URLhaus Database

You are currently viewing the URLhaus database entry for http://addahealingmusic.com/wp-includes/d4zkckftm2p/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	415731
URL:	http://addahealingmusic.com/wp-includes/d4zkckftm2p/
URL Status:	Offline
Host:	addahealingmusic.com
Date added:	2020-07-21 05:26:39 UTC
Last online:	2022-03-15 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-07-21 05:28:04 UTC to abuse{at}megatrhost[dot]com)
Takedown time:	1 year, 8 month, 2 days, 10 hours, 13 minutes (down since 2022-03-15 15:42:00 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-03-13	n/a	unknown	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855	0.00%
2020-07-22	DOC_00892884.doc	doc	91420939d17611e6b1215827089e2e118b07eaeb3034e72059b79148104ae337	40.32%	Heodo
2020-07-22	REP_96241343.doc	doc	432d6d6881a6d2006ee6d849c32688e7243f4b6f06e42ebeaab0665807c3140e	40.00%
2020-07-22	BAL_SM8323445403QV.doc	doc	c9f585e76195bccbecfc06a49ff58041d156b95ab4e7e12c664332b57a86e2b5	40.00%	Heodo
2020-07-22	XT1154085221FS.doc	doc	52d38a2e099e1a91adcac50b986c9283c6b503449c08f1ea50f1202176bfd48d	38.98%	Heodo
2020-07-22	GZN_070120_ICJ_072220.doc	doc	36da82529398c84564c41db4ee6bd80d8f27729d46fe18511455ce03a0c3a0f2	38.33%
2020-07-22	REP_VN4538178933WB.doc	doc	bff462e527dc2bbfbc6af92e64f4d57c7587401687561163e0a6a3ec37414d68	36.67%	Heodo
2020-07-22	HOBN_18455551.doc	doc	3249c6416297b56a2e2b0f8e5a7953a0d8ed783591de7cdac42bdc694631f11b	37.29%
2020-07-22	DOC_WJ6073163906PO.doc	doc	a1169e902ab8c4c2dc02af0a77012bbc44d149973cdf8002231a3f9f177a542f	36.07%	Heodo
2020-07-22	V_1755794070807085.doc	doc	75976bde3b02341d4f05b9672041e7cecdc933663249a73fc38982cd66982d47	31.67%
2020-07-22	DOC_6GGFGDUG.doc	doc	bd83f09ecfe601637ebab977d8f363a89860c60d16456c28bcbfc30ae1778885	30.00%
2020-07-22	K_06959373.doc	doc	a86f1e9e1fe56b2a602940171cc372f4aac4616897c720351e8b379a4c6520fb	30.00%	Heodo
2020-07-22	DOC_PO_07222020EX.doc	doc	55e84398cd55149723b8680739ed42c4a5b52da9a84aae98b979409d9dd11cd5	31.15%	Heodo
2020-07-22	T_LT1608052886AV.doc	doc	00ef2d68251c66dcd85acb5c11837148de33e43d9a98eda9d28435c9d74477e3	27.42%
2020-07-22	BAL_7ZVX7PX5I2H4UY.doc	doc	30c4cc96ab9f83017f38edba3d630eb388ab4540951a1f799ef60ff5659ea45e	26.67%	Heodo
2020-07-22	15231992.doc	doc	6999be5570232cb11189a152478254ef33470426036d88fa74b45305031efb73	26.23%	Heodo
2020-07-22	BAL_YYG_070120_GTO_072220.doc	doc	ee36488e9d6d8ea09cff02367c7212d0503f376346c3b40aed03e01c1b1aa668	26.23%
2020-07-22	INV_IP4460421933ZP.doc	doc	49e20fcd1ebe7943437c809b881031d59e45a98614d1c7af96b3c1835d4586cc	26.67%
2020-07-22	57733877396174168876400.doc	doc	adecd8241c21aa989810258e39d162aeb6ec0b86ca6a884fa3a542ad306a1c63	26.23%	Heodo
2020-07-22	PO_07222020EX.doc	doc	a76feea95a298d6f94ca0a719376f30e4409a18555e10bdb1e90a24c7facf294	24.19%
2020-07-22	FILE_PO_07222020EX.doc	doc	c14ddeac4500ec2bb65828bcf770f5ce11a369ca829f2c68587632e1dccfd995	24.59%
2020-07-22	F_PO_07222020EX.doc	doc	5f5a353ccf0dbcfaa0859d0a1db152f2d40735bce47864d7ef9c12ab93c8ca88	26.23%	Heodo
2020-07-22	M_PO_07222020EX.doc	doc	f9b9806f9c7c88864e0ff685eaab801a085f8c567b7d6993101bafa58c4833b8	n/a	Heodo
2020-07-22	H_LHZ_070120_NBS_072220.doc	doc	593793a914684244b3c51333736fffc1cdc69c51759831c888b66e6a07ef8b72	24.59%
2020-07-22	616845027381494793.doc	doc	9dc3bf8aadd5819cf5be10ee9a0af6c94bc4b8a7a193cf539ef3ac9288ca9f15	25.00%
2020-07-22	BAL_PO_07222020EX.doc	doc	e138da30fb56344429ee51040714270123930932db14186bb12630a53d904fdb	24.59%
2020-07-22	REP_PO_07222020EX.doc	doc	ed1a41469969a80fefc58566124f44e0846bff21d8e51d897da0d10b2386174b	24.19%	Heodo
2020-07-22	PO_07222020EX.doc	doc	afb0e524b7db64a122b728e245c9696835a816e3cf272da3b39ac35bba514abd	n/a	Heodo
2020-07-21	REP_8S0M11EJ9O.doc	doc	620ed9cdd6372b6bd9572a507c6c349ec07cd10cb45cb36216f21e2e6b025d2c	24.59%
2020-07-21	DOC_CX7769317866VE.doc	doc	c6ca23f36d524391de9970059d2e0faf54270286e320503e3eadf282ab5082a2	24.59%	Heodo
2020-07-21	53283212.doc	doc	737dad0010dfc90068d5db4073a76c04f2e9aa7549373686028374e3bbbdb652	24.19%
2020-07-21	B9CO7L6024TU.doc	doc	5c3d472318679572aeebf4c76cf7f2ead0f39f72e9d9d3e26604c88f35364b4d	24.19%	Heodo
2020-07-21	41464901.doc	doc	dcd97e231a7928660c49c35be9d5b8f839ccd3e2b8882ddd60c22b1bd012ac4c	25.81%
2020-07-21	BAL_OEA_070120_JCZ_072220.doc	doc	bc7398dd8ac94a9ff8ca7a93f0755681ec84ca7fd05058ddc053cd16e1b3f4e3	25.81%	Heodo
2020-07-21	9285872023285560.doc	doc	c0af5b3ed8e1c92c57aa0e1b6f60d24b4ddc6a95ae92906d793d88413fa9904d	24.59%
2020-07-21	71529138.doc	doc	eb1f5512e10d3a5224fa2b7a8d42a8b6fdb1b4fa705c24514c2b04fa6fa3bda1	26.67%
2020-07-21	INV_FXZ_070120_DWU_072220.doc	doc	bfb0b36ae7105ad67727e68789279e3550b6750177ae7c2fc1007438f686f070	26.23%	Heodo
2020-07-21	KKI_070120_QVO_072220.doc	doc	eb3009e003594f7c6d5a2c373db44fe65d9acc0be9c31c317bf9ebfad08e633e	25.81%	Heodo
2020-07-21	REP_KN4516497484SP.doc	doc	2f4719fe8c7d6c5de85448ec6a443b49b51cbee1b16d7d67e6a8e497a3b5cd7f	26.23%	Heodo
2020-07-21	FILE_PO_07222020EX.doc	doc	4a6f267daadb0dd612dfec5f99bfda7da3e527108b3105e2ad116bb9ccc92c51	26.67%	Heodo
2020-07-21	JAD_070120_YTQ_072220.doc	doc	cd6f41e3821d55917fa4a0cdbe223abdb97ed8da6f7870d449d8e81ed6f9ec69	26.23%	Heodo
2020-07-21	INV_734195478294629.doc	doc	6616cbabce1dd4cb3515191b2ed913e01a7ffc8b1cff8ec410600930bbdf7f3f	26.23%	Heodo
2020-07-21	FILE_57498887.doc	doc	5966dbc11d924231b5d148a1a821154f88e469adcb6e884d4dd5102c9e598e9f	24.59%
2020-07-21	BAL_83850530.doc	doc	df3b437a0a2555b3ae16c3634140dd1ff3832120d3376e4a11ec45a500250f4a	32.79%
2020-07-21	BAL_83850530.doc	doc	df3b437a0a2555b3ae16c3634140dd1ff3832120d3376e4a11ec45a500250f4a	32.79%
2020-07-21	INV_YR2740209828MB.doc	doc	ed1fa22cd74f33f9e0a5d4191f4b7304925eae53db04e752d2095134b6f0100f	32.26%	Heodo
2020-07-21	P_PO_07212020EX.doc	doc	6b606b07e4ddf623479f05fe2da2628bfb74b953116407b7e4ad3cd64421de36	32.79%	Heodo
2020-07-21	INV_SI5501689934SH.doc	doc	1eb40695aac83a3f528f16af863be6327354d555eadf1695c53904c523ac9a86	31.15%	Heodo
2020-07-21	REP_JY6356904635OU.doc	doc	c22e26dfab6e9d1a9b274c81e01683828409ad629bf7883a0d58600c1f8db403	31.15%
2020-07-21	BAL_BS3JHUN0ZHBKDLW.doc	doc	6acb37f46741819ca10ee4ccb7f88dc94b5dc36a3a1c5c366450d76db4b42a6c	30.65%
2020-07-21	REP_20968206.doc	doc	ffc575665829ae7905ee6e5f2194883080c4ec8d2fa69ac1770319767a1b5456	31.67%
2020-07-21	DOC_NZF_070120_KWM_072120.doc	doc	d087ddd4ab54eacd0bdaa2be04850c18ab694655cebfb68094cc191e7479b793	30.65%	Heodo
2020-07-21	REP_XTJ83PT811S.doc	doc	74db9fac3d9a684b81ce1975d06d184a85bc67d24466aed35ff6ee475e21d16d	31.67%	Heodo
2020-07-21	FILE_MDB_070120_DFD_072120.doc	doc	a543b622ebcc58314854fa85473ce89753b8c30877e2562d607aa9483023d16f	31.67%	Heodo
2020-07-21	JA_91322462.doc	doc	cead2b444fb70319f7ad607f10b254f3888d97ee61adb8a5be9492f259718ec9	31.67%	Heodo
2020-07-21	EK_XB6221656102SV.doc	doc	c50850a81ad3ce08fc961162e1082494177f8e501dab0e698bce46ffef854ef6	27.87%
2020-07-21	BAL_IP6051488497JI.doc	doc	9730ab9a8c60bf06cd93ddc13f7a80f30ce61e20782b9ff1c85dbeff59e3062b	n/a	Heodo
2020-07-21	W_NKK_070120_YED_072120.doc	doc	26d6a947ace5dc20b8511699014a7230d627b181f37246807ea85cdeadea61fe	n/a	Heodo
2020-07-21	P_DJI_070120_GWD_072120.doc	doc	454c1cc1f9583beec51230534131bba60e6483bb9363ead5a4b7b33f54e30a51	30.00%	Heodo
2020-07-21	BAL_79376780.doc	doc	d79c71d538e01fa78030decd715462c870e06f70c88f52d1d917e2302ba1c140	n/a
2020-07-21	9295279304373327029.doc	doc	7c0e49dcc082c8f4b4fac91339f378ea04ffb0ccbde5018346e4f95f30fcb05c	n/a	Heodo
2020-07-21	INV_7611041159699574043272721.doc	doc	5f3da5a1b6d61a46a16169eaf72e463f3f5483f15213d0799b577d4684e38a70	28.33%
2020-07-21	INV_69943079.doc	doc	ced32d6bf400cc3bb59aa1929efa4c17228064153ca0615288fc1fefde35f11b	27.87%
2020-07-21	INV_WUOQ4WLALJ.doc	doc	6aae57a7a60c8c2529948a9290becdc90f10be950ad2133ef7cbb1c366693f4e	26.67%
2020-07-21	DOC_15406737640.doc	doc	974a9bde6fa374685e63b50d21dd8254256dd8f6418d9d65e208a465a0141f73	24.59%
2020-07-21	FILE_TH5792502498KL.doc	doc	b4f865e3011a63a5b8a0da14876282d97d5144e153f8316025555d276602d335	n/a	Heodo
2020-07-21	KX6225444024UC.doc	doc	281280ed257511ed8f8f2b291a83ce2978bc6e6f14c52ca9ce10540c70cf0605	24.19%	Heodo
2020-07-21	INV_BML_070120_FIF_072120.doc	doc	a77f0d09a07d8f85b737d25216501b343e22c4e04a6f88b16dc1ab9ea1b2a222	25.00%
2020-07-21	FILE_94860565.doc	doc	b1a935c9a64f8a2191e613e696c6df7a5892c608ec14c6f72c3459c4a62f2865	25.42%	Heodo
2020-07-21	REP_4763638730403761208.doc	doc	c1d1210982635dadb2f24475c235301c47a2929b5b3caa913ebdad6df34a0c71	n/a
2020-07-21	DOC_MP9689609853CK.doc	doc	6ea128ea049d2ebacb539514c677bb05791d9844046f47e6e1e3dc783f2942fb	22.95%	Heodo
2020-07-21	74988513604823881290661.doc	doc	003110462b096556a9d96dca0472feaa2dee2edaf6d8d0e179dc08a8a8f2b775	23.73%	Heodo
2020-07-21	DOC_HUF_070120_QIW_072120.doc	doc	76135328ce70dd5755fa54408d962b10954d6bb5c47f883a7c2bdd1defbebb9c	22.95%	Heodo
2020-07-21	FILE_DYGLXRMEN3.doc	doc	283288b5bb193523ad2659b4cf322feea153048b6f27a8fa9673ca683bca177f	22.95%	Heodo
2020-07-21	FILE_9609969388168551951884.doc	doc	f2e0593ca696ec36f6b813e857b8fe6741252d7b65df42e5e16bb3c80bc7a90d	n/a	Heodo
2020-07-21	DOC_13554966.doc	doc	b3b5e742a9efcce621c8d70898b0ac59c13ad4c0e62b1cfc1b6642c403cfa5e5	n/a	Heodo
2020-07-21	BAL_XA3672577304WX.doc	doc	c0a07acdba0bcb551c7783cdc1b10474c024031f6f011ee1761843ca640b1c3d	n/a	Heodo
2020-07-21	INV_NY2346800596CU.doc	doc	b946948073ee057b1f1cdf3b7c54098e9eb35bb8736104d13e2f3febb038f2b3	n/a
2020-07-21	FILE_4728665720376.doc	doc	8b448dc2b315f49801c7b4d4b20a2d3163f9c9376a3c36dc4dc7a52513a101f0	22.95%
2020-07-21	DOC_7430913647999204938264700.doc	doc	660ff4d3124a99db58894556a3461eda17393ca94c27e075185e72536eb6735e	n/a	Heodo
2020-07-21	BAL_UCN_070120_LNR_072120.doc	doc	fc2bb7719f33ff249113e3c05c4b2b6fdbc99190e250b3073295e271c553f0d0	32.26%	Heodo
2020-07-21	T_PO_07212020EX.doc	doc	d604f20c04d25e448176ddfdf3e01865091590cdf5f2cd2c42eb9af7cf41c718	33.90%	Heodo
2020-07-21	LJ6060934871YG.doc	doc	53b9a409018adc25ac26a608d9fae417659211d8754dbf7f07c3e4710a026774	32.79%
2020-07-21	INV_159927456427914.doc	doc	f23c88283a5b29e45eb6658afb904be03923f73895e4f6b232f3e04e288bb715	n/a