URLhaus Database

You are currently viewing the URLhaus database entry for http://bzztcommunicatie.nl/cgi-bin/paclm/s9mcztgahu7/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:420139
URL: http://bzztcommunicatie.nl/cgi-bin/paclm/s9mcztgahu7/
URL Status:Offline
Host: bzztcommunicatie.nl
Date added:2020-07-27 20:16:06 UTC
Last online:2020-07-28 11:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-07-27 20:18:02 UTC to abuse{at}yourhosting[dot]nl)
Takedown time:15 hours, 18 minutes Good (down since 2020-07-28 11:36:23 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-07-28FILE_24627867.docdoc 7880dbee79353af6a070ba20eda972b3ef7abad67d3c309d064ced44676ed6e4n/a Heodo
2020-07-28SP2938188424LK.docdoc 23c51d3c717104427e3ee990c8db28900701083c086707b24493ad7f9968be97Virustotal results 40.00% Heodo
2020-07-28FILE_PO_07282020EX.docdoc 69314a5a40529facfde61bb78562869e4ca9a67ba69a3028d376a265e174ea6cn/aHeodo
2020-07-28L_2IH3L9WSN.docdoc 2840dbe68611c23040d1bcd78b9473dcd48de959c93280ee78f105b5af51fe75Virustotal results 37.70%Heodo
2020-07-28I_13519320.docdoc 8a02a02bf39b80d809da634fe105c29a2b012acfa59c4eaedd94360fb5fbd2e3n/aHeodo
2020-07-28FILE_OPE1K1R.docdoc 26906041efdeafb6c1754eac8dff97abf079148816f1121ef92bfaed0a6e9991n/aHeodo
2020-07-28Q_KK4ONK9DXOGTB.docdoc cd8165b730d0801f2eb1524b1a430abe1d69e7105b2a898fbcca440afafd8f01n/a Heodo
2020-07-28BAL_PO_07282020EX.docdoc 502f2432a2c035f0d1f94c39051d8f92b1600da2fc0510fdaa6f6e2419f888c5Virustotal results 37.70% Heodo
2020-07-28Q8B3UDEFEMS.docdoc 03c755321460ac4015e02fbda399f9fa099bfcf9566ac0b91ff525f03bc9dca6n/a Heodo
2020-07-28DOC_PO_07282020EX.docdoc 3922ed31097dad6980d7aa3830470de434d9e128f5f37fecabf5637e7c5ab0e2n/a Heodo
2020-07-2822161920.docdoc 1f2d563a9cc13dacc7e5ca5d6b8745f38a4244777fc5ebde045785790441b196Virustotal results 37.10% Heodo
2020-07-28PO_07282020EX.docdoc 20d81ffc64ba89a114dc4ee30c643d555945ab0ec0f3a17c96b56d6087ef3b13Virustotal results 42.62%Heodo
2020-07-28DOC_HNO3Q8X3BMUT8X5J.docdoc 5c533891fcae9ba18e3c42bd62ee131b2dca552f90753abf178ec19374191c75n/a Heodo
2020-07-28PO_07282020EX.docdoc 4b0e153c6b865d8301d0b569169faf4acbe77703f624f14215b5b5b04759462bVirustotal results 42.62% Heodo
2020-07-28BAL_UQ3980566240DN.docdoc 67c9d551007620c36a100f2a6eeb4e297ca891ce49a371f544cc06da016021ffn/a Heodo
2020-07-28UUS_05572199.docdoc 9811d379398e1720f5eea242d0d007c3190bfc61a28ad236f23cf78e0ffb13faVirustotal results 43.33% Heodo
2020-07-28FILE_LSM0Y3BK.docdoc 8cb2ee65b209dc77c33984c49bd4ed006fddd9fb40132c166c494f47cafbd5bfVirustotal results 42.62% Heodo
2020-07-2891841734.docdoc 29c42aa5892fede943d2975f64abfccbcc8cfa164a85e278753f970a17d010den/a Heodo
2020-07-28BAL_0069589595656.docdoc 2b4263841c81074211dd59e820bf05562e5c59be8d38bf8791a0a21753cdf504n/a Heodo
2020-07-27BAL_ZLEWZSOUK1XTS.docdoc dd1fe9f11a267149ce356a768d071605c1972fd10d1f7a57a29fe8a2c8fb41c1Virustotal results 41.94% Heodo
2020-07-27DOC_40206169.docdoc 3e21349ba3bf686515975146afcebe14651b2304ec58b47bea6b87b5fbc79a69n/a Heodo
2020-07-27INV_4Y5MRQ002Q.docdoc 2bd01d881217785295064f5e2d94720a9d0952d1ee3888349b008bce7cf5dd8fVirustotal results 41.94% Heodo
2020-07-27V_HA7658838003TK.docdoc b76b33e28dee77878a8cb842b0b4b5ee6eee5f7f42705d40818937abd55915c4n/a Heodo
2020-07-27INV_PO_07282020EX.docdoc bbf1da4131b3b508272428af648b22533a0add8b66f8b09f4570c1d799434a76n/a Heodo
2020-07-27TN2852651659EQ.docdoc df3f07a28988e65741321c968afd02eaf8a49fa2dcf2e2f2685d04e13a236122Virustotal results 43.33% Heodo
2020-07-27T_PO_07282020EX.docdoc e014e7351a4ad87f016b72570a6ea61c63069ef368ef1501bf75c019760740d7Virustotal results 40.68% Heodo
2020-07-27DOC_KCW_070120_WKC_072720.docdoc b055c91beadcc69f982e372bba82ce74efcb003bb9c2fc772efae1a27beb3387Virustotal results 40.32% Heodo
2020-07-27PO_07272020EX.docdoc 5d08f7fb64c5fc4af654eed617b862ed33cd458b34326c027882d886627f96d0Virustotal results 40.32% Heodo
2020-07-27T_70971812.docdoc 216102bcebe04d591b4e71990d8be1e9e7877519c4f27dcf01df2cdbd4f935c1n/a Heodo