Heodo
2020-07-21	invoice_S988_58810570.doc	doc	4de9b5d8be922ee6f95a85aa378d4b78596a0df19e25a0388096ba0831feebb4	29.03%	Heodo
2020-07-21	invoice_2_998256435.doc	doc	bdf6b8a3ab43c2e8091f591a913040c789e38a80e2f57d9dde2c5f0cdd9d7fe6	n/a	Heodo
2020-07-21	Invoice-J28_658976.doc	doc	a61871e76461292b6923cf001c886dc23104ef7295f6fd608c7b444e577398e6	27.87%
2020-07-21	Invoice-G8366_80057983.doc	doc	5ddb6b1bf21e4b873293346c3383ce3ff112b9271388b039ed95d38bbed45c5e	n/a
2020-07-21	INVOICE_SMSC8136_249379707.doc	doc	05b1f0822783aa9419a3b13424fb6d31e224e8dad2c84ace8cafa7c1b42a1f3e	28.33%	Heodo
2020-07-21	INVOICE-ZV086_965945306.doc	doc	37b40dfa5b0802e246f8fc7b2454db8cb46ad31ed36c4f7fb154a71aa200279e	28.81%	Heodo
2020-07-21	INVOICE-MPE58_570848576.doc	doc	75c9115e924a7b2ea6b2565e7d48407cbcdf06ffd452bcb6834bb821185b2272	26.23%	Heodo
2020-07-21	Invoice-B5_843049.doc	doc	692c3606f5b32a2200f1ec78d8764604def5e99ca282474046d78500e09fb91a	26.23%
2020-07-21	Inv SY6_608501.doc	doc	bcc004820abd0f210285b3aa58c625f0a00187f4f545313a553b4a40ec68b6ba	26.67%
2020-07-21	Invoice-RGLQ79_050112.doc	doc	8f32874205c29ff499e75943e0f6c9b298417cca9166bee485e13f791d6cc4c3	26.67%	Heodo
2020-07-21	INVOICE_94_5774644.doc	doc	f46d92d4440678792e72b414df3ccbe066766a4b486ea3c25c767d8c297335b0	26.67%	Heodo
2020-07-21	invoice-VD47_495388888.doc	doc	c809bea4eab861ed271e8d1688b261c33747782ac6756d644edf6889ba745c88	28.33%
2020-07-21	invoice_AE00_948603.doc	doc	aa31041b4dcd03e3ad1818d6ca5ac597b999aa6725212a9dfecec97c68100a27	26.67%
2020-07-21	Invoice_KCK44_081768.doc	doc	969b9fcc13e520a48a60d7e65714c495c99ac1a90075aef31a7486070b8bb171	26.23%	Heodo
2020-07-21	Inv-LA4397_76186033.doc	doc	6a474d19ec3d28962de1668764ca03da5b762d1d6a949bdf78910db1a1bd1bc9	25.00%	Heodo
2020-07-21	Invoice-KW7_682755537.doc	doc	ec15490f0fe558b1c2db47afeb9bd903a82cc44b48ba66e6c66a5570e0be87b8	22.95%	Heodo
2020-07-21	invoice-TA3_87658073.doc	doc	f37d602c2d14ef7dade7cd13740d744939c846704065c8d20367a677ce0ad095	22.95%
2020-07-21	Invoice DNX1_336952939.doc	doc	b7c0c24f3f9f552c499937cca5dcb7a8fbb7bbf600dc1ad43256647401ca3d04	22.95%	Heodo
2020-07-21	INVOICE HLCM371_7513335.doc	doc	7f53ea4c64012caad27163ff00c2aefd9e2dff6a4c5fe488955be018c8af4362	22.58%	Heodo
2020-07-21	INVOICE_ZX504_010988288.doc	doc	3f7a1b33f7dcc1b83d5f92638f49684c3669a37cb4aadc5ca4aca17036fbe4b1	22.95%	Heodo
2020-07-21	Invoice-PT0_360960.doc	doc	eb0997857baec37d1cddca0ae3c7b6c59fb78566eb5faf16035fef12063a3a2a	23.33%
2020-07-21	INVOICE-44_822102.doc	doc	e0b1f74edfc82851cded4dcd2efe9482c8272105eb6853b36947bc7ef8510145	22.58%	Heodo
2020-07-21	INVOICE-AATD22_3075482.doc	doc	9880e4daf09068bccb16b2baae14ff902fa9d6f841f48ebb26bdd1944e41045b	n/a
2020-07-21	Invoice-UYY3_087355.doc	doc	91eeda612b556a293a55a78b95987a664e002e871a53ff177794b04908f39fcc	n/a	Heodo
2020-07-21	invoice-FJ235_18667267.doc	doc	2b44339164b5e8b860c12c8e8b4ad6dc2e1bc587463ec797b04401d948978140	n/a	Heodo
2020-07-21	invoice-DKPV1899_929993.doc	doc	4903f451f19bc16aaefc695c70d0fb223e73d48958a54a4381cf8f776bc4e8f2	22.03%	Heodo
2020-07-21	Invoice-826_08849438.doc	doc	7b89c117307ff77f93913774b637ef762d4bd0656e1b17b9462821cf15e87f0d	n/a	Heodo
2020-07-21	Inv X2696_568006.doc	doc	59fdc24661735c738aea0c5ce35581112339c50c9a16a48bdc26694fcc2aec0e	n/a	Heodo
2020-07-21	INVOICE-B20_753571763.doc	doc	d279829ce22ee6a6b6a7c259b4c7be73b7cad4a3ba3771caf3255dc6c4024f3e	32.79%
2020-07-21	Invoice-DJO57_51711739.doc	doc	ebbd45d43283a8cb0568c350a669315564a1e8707aee4ac4556c0a843483d482	n/a	Heodo
2020-07-21	Invoice-J86_77774332.doc	doc	4c0125f72c43063a474cd06d510baf4675597b0dc15dbc75808ba19e47c3b508	n/a
2020-07-21	Inv XMI7_048179322.doc	doc	c8b378b56c943ef48599ab9f3eac4de26ced0acd9c5db6d952aac355b1ba581f	n/a
2020-07-21	INVOICE-Z720_59388427.doc	doc	38f0850e9bbc46f419acd8e723015f8a5c90bc3643e680ffac42cb2b88179c77	33.90%	Heodo
2020-07-21	Inv-3_1383351.doc	doc	295dab6cbdbbcb48ed5d8b1623aeec9031d7a1c617436d3805f32e3da8267efd	32.79%	Heodo
2020-07-21	invoice ZRY220_674290610.doc	doc	33a93dab74ebd140d4d77872dc8c32cc0a9f876e750bfe15994bc2884d42a458	31.67%	Heodo
2020-07-21	Invoice-MZV19_139643.doc	doc	543ce71bd2deaa4b6c6994a72f3641b50eff2be1f90beca627322bae86b4f7e1	33.90%	Heodo
2020-07-21	INVOICE-L4_193161.doc	doc	19d54ecf09138dbd9153771a0928e858bb5afc3ca208c3a58c9bd8aa5934b110	30.65%
2020-07-21	INVOICE-IL1_3067116.doc	doc	bcbd3e8aab56417bcded9dbddfa8631d609998e5cdbe1e9dad903c4b5c96c156	n/a	Heodo
2020-07-21	Invoice-KJ6_6033803.doc	doc	e37800a8be08a41f6959068617236eaaa5f0bcfbf166b68d0aac0292ff664780	30.65%
2020-07-21	Invoice-MOF7_47035858.doc	doc	2aafa91f9bf7bb0ba237bd6180ec6279528f3936609ddbb3138e151094fbb45e	n/a