URLhaus Database

You are currently viewing the URLhaus database entry for http://omeryener.com.tr/stylus/NpWCrMKv/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	422361
URL:	http://omeryener.com.tr/stylus/NpWCrMKv/
URL Status:	Offline
Host:	omeryener.com.tr
Date added:	2020-07-30 20:06:04 UTC
Last online:	2020-11-02 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-07-30 20:08:02 UTC to abuse{at}internetsahibi[dot]net)
Takedown time:	3 months, 4 days, 22 hours, 46 minutes (down since 2020-11-02 18:54:22 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-01	invoice EUWT2085 732368.doc	doc	56916942bc59a1ae0cc030beaf907b54631390e0a5fa7d75bce1f120df88d843	52.46%	Heodo
2020-07-31	INVOICEZ9011038815708.doc	doc	604d8d4b25d82a9fa60525c21b4f7ff9f0edf0d00aea808ceef6bef8e9e4f4c5	49.18%	Heodo
2020-07-31	Inv KJ0797 21286431.doc	doc	d435dd55cb5ac574d2109b9052330650fb4c355ff4cb2533077281558e7d4de9	46.03%	Heodo
2020-07-31	Invoice-80-3605291.doc	doc	56e8a51e917d57655dd5612da8b9618280c29273e601c8628c787029996d1823	48.33%	Heodo
2020-07-31	INVOICE_NCG28_3869637.doc	doc	f7188943259ba89e508eeffa4bd48ce022205b06f13e18944c59e419604dd722	n/a	Heodo
2020-07-31	INVOICE-GWC46-08868483.doc	doc	d4c0573790c2e02c30dc3ef6e219a26840751e18de0537fb023782af9db88116	47.54%	Heodo
2020-07-31	Invoice OB887 2972557.doc	doc	015ea078c5fd0a7e7358750b113536aa28746f179954e4c37e6185b99888c39d	46.77%	Heodo
2020-07-31	Inv_RA919_536602240.doc	doc	8d668df833984a5c527237ca2ab0cafd0d9358925912ce0c64cfb8fb749d09f8	47.54%	Heodo
2020-07-31	Invoice-972-067164.doc	doc	ec21525a8852265e8892193f896c9002e6f4a525c42e980120cdfce6e8ab3d9f	49.15%	Heodo
2020-07-31	Invoice-972-067164.doc	doc	ec21525a8852265e8892193f896c9002e6f4a525c42e980120cdfce6e8ab3d9f	49.15%	Heodo
2020-07-31	INVOICE_V6_7722921.doc	doc	286e883e3fd7042dd61a284aafd1bb8cf55e274a5a5cae78da6f6c2e8084a24b	45.76%	Heodo
2020-07-31	invoice-YG9-61008305.doc	doc	1f67d01d996fcff5abb353bc5fbb354191d96c315d7341a680029f01573dac3f	n/a	Heodo
2020-07-31	Invoice7339734915.doc	doc	80b42f3e3f2aa0e14a13b15336be50853898ab711533f01420be367c69d9911b	47.46%	Heodo
2020-07-31	invoiceTA61218724.doc	doc	6157dbba4f741eefa74c0f002ed410a6117e719c2e626ea9dd8668d7452afa24	n/a	Heodo
2020-07-31	InvXV087608299127.doc	doc	f38d973c25ff2fc00109ee8ed445e3bdaf3fcaeff6db54b863ad025a9104ae24	49.15%	Heodo
2020-07-31	Inv 2 3386580.doc	doc	99b43c6e14bfddc98c87cb9dc35cd89b59a2797e8893f5005eb0868226027f35	46.55%	Heodo
2020-07-31	INVOICESHNM72762751594.doc	doc	bdfb558047f777f0a0fb66e81bab1d2eefe9a0041a72d203b52456717f30a594	44.26%	Heodo
2020-07-31	INVOICE-WHFY2772-29894673.doc	doc	e8960fed4c714be347182294b90b9fc936d842241905fe3e4376bf7c904b6b1e	45.76%	Heodo
2020-07-31	invoice NTO0 37599121.doc	doc	ffcca6f9140c3ff0a3f0e0b888148ebf2d55a3ccfa54636106362ea6f9045f0c	44.07%	Heodo
2020-07-31	invoice3752-61793316.doc	doc	3d8ef147ca84e9943fdc850171e2de9c05b0db3472cd05901e4f109e7fbe07f1	50.85%	Heodo
2020-07-31	Invoice_ORW608 2382738.doc	doc	c7ed06b6f4284ba3fd857f03875187654aad78683efa88d3ed984fe057d484ab	50.85%	Heodo
2020-07-31	INVOICE-GO0098_621190.doc	doc	0154af8049b8a7ec498151777f31d6e971c61bdfc439fe1a8150ad0f69c0e4f8	50.00%	Heodo
2020-07-31	invoice-A712-226176549.doc	doc	5399417505ae67bdc2253943f273fe2b69fcdb71294530cbfe0cbe731a251b48	50.00%	Heodo
2020-07-31	INVOICE N5-14057143.doc	doc	e3b83c00a51a401c88f8ab7d52dbee1d71b7a843fdfe5c2a6f3b76464efd77b2	50.00%	Heodo
2020-07-31	INVOICE-4_308848.doc	doc	eae169c0ec808dcf097bfd419bae07e5c001b1157d781d90b037250ea07fd4bc	50.85%	Heodo
2020-07-31	invoice-UOYR3-8446380.doc	doc	09d8024f4904f92b615ceabf3c50d048d8600e410bd728c5ca6a09f15ac8d0aa	51.72%	Heodo
2020-07-31	INVOICE_I9148-764253.doc	doc	48c0326e786deae1ebf50df4773916c79325d15261708cccbc89d2421c639729	n/a	Heodo
2020-07-31	INVOICECTWH468 510800.doc	doc	dcfb38249b589a264dd4ce2c25853335f1399685fcd68d68c337f308d110a793	n/a	Heodo
2020-07-31	INVOICE_Y5124 665560.doc	doc	cee085d16cb1dec28ff7ef5bd5399111ba8a5e26623b17902866e886144c228f	50.85%	Heodo
2020-07-31	invoice535-026719057.doc	doc	468c03e5514c45db80f93d359506f99bcdc95812e5e37680b531dd2fd1cba7f2	n/a	Heodo
2020-07-31	INVOICE-5 197171390.doc	doc	2ab3a5f443403e9ed1928d27e4e551ab95a6532d540b98d5103f0ed8a45a75cb	50.82%	Heodo
2020-07-31	INVOICEYM9020{:REGEX:.doc	doc	2789d1d3eea1e5dcb760faf9bbf395f267ec901bc7c52a67ae60133050897609	50.00%	Heodo
2020-07-30	Inv-BD7 12235157.doc	doc	e42656550ed8d746cb8b453d28e1ca374da03e76bdf6b65633f3b1bedd1e051c	50.82%	Heodo
2020-07-30	INVOICE-VWMP815-15993573.doc	doc	213e581104ed3930497515d2be67c1c61a9ab1060474d3e43986aff52b418099	51.67%	Heodo
2020-07-30	Invoice_WF8-93888524.doc	doc	5ae9df4be21b3400965fc280ee49768b7e00b21fde24a904ece809bfa5c19491	50.00%	Heodo
2020-07-30	INVOICE_EA18{:REGEX:.doc	doc	f2bef647cf5f376c3807d6693d2fcf28cd42e71629fb0cd64847604a0e189081	51.67%	Heodo
2020-07-30	INVOICE JQY80 949085315.doc	doc	1c8026d6bd75a1ea091d6a6676d3a7e3bcba3b17717e21607488b9fdb762fba7	49.18%	Heodo
2020-07-30	INVOICE-XLJ98-1068901.doc	doc	43fb81fd0a1e1644705fbac16fbcfa0bc7c8158e25f832bcc7a1961af150b340	50.00%	Heodo