URLhaus Database

You are currently viewing the URLhaus database entry for http://bodenstein.co.za/images/Overview/48y9muumqhsa/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:420113
URL: http://bodenstein.co.za/images/Overview/48y9muumqhsa/
URL Status:Offline
Host: bodenstein.co.za
Date added:2020-07-27 19:36:10 UTC
Last online:2021-04-19 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-07-27 19:38:03 UTC to google-cloud-compliance{at}google[dot]com)
Takedown time:8 months, 25 days, 22 hours, 28 minutes Bad (down since 2021-04-19 18:06:52 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-07-29BAL_MQL_070120_VVU_072920.docdoc cc1c85fbcda8db7e5b287f91d83f2f4acf6235e999339f956e9d592f9e7c59a8Virustotal results 36.07%Heodo
2020-07-29REP_91308644.docdoc a0ddbec40166f827d5d1b72827fd3d7dcb087b0068d71013fa79bbab90d595f7Virustotal results 35.48% Heodo
2020-07-29DOC_RT7580938934CP.docdoc e4618abf1620fcddaecb726dd2a7f7a095ca8fd8c270dfe8effd35c7f00f60d4Virustotal results 35.48% Heodo
2020-07-29FILE_OO2204908033KO.docdoc f1175d64cfa9bd48060ca1c9a55ffbc0ea4e9c9f11f776735540a5df0cbf998eVirustotal results 35.48% Heodo
2020-07-29C_05546814.docdoc 7cc0e0d42675739a03ee7a45f6f70ba77f5586f1757dca8f793b25daf607f7e5Virustotal results 36.07% Heodo
2020-07-29PCN_54152785.docdoc 9ca463088f63078936689452eb9fbbf48f0c4e7efaa553174c1990d90f5e8530n/a Heodo
2020-07-29XQ5120530772HE.docdoc eab8382b9becd262d347b0fac413cb0096a14d277206285af5e5ddfb459cec40n/a Heodo
2020-07-29IUB_PO_07292020EX.docdoc c53e4356e0a876f07a7b63c9c93e8e198f72a37a5dd754cf3f8060369b2ea9f9Virustotal results 33.87% Heodo
2020-07-29SD_1SP9F6R.docdoc 727f2b57969b68dc6e79c694c096bf3420cc788db33ec0f47193d70ce11fb20fVirustotal results 34.43% Heodo
2020-07-29REP_TDQ_070120_LWN_072920.docdoc 79ba06b6a2ed7e51bc791c84bd9a3fc467aac335a7e0ab848243f463a440f0b3Virustotal results 35.00% Heodo
2020-07-29FILE_ZZ8172864787GQ.docdoc 3d0f47c47fbc6cfee2fb276f433b21cca723df51f5c2a24b876cef35c936e81eVirustotal results 34.43% Heodo
2020-07-29F_26794782.docdoc 09b48077de19d52dfbc9b6d2c88ca02edd8faef66106d41aa7e6ce017667ae50n/aHeodo
2020-07-29IDL_070120_VXG_072920.docdoc 2b446f962d60ae78cb353c325d1371e6526cb8315092524b2709b9c2eeae6753n/a Heodo
2020-07-29HIT_070120_OYJ_072920.docdoc 4a406747cc4af71f72229df7ddbd5c6858984101d67e93ab864273cdff151823n/a Heodo
2020-07-29BAL_PO_07292020EX.docdoc d92e4dd34381a1b20f114dc122c6f542aebe6d7633579c8b6f1d934f25666201Virustotal results 34.43% Heodo
2020-07-29FILE_UF1742188679OG.docdoc 0cbadb841dc2c7d6152c653d711cd5ac8ca759142231e728789ff256b2d9a7e4Virustotal results 34.43%Heodo
2020-07-29W_MJX_070120_ZIC_072920.docdoc 9c24d6fd85470958aea67d26f6293c5d8cb091ccac7299fcc6c243ff90382cben/a Heodo
2020-07-29BM8118703278YV.docdoc 4046d4baed8c5cbed9936f09919edd39c697922a01e56617feeba4e5957164d9n/a Heodo
2020-07-2986736934.docdoc 4947e47ca102585589473567e7e3f0e8b9051aea7f9d08ee1409ddb7ad6bd2e9Virustotal results 28.33%Heodo
2020-07-29FILE_15006386861899521.docdoc eef9719d24fd5e7e4f8e92e667874c426ae77519de41e4a5b0ae32f647f5a4d4Virustotal results 28.33% Heodo
2020-07-29DOC_PO_07292020EX.docdoc 35882c33b875d15f1c62d995a525bdbf80355da1abfef138e5b369c5543b2ac9n/a Heodo
2020-07-29FILE_986785216018558.docdoc 5a959afcb67ab697d8f53e2e91f7424fb274bee1600360681f6b61c26e377fd7Virustotal results 28.33% Heodo
2020-07-29BAL_PO_07292020EX.docdoc 255028b13e1798a9210c65582ec63fe7da4f42e7a9cb9f68ebd049b60ebc6219n/a Heodo
2020-07-29DOC_PXH_070120_DMN_072920.docdoc 9be11fb35c708221d0f4907f606c0ac7320ceeba311812a57038841301e80a63n/a Heodo
2020-07-29JE7153628125HH.docdoc 4d4716ffbc0025ce6b471022511dc08d0b712ecf347b502ba4c6f734b72242a3n/a Heodo
2020-07-29INV_PO_07292020EX.docdoc 93d8b1a56a79f7cd3f62c1545594be31cc4ad4e5684e690d64b607c6d0fe0e42Virustotal results 27.59% Heodo
2020-07-29PO_07292020EX.docdoc dbd8762c7d8b9348a509e890f68a6c74aa1f60d81f6acad63ad3b56dd3337e8aVirustotal results 27.87% Heodo
2020-07-29BAL_3728401667.docdoc 74135d57c55d6142f0678a1f28259364b24907bd824f953dc77b3ba7f10648e4Virustotal results 28.33% Heodo
2020-07-29XSHDZLLTOA403.docdoc 075c7bee49676a5bfce88288211ed92365f0a09e0d5c16e01ecb04398e9ba991Virustotal results 27.87%Heodo
2020-07-29408864793285433321585.docdoc d303d07324f08db643e402e98153df70e6eac7c42905dd67d233231438bbe25fVirustotal results 26.67% Heodo
2020-07-29B64ZWHZ1XBDV.docdoc 10bff4abcb10a44b3d14435988ead41d1468bf4dc8fa4fc184e0babdac5ae73dVirustotal results 26.23% Heodo
2020-07-29PO_07292020EX.docdoc 95ddeb5b478660d0b266b024dd44aebd724fed9224811a72568ad27a0d3de832Virustotal results 27.12% Heodo
2020-07-29JD_PO_07292020EX.docdoc 4dbbad92c8a96176270226654745d40e4df036d5e94064fa8784f48fb3124b7cVirustotal results 27.87% Heodo
2020-07-29L_27565228.docdoc e2757d1474a8263d97661a0067e75300e37554c135f95a30eaf84d680d456b5en/a Heodo
2020-07-29WIG_070120_BHB_072920.docdoc baa488f3a77d501d8ec7735d3df63912a500ac36a4daeff60abd475795b9343aVirustotal results 46.67%Heodo
2020-07-29H_IPF_070120_FBS_072920.docdoc 9e3690a0a71dc239833dddc5b2aa94983eec61d88a636aa96f12bcfac9898592Virustotal results 41.94% Heodo
2020-07-29BAL_UHN_070120_DGN_072920.docdoc b3ffca228d4d444172e54cbafb591ce0d37193492c7775c7dbf7e8c8e6bc00dcVirustotal results 42.62% Heodo
2020-07-29PO_07292020EX.docdoc 5ed1399f2abe4abc20390f317598ea019e62a7f410ae2ca299df6b438bee4995Virustotal results 40.32% Heodo
2020-07-29REP_G6QQ6W4KP.docdoc 85433bf01e39441b1cc6245f6096bbb9410c45c3a53efaa948c9b2b48a2292b7Virustotal results 41.67% Heodo
2020-07-29E_PO_07292020EX.docdoc 980577e89c6be7da4e2ef646205cb1338c565c48bd8d70aa2aecee178aa59e7eVirustotal results 42.62% Heodo
2020-07-2976297113333.docdoc 6370801cfa9c5207d9891ac6bce41478e5f4d52c83922ec87b94af39195aaf65n/a Heodo
2020-07-2979657508.docdoc 1f19f1cc91f28959e4f1a099b4f6d11a2dfd3b5d5ecf73f596b764dfdc356b57Virustotal results 42.37% Heodo
2020-07-28INV_636759282.docdoc 9e2785a9cb319ef1e1ae50d46ca804ae72583b7910a6c8fcd6bdafc8fd8ce956Virustotal results 40.32% Heodo
2020-07-28PO_07292020EX.docdoc 26c4e8ead2701556bd3d09795db4bb4cd554b40cf9f30b9e76b7434c0e6e96fbn/a Heodo
2020-07-28E_HW4055730562EM.docdoc 99b2b5aaa43315869607123def2b0263ccfea7ff610adf6c2ea919663ea4303fVirustotal results 40.98% Heodo
2020-07-28AZWT6VW.docdoc 50563ca2e8c59a4a909655f6fc73f1b3700042972dba5cf08ccd036321098da5n/a Heodo
2020-07-28FILE_WWU_070120_WXF_072920.docdoc 942f521ccdd9490b25a14dfdb03ff9e8ff7bce4d9d0ad9c5a5fe684216b81579Virustotal results 43.33% Heodo
2020-07-2839955376.docdoc 462d953bcff28b211276e898a81f38ce8cce30d3643e78580610b85d2be8daf8Virustotal results 40.32% Heodo
2020-07-28CUZ_070120_TVW_072920.docdoc 5695511491d9fc59e4cc2b617adcd9c3a84194b80ba76cc6d0fcfab8173ecde5n/a Heodo
2020-07-28FILE_760578273.docdoc 3b37651a73e7c5c4c966ac34a4b38a9e69d7eed9f17e276b8f84f43749cfc70fVirustotal results 40.32% Heodo
2020-07-28Y_PO_07282020EX.docdoc dcdc2721418f75d034de93753682e8e4449626d4f730478d28d7ca168e967d91n/a Heodo
2020-07-28DOC_21386226.docdoc 87135faebfc31f34c94e02ffd43281b0e6cc7055ec6ef5eb5d60b29df1009c22n/a Heodo
2020-07-28DOC_LY2050804624WX.docdoc 9bf049c3356bbba6bc9e82bd698a785902daf6069e90ac638d402f83c4cd9d59Virustotal results 40.98% Heodo
2020-07-28INV_6689695342209983981406.docdoc a103dc583f29fa071262c2feb288b6b97f617c75199c576f034a0502c31c6491Virustotal results 38.71% Heodo
2020-07-28X_NH3762368615OU.docdoc 4f68ec384213f86c31e2e7fa948ef7e0d8c37374f78669ea5830a7e037e9645bVirustotal results 38.71% Heodo
2020-07-28DOC_JT4624874553WL.docdoc eada2a0c60cce5cde99882949dd1809c88378de39baea3b532635411598c1f9cVirustotal results 38.71% Heodo
2020-07-28E_GPQ_070120_MTF_072820.docdoc 3615380736188fe0625c45df6c98b644a1958e722b1ba3baf0ef861c09ae4efbVirustotal results 44.26% Heodo
2020-07-28REP_95251182.docdoc 271265337665d4b6dcfeba3d1e2acf6de92e94f23c3c82b272dfac52c38fa571Virustotal results 43.33% Heodo
2020-07-28RG2547853024RQ.docdoc d487cc38c856d2cb27368dde0ffc7fcd18f4c32ad9e19e44422e98d3e36d3e58n/a Heodo
2020-07-28BR_LK9756418814HS.docdoc aee8c34f1c430fedfc697089732e0d51939863f4253fb7455be1773ffea8de0bVirustotal results 42.62% Heodo
2020-07-28E_PO_07282020EX.docdoc a44f6b82eb6565507c10805b73d3bee4da269d02c659532abe1f4a278c9446a4Virustotal results 42.62% Heodo
2020-07-28INV_PO_07282020EX.docdoc 4d904aa0bdf9fdf5bcda9bac7ea6d7a0e9c1fb9a377ade0bba7b8af2db55aa1fVirustotal results 43.33% Heodo
2020-07-28FILE_SC3724500035DA.docdoc 181a733145822f0c1256bd24fd8e19ff7f1217f6166e56dafb7075bf6fc54a06Virustotal results 42.62% Heodo
2020-07-28REP_28717152.docdoc cfe67567737aa3c2dcdec28c0d6873e5e340c8ad049faa917c527f54e1c1875dn/a Heodo
2020-07-28INV_5460389125260381576214.docdoc 3ed97b5c98bb43b9d6a5042b5617ddebe018c780836be36dfc96b78865a851den/a Heodo
2020-07-28BAL_IWE_070120_HSU_072820.docdoc da3bcdea8cc3b33756792fdfa11bdef92dd36e4620ada8b660fc12cc211b4281Virustotal results 39.34% Heodo
2020-07-2818493249244972548277212.docdoc 3ede822580b26357e4126b461a884666c12bb750fc30415502dfc452f5b04c30Virustotal results 39.34% Heodo
2020-07-28D_VU5657772227GP.docdoc 8d27e36fe079fffb278a007a07dbcbfb37ae765b71bcefb8e0e41c4a70101512Virustotal results 40.00% Heodo
2020-07-28PO_07282020EX.docdoc ed68893c9c4a4e3abfcfa85ca077b8d013605d2994fdd6c42b2858cdc2bd30d8n/a Heodo
2020-07-28DOC_DJI0589GLTQ.docdoc 33892c4fb618745a9020642ae7ab40da499637463bad8dfde420034b8f9c92a0n/a Heodo
2020-07-28DOC_JQNXL6O2TCAG4XJ.docdoc 3462186176f663901dcf8db6383a21ecf0995c392966bd5e17f518fb7c0f6961n/a Heodo
2020-07-28REP_PO_07282020EX.docdoc 8568762e1933e7b9acb305ef10ceef97fae4501ae0f805ad873393f9459fa229n/a Heodo
2020-07-28CN_VNDMMR8N76F0UYUS.docdoc 6277f4f92177c8a9d172a70df991b4b7d04cff62b0f2e04e78d277d2aa648411Virustotal results 39.34% Heodo
2020-07-28REP_PO_07282020EX.docdoc dcab281c030ca8ebd833b95d2379df634eec571e1ae19b6aad70ae1a0eb2e07en/aHeodo
2020-07-28UEO_070120_VHC_072820.docdoc 7880dbee79353af6a070ba20eda972b3ef7abad67d3c309d064ced44676ed6e4n/a Heodo
2020-07-28INV_29845787.docdoc 23c51d3c717104427e3ee990c8db28900701083c086707b24493ad7f9968be97Virustotal results 40.00% Heodo
2020-07-28Y_QD5443591716QE.docdoc 69314a5a40529facfde61bb78562869e4ca9a67ba69a3028d376a265e174ea6cn/aHeodo
2020-07-28S_PO_07282020EX.docdoc 2840dbe68611c23040d1bcd78b9473dcd48de959c93280ee78f105b5af51fe75Virustotal results 37.70%Heodo
2020-07-28REP_PO_07282020EX.docdoc 8a02a02bf39b80d809da634fe105c29a2b012acfa59c4eaedd94360fb5fbd2e3n/aHeodo
2020-07-285705578993113300.docdoc 26906041efdeafb6c1754eac8dff97abf079148816f1121ef92bfaed0a6e9991n/aHeodo
2020-07-28T_97592043.docdoc cd8165b730d0801f2eb1524b1a430abe1d69e7105b2a898fbcca440afafd8f01n/a Heodo
2020-07-28PO_07282020EX.docdoc 502f2432a2c035f0d1f94c39051d8f92b1600da2fc0510fdaa6f6e2419f888c5Virustotal results 37.70% Heodo
2020-07-28FILE_HB2712932887RK.docdoc 03c755321460ac4015e02fbda399f9fa099bfcf9566ac0b91ff525f03bc9dca6n/a Heodo
2020-07-28INV_AU3591269844GJ.docdoc 3922ed31097dad6980d7aa3830470de434d9e128f5f37fecabf5637e7c5ab0e2n/a Heodo
2020-07-28ZAL_45758610.docdoc 1f2d563a9cc13dacc7e5ca5d6b8745f38a4244777fc5ebde045785790441b196Virustotal results 37.10% Heodo
2020-07-28REP_OWZ_070120_IDT_072820.docdoc 20d81ffc64ba89a114dc4ee30c643d555945ab0ec0f3a17c96b56d6087ef3b13Virustotal results 42.62%Heodo
2020-07-28INV_309625760955028558877510.docdoc 5c533891fcae9ba18e3c42bd62ee131b2dca552f90753abf178ec19374191c75n/a Heodo
2020-07-28DOC_BWH_070120_JPL_072820.docdoc feb69e5e064dc9aed0fb86311321af444f6296260687339fcceb53d31201a026n/a Heodo
2020-07-28BW5HMQTQY5.docdoc 7d63604e1fd27ac31666ba76b7d7d82a09c6035a6fe9bfc257a9e7b9249ef525Virustotal results 42.62% Heodo
2020-07-28FT0940830042UH.docdoc 1e687ad756dada51e71738e9b4af3eedc481d865f7df0bd32500ea50bd16233aVirustotal results 42.62% Heodo
2020-07-28FILE_9032132074113.docdoc 388d49d105196dea02e96ac0172560dff1d9862e5b8910e7af963585439dbde3n/a Heodo
2020-07-28INV_90965971359.docdoc 2b2dc53af6714037713433698dae9be164fc7c66c23377ec620a17a4130bf425n/a Heodo
2020-07-28BAL_ZXZ_070120_UGZ_072820.docdoc 6f725b4e11df45b38cea3502301ee5e92df17109fa860dc84523501a6940f5d6n/a Heodo
2020-07-28DCC_75848550.docdoc 2b4263841c81074211dd59e820bf05562e5c59be8d38bf8791a0a21753cdf504n/a Heodo
2020-07-27REP_76286117.docdoc 745208b9589c716bfe12fb99f5d6fe5e713fabb7097d8629a75a114584b2cec5n/a Heodo
2020-07-27PO_07282020EX.docdoc 78b39f8d472206c5ee8e1cdcd47550cf56630aefc5e722ca39891b62a9c02d19Virustotal results 42.62% Heodo
2020-07-27F_HZY_070120_XVP_072820.docdoc 3a4fd8ba092ea2243de196e6a43f4568bc13d88e3c04ed3aaba6e494b4ec47ffn/a Heodo
2020-07-27DOC_YK5428320416KT.docdoc d88b494734b0a01b33a3095214b8f76b448f625fa97248e6d6385ed6a1edc35en/a Heodo
2020-07-27REP_GG1547382082LR.docdoc bbf1da4131b3b508272428af648b22533a0add8b66f8b09f4570c1d799434a76n/a Heodo
2020-07-27WF_45396531.docdoc 9e6b07432484371908b25279a80c78f3f717726fdc1cee80af1458b9dcdd92bfVirustotal results 41.94% Heodo
2020-07-27BAL_67605626.docdoc e014e7351a4ad87f016b72570a6ea61c63069ef368ef1501bf75c019760740d7Virustotal results 41.67% Heodo
2020-07-27BQD_070120_DYU_072720.docdoc 29142d1b50c19825901b0907408eb52d7962cff9742b7c0dcd550b7aabbab2e6n/a Heodo
2020-07-27FILE_KAJ_070120_IWC_072720.docdoc 2317a555c5aabac7a3b94757661b5ca7f25d7612b4c4a93df00b35fa56fd8e9eVirustotal results 40.32% Heodo
2020-07-27REP_PXK_070120_FNE_072720.docdoc 638c2bca4d280ee089f6038536d990d264e547a0aa4848cf1777b3c73e448561n/a Heodo
2020-07-27986619214611143231048.docdoc 2ab16faf7580a5af93e055cae5ac1a32888101fc271fa460e8b59cfa0b816be5Virustotal results 39.34% Heodo