URLhaus Database

You are currently viewing the URLhaus database entry for https://www.enjoykalkan.com/forum/common-zone/close-TMpQ-NMgDNrYbBUT/z2SI6Y-rxItmzwmsho/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:421067
URL: https://www.enjoykalkan.com/forum/common-zone/close-TMpQ-NMgDNrYbBUT/z2SI6Y-rxItmzwmsho/
URL Status:Offline
Host: www.enjoykalkan.com
Date added:2020-07-28 20:18:20 UTC
Last online:2020-07-29 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-07-28 20:20:03 UTC to abuse{at}aware-soft[dot]com)
Takedown time:17 hours, 14 minutes Good (down since 2020-07-29 13:34:41 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-07-29doc 20200729 LP2199.docdoc d83422195b6a021631c96b354bb759ef8f8268955e2cb35d2512d06e49f7fe7fn/a Heodo
2020-07-29File-2020_07_29.docdoc de6bcd3104db67b69056d034f15063c0b4073b80ac7beee7ace667edc294a356n/a Heodo
2020-07-29Rep-SUN5826.docdoc ad228ab027631c16a85fbde6ed443dee6852a21c84abb6e34d633c962ef1f41eVirustotal results 28.81%Heodo
2020-07-29list 2020_07_29 HFO39044.docdoc 8bb634c8040c0dbdc8103c0bf90ca21e4ff6d65b9f63ed5a317b6e676ed0c7c5n/a Heodo
2020-07-29inf.docdoc d80d4a17577b544fa7da9fb2fef8c39d77ebaf839456255a0fb4994148b0f00bVirustotal results 27.87% Heodo
2020-07-29inf-598.docdoc 4b66bb4e22f421f21ae63f70aa2f43f7952f0ff42459c7f15215a3c8615e032fn/a Heodo
2020-07-29rep_2020_07_29_JT71862.docdoc 67eef8e781f8a712985d6413f121e8546df018a33aea849f20c2d5095a6994e7n/a Heodo
2020-07-29Inf-2020_07_29-W492.docdoc 4cad41a2c94580e73badd4c35c2282597f7708204d5214f88c3f9972e3d99bbdn/a Heodo
2020-07-29inf_2020_07_29_479342.docdoc 89d432c817816f75db9bf20e7515b7bbd355cc542e437cfa67242563879d2bdcn/a Heodo
2020-07-29INF 20200729 BQ871116.docdoc 1d08f0b597c36bdbeff2046fbc31263ea2c4044af0e4040aae479badb1a900b2n/a Heodo
2020-07-29file_H087.docdoc 6d33d26c6514907d83ea254422280f50c6087470e0014a527536e49da0a65359Virustotal results 44.07% Heodo
2020-07-29Mes-130.docdoc 6a8bb6e77fb312e9755b5119e1f2d52a58b9f11f1ffdd96eb7c937a0307cc6a7n/a Heodo
2020-07-29ARC_20200729_97205.docdoc be987c633595940c163066189e03b6cffe48ba5bf93231a8835e947e05740102n/a Heodo
2020-07-29Arc_2020_07_29_SFR795.docdoc 18eb3a42e22bad4739e7e30656ea54d812b781b53f4bdfb702acc5e440a0b6dcVirustotal results 43.55% Heodo
2020-07-29dat_20200729_15043.docdoc 75054d37db4cec9d1e647c93b7d5eba72b29c8e8f3664263ebb4f48775c07710n/a Heodo
2020-07-29doc_R468443.docdoc 4b508c6d30fa76b1274e65fe98fd3cf85ac60efa92bb9bcd97aa745fa20ca465n/a Heodo
2020-07-29List_2020_07_29_0985.docdoc f89b0ab3a3817bdaaca98ca6ebdd47fea5c4ee59872c90a4fccc23463d192e52Virustotal results 45.00% Heodo
2020-07-29dat 20200729 SY31268.docdoc 2d0a50c2b71293e0d232856f5b99127f9a871bb9e7e2a731280462f0f48ad966Virustotal results 44.26% Heodo
2020-07-29FILE F4067.docdoc 57762ae9b274f78f82bc45f3b59af74465d25bf85817dd487d1176b6b55813d9n/a Heodo
2020-07-29Inf_2020_07_29.docdoc dc9ed541230e97a30f45695e066b67e80728f6963ada93b7fb8d9617a653857dVirustotal results 43.55% Heodo
2020-07-29rep_2020_07_29_4463031.docdoc 4e3808817bb507df34adf6e9462ee9b930a58efe48f3c757f4609662bd75bbe2n/a Heodo
2020-07-29list_42819.docdoc 915ae2165210e21055c3ce6e6c455943b75d0ab07c690a48d810bcf2ab79d0f3Virustotal results 45.76% Heodo
2020-07-29dat.docdoc f108b93f8a51197e20952752105e589dac418d57b106df142a474ed7f8627354n/a Heodo
2020-07-29Mes 2020_07_29 056421.docdoc 4939104d6ac747a434d08a86353fdba0f99fab4fdfc1fe2791945d8bcb3f8482Virustotal results 44.26% Heodo
2020-07-29FILE.docdoc c5fe30ccdc224f47c8059f8abf775b896101e8e9d007aa2f41a9071562390b1eVirustotal results 43.55% Heodo
2020-07-29ARC-20200729-IF140080.docdoc eeeffe5ba0fcb1fd64fc11747b2b463cb84f1acd64201609163da191e142aa36n/a Heodo
2020-07-29doc_2020_07_29_Z2827.docdoc a9089c8bcd79952f1a685be193816ad0b38833e532bf89a6e1944ba326747a17Virustotal results 42.37% Heodo
2020-07-28list 86382.docdoc 94ddcb3d527aa945321d1e706a0d7cdebe9b0380b2ac33918e02ae142da93a34Virustotal results 42.62% Heodo
2020-07-28MES_WR017110.docdoc 2921a5edaa2846bc5bb45cd6962c46cb936bdf64f171d9f6a42e686e02d1984aVirustotal results 40.98% Heodo
2020-07-28Rep_2020_07_29_44286.docdoc 54a962d82de3bdeb06f38850bc6cb537b3d35c6d95c97b7b1ccbc4948e0fb3e6Virustotal results 40.98% Heodo
2020-07-28FILE 20200729 WAP901805.docdoc b08aee092cb3defc671949d65b32da80150ad60e64554f24eb25bea83ade4708Virustotal results 40.32% Heodo
2020-07-28MES 20200729 ZQ2954.docdoc 63e8efafd895a3c81e6b57f8df7af0d841c821d7e99b7dc74c82906d3291365bVirustotal results 40.32% Heodo
2020-07-28Mes_20200729_1145.docdoc f37ae711b262ab3caff91d44e0ef517c066e9eafcff80cef84ac904d8efad0aeVirustotal results 40.32% Heodo
2020-07-28File 276749.docdoc c14881380d3b455bd2d466c9faaae7b1fd9e8319ec59724a6ea345ca13dcab51Virustotal results 41.67% Heodo
2020-07-28rep 20200729 MJX9894.docdoc eedf4533a63bc5838e513e7b015e80ab717a608090e7b3715c06a4e349cdbbf2n/a Heodo
2020-07-28Mes 20200728 SW2966.docdoc 03d305262c813c8499df55f06b291331f87758dd0a17daf10b8d7c4a82bc795en/a Heodo
2020-07-28dat.docdoc 539ff641f2ad4aeff90b35b5fd17121ac44fcc6081483bc9d1903c33c99b8d46Virustotal results 40.32% Heodo
2020-07-28Arc_ZDY8736.docdoc a92115a9bea2207bae05d942bcee50720a45be6718853144ab05ce36b1ae01b8Virustotal results 40.32% Heodo