URLhaus Database

You are currently viewing the URLhaus database entry for http://katana.co.uk/cgi-bin/caIijOty/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:421996
URL: http://katana.co.uk/cgi-bin/caIijOty/
URL Status:Offline
Host: katana.co.uk
Date added:2020-07-30 14:42:03 UTC
Last online:2020-08-13 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-07-30 14:44:02 UTC to abuse{at}aware-soft[dot]com)
Takedown time:14 days, 2 hours, 9 minutes Bad (down since 2020-08-13 16:53:44 UTC)
Tags:doc emotet link epoch3 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-01INVOICE IOQF81 08062817.docdoc 56916942bc59a1ae0cc030beaf907b54631390e0a5fa7d75bce1f120df88d843Virustotal results 47.54%Heodo
2020-08-01invoice-1851-5503247.docdoc 410ad2793e5e2cf30ef44aff53ad6715be63ce088837d79fa899bf84843564adn/a Heodo
2020-08-01invoice-CEO3-445914.docdoc f5063edcf32916070acfbc9278e53a73ef52d43169d165b04dd88fea5e75109fn/a Heodo
2020-08-01invoice-UY8547-761122.docdoc cc6c1f937278d090d1fdf3b960f92e0222e026d418899b9f64769304616277b9Virustotal results 47.54% Heodo
2020-08-01InvoiceTQQ873054327.docdoc 3319161bd68eb25b4c036ad8cfeda6934ae3c38a12713c9f109818b03390c7acVirustotal results 46.67% Heodo
2020-08-01Inv-0-861156359.docdoc 5501f723697b0f6c5eb89e873828133dc1b9f465321a797930c9a071d291fd18Virustotal results 46.67% Heodo
2020-08-01invoice_GEPF0_058048179.docdoc 56764b6f66de3b045860f5398b4fb8f24c11ca8d959231a6b0f63d82626f5a55Virustotal results 46.77% Heodo
2020-08-01Invoice-MACY13-97461559.docdoc 7525e9c3dc222fb7e0bc897856d98ec233aabda4ecff64336788e29ad6e2dec9Virustotal results 47.54% Heodo
2020-08-01Invoice_TW3_368169792.docdoc f0f8fc1e5b217106feab3dd3060589f3f87760337747f52bef4de0cd6ddf298fVirustotal results 45.90% Heodo
2020-08-01Invoice-ZRU243-680427.docdoc fe7b1ae9d99df37f1bc4e34b3cd8187924aee366b4e3470ff0a2466efa35a76cVirustotal results 47.54% Heodo
2020-07-31INVOICE_IVF714_282608744.docdoc 10be90e60d786061ebd1162fed19899a8fabe103036aaf604046c57f765fbe49Virustotal results 47.54% Heodo
2020-07-31Invoice-KEGZ633-79003426.docdoc 3b6e940da3272da6f27d6c14380123a0c7097eb6647fb42b475ff953b54ef311Virustotal results 45.90% Heodo
2020-07-31Inv NJJU3631{:REGEX:.docdoc 3d8ef147ca84e9943fdc850171e2de9c05b0db3472cd05901e4f109e7fbe07f1Virustotal results 50.85%Heodo
2020-07-31Inv-IG3894 36966778.docdoc c7ed06b6f4284ba3fd857f03875187654aad78683efa88d3ed984fe057d484abVirustotal results 50.85% Heodo
2020-07-31invoice_HC98_4621076.docdoc c66fa17e4f5d76079707aa28d126feaef92ac1245b1ecb420e7e632e8eeb76a2Virustotal results 50.00% Heodo
2020-07-31invoiceOE9007-4517175.docdoc e3c6519f7b0b581bc58ccec2a76f8bce09e09658d05624ef33b7c5cce0197b6bVirustotal results 50.00% Heodo
2020-07-31invoice 120 438244.docdoc f554d67a1bac2a6fc64ec282706c416190d555857ddf80e8b243366b8b738987Virustotal results 51.67% Heodo
2020-07-31Inv-HU91 422839.docdoc 9d87ada7dcb70d012d66826ec3f4f26a2f853edce07b15282c119048283a80edVirustotal results 50.00% Heodo
2020-07-31Invoice-MXM5293 531530.docdoc cb27bed9b173d425693fe6c19d0d7502d62645a8fff074790841a362952e9936Virustotal results 50.82% Heodo
2020-07-31INVOICE HQ5_259283742.docdoc 1e253d59d5ef3aaf08431b406cd5c024476603459b847f6b40dd0f86827492c1n/a Heodo
2020-07-31INVOICE-L075_64811045.docdoc c8e498b47aef6cfa8fe5259b40faf397127d496992e126c2f4f6026f7945813bVirustotal results 50.00% Heodo
2020-07-31invoice-4_667132965.docdoc ab9e17c09b7e6813c9ba6935c52b277e3af613ec3fee0ec44b8efe0ee7163e2bVirustotal results 50.85% Heodo
2020-07-31Invoice_CIM5_45210888.docdoc ea4ec66d739ec6c93a0e5890743a01a5283b804889147308ba45d35ee1f2247dn/a Heodo
2020-07-31Inv-VKIS210-95671081.docdoc 2ab3a5f443403e9ed1928d27e4e551ab95a6532d540b98d5103f0ed8a45a75cbVirustotal results 50.82% Heodo
2020-07-31invoice-F918_09552522.docdoc a766fc0e20a4f8cbf281aef6bb29f7a20a937044d7fd4e008c1097cf266c24beVirustotal results 50.85% Heodo
2020-07-30invoice-DYA2-955716434.docdoc 2e24bcec136a5b896e730820974bfa9162575d275b2ee669ece097f7b195e4f7n/aHeodo
2020-07-30Invoice_IQN330-058986.docdoc f2e5dfabe9cc22bc5f4995c900e073bcf2219dd18413aa69a7d1148fb6257585Virustotal results 50.82% Heodo
2020-07-30InvoiceQ2-765660367.docdoc 881c5ef2385626accbec7572c0b5c5b5cdff760f61e1bb044546983d6c3fbdc4Virustotal results 50.00% Heodo
2020-07-30invoice-TFID090{:REGEX:.docdoc baef0f6a498331d648f442e8851509d8e91245685e215ae6beb917e8d4a9980cVirustotal results 52.54% Heodo
2020-07-30invoice ETKL814 177841289.docdoc 1c8026d6bd75a1ea091d6a6676d3a7e3bcba3b17717e21607488b9fdb762fba7Virustotal results 49.18%Heodo
2020-07-30Invoice2-459522.docdoc cda0d1231d25f6de9ae03e882b92a3a972757c980227e6e7dd27fffd5be031f4Virustotal results 48.33% Heodo
2020-07-30invoice-TU372 391379230.docdoc c88f76b9652dbc11087aa8190c0221e871fc1cbda0349c84fa8c9ca161aa970dVirustotal results 48.33% Heodo
2020-07-30Invoice-8099-217647.docdoc 73893811ca278a3dd0be7d512b791be9de0331c3fc6c82c42026a4f4cffe2481Virustotal results 47.54% Heodo
2020-07-30InvRXV132_637390.docdoc 8c9e45486e237d3a93fe2fb374ca8fd519f832929a7b631b86216680c4a4b0a1Virustotal results 47.54% Heodo
2020-07-30Inv-OYX1299-195939743.docdoc 7665d79477a1e1966a49e25359887369ae15fd783cd253c612a3c90b605072a9n/a Heodo
2020-07-30INVOICE SA6809-52123213.docdoc 50a9515bccff228f5546f9fb72d0dccc6e8beef5827a8f9c09da0eee89a79872Virustotal results 47.54% Heodo
2020-07-30invoice U0 01243341.docdoc e7d8f9aceb88da8c27d24215af0596edea832ed8ad060f42af5fd8faf0292fc8n/a Heodo
2020-07-30INVOICECGQY3-870370.docdoc 189cc6493c108633c47949f3eb888010e9adafadd6e71b0aa7115430d49258f5Virustotal results 48.33% Heodo
2020-07-30Inv_5_114047.docdoc 414eb4214ba9751af11b6e39f0535786dacf41eb74ed378946220d0cc574154en/a Heodo
2020-07-30Inv-92{:REGEX:.docdoc 5f8b9d0c8b209dc485dfd1ffe23cc79030dd096d3c991c15315b6c2f0ef30c31Virustotal results 47.54% Heodo
2020-07-30Invoice-EF2-892475.docdoc d7ddeb76f38f0832acc1fc181ab104abb4c0e329c167f5f38a7b89a9947971fdn/a Heodo
2020-07-30INVOICE I5-684952607.docdoc a73b5137a487f37f2fa62bf4b6efd685f2aeecb72166fd9fb07b0a8f84aed362n/a Heodo
2020-07-30invoiceBS849-443160310.docdoc dbc64153efaed9d70d1daa4c4099f517617754890fa39854eeefd1fa0e595625Virustotal results 44.83% Heodo
2020-07-30Invoice E0512-658797071.docdoc 57cd3c6667afd66293fe85bc6632764caa8217677ecf64f34c72677367fd9472Virustotal results 46.67%Heodo