URLhaus Database

You are currently viewing the URLhaus database entry for http://spitzertech.net/wp-content/private-array/31u9-8aws1f1i4v2-8371604-BWf6OyofW1Q/C6Q5oXi-knKrI5IpjJ/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	427254
URL:	http://spitzertech.net/wp-content/private-array/31u9-8aws1f1i4v2-8371604-BWf6OyofW1Q/C6Q5oXi-knKrI5IpjJ/
URL Status:	Offline
Host:	spitzertech.net
Date added:	2020-08-07 15:02:15 UTC
Last online:	2020-08-14 04:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-08-07 15:04:05 UTC to abuse{at}a2hosting[dot]com)
Takedown time:	6 days, 13 hours, 12 minutes (down since 2020-08-14 04:16:45 UTC)
Tags:	doc emotet epoch1 heodo Quakbot

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-08	ARC 20200808 X961.doc	doc	ba50483a5407dc7d213263534638c2e4e0445d9d06f977dc496e979beda32f33	45.76%	Heodo
2020-08-08	REP_2020_08_08.doc	doc	dc2ffa5e3da556a041a8204176bdd548abbda8b4824a72ad54aa1c7ac85e3da6	40.98%	Heodo
2020-08-08	arc 20200808 307335.doc	doc	31674d9d2a53c9407819aec8731838ed678f2d3317a2a4a47680fcea72536fe0	40.98%	Heodo
2020-08-08	REP_20200808_202823.doc	doc	62112657085b9dc12429d5002978a67b6a792db61dca0bfd23db9d5370717ec5	43.33%	Heodo
2020-08-08	LIST 2020_08_08 980.doc	doc	a5b4fca70c16e40a7c4bad03de3c8f0448aea24ebbf989026202c94a9eeee7f8	40.32%	Heodo
2020-08-08	FILE_20200808_8290433.doc	doc	999698b5ddcc7f3b457aa5504fadf382046c692cd623f345e198e80e9823501e	41.67%	Heodo
2020-08-08	LIST-596450.doc	doc	10e31c0403e39c143f65d38765e917f12eb759a504a40578a2dec5ba5c1a7efd	40.98%	Heodo
2020-08-08	doc 20200808 ZHQ730.doc	doc	cb59fe31661123327d6efebb10d883b195b318c6da1739d129dfe2616eb3a7a2	42.37%	QuakBot
2020-08-08	INF_20200808_B972.doc	doc	424cf5c4a91c06c70e70f85621afca02a6335435bc3aca17a07b860ca1d9cfb2	43.10%	Heodo
2020-08-08	file-2020_08_08-19111.doc	doc	f2d09c3341a85d648955516c7a112e48d4aa50665618cd60e5d66ffff756dd11	43.33%	QuakBot
2020-08-08	list_07545.doc	doc	7db111b6a3b2b44ddb5ce3413643af61cc16843c9921e8fd636a7d8cfb7894d6	40.98%	Heodo
2020-08-08	FILE_2020_08_08_7275726.doc	doc	fc049e22bdf0fea03110ccdfa290273893939b84e68bd5e7d19ee432bf2a2728	43.55%	Heodo
2020-08-08	arc 16729.doc	doc	1ec0aea3e7613086f550e01f5014835b55ac12b7d35ad781c2173dd150a0eeba	n/a	Heodo
2020-08-08	FILE 20200808 785440.doc	doc	8d118098701f23422ec3560934134ab170767e28ea66c8a336be4dc8ec102987	44.26%	Heodo
2020-08-08	ARC 2020_08_08 QK871428.doc	doc	58088a9fda3119b215f1635d1dd1f036ee4788de1ae879597e78e7f3122b4b43	43.55%	Heodo
2020-08-08	List-698258.doc	doc	2c81a2ce6b22391710664d11964f75080810038a42e779d91645540647e67d69	44.07%	Heodo
2020-08-08	List 2020_08_08 34815.doc	doc	a0106e59dd260be14700f439f7a350fc5c02d1c3f1eea2c3da779ea8edbdee42	42.37%	Heodo
2020-08-08	doc-U184971.doc	doc	86acafea38ec22e96a57c45f6289fc758fe4e54d8d82f55dba08f604bfe29632	40.98%	Heodo
2020-08-08	REP_4442883.doc	doc	38707b9ca339d901e4f195039ebed8b13ee54bc6f203a43fe160707451bed585	40.32%	QuakBot
2020-08-08	doc.doc	doc	a671e2959966d9a945046df0dd4a878fbe99b378e108e50c8de5a2746ce7dde8	n/a	QuakBot
2020-08-08	dat 20200808.doc	doc	57fbc530b03bcbb0f5c4e1c8545f855d7ace0f7d6d79940824b1e910563a4dba	40.32%	Heodo
2020-08-08	FILE 2020_08_08.doc	doc	ce5d6aa5b1cfe76e48ec485669e784f6e6fa115c5c008cd89c499726b2a74652	40.98%	Heodo
2020-08-08	mes 2020_08_08 UWR089485.doc	doc	a2c4d99f84b10b57c46b0bd1ea0fdd817fbaec3ca977b5b71f62b8ad2896f3d7	40.32%	QuakBot
2020-08-08	FILE_843003.doc	doc	eece4ec540e8ae52c63b4384986f2de0003b5b51d486ee8602de1709feb06dc4	40.32%	Heodo
2020-08-08	list-20200808-VTP04756.doc	doc	93ec25c002b55c38fb31a036675ae4137bf12ddff82518ecd596e4282c2d08d5	40.32%	QuakBot
2020-08-08	list_20200808_G968.doc	doc	da431f9f7888ba7c9912a4ddd22f7d4bb12fcb99f9003d0e5b37a30ba731462e	40.98%	QuakBot
2020-08-08	arc GDW91458.doc	doc	b84c418f6707648b81953a4e360dd80ab7594a32e6e45c94477cc771cfc27337	40.32%	Heodo
2020-08-08	REP-20200808-NEE496.doc	doc	ee5765cc9b118bc6b24079a4701e6ff2d9d91719f9fd11536b6448364b217cb2	40.98%	Heodo
2020-08-08	mes-20200808-TW6624.doc	doc	2bfd06e9045918332df6f6d44e506cd300efef8f5e4561f42f3b3978c7d915a3	44.07%	QuakBot
2020-08-08	inf_20200808_ER90121.doc	doc	e5e2f23eae1e5ced0e4dd57ce7c5c5ebb9206decd8ef46a05c454df21be49ea6	42.62%	Heodo
2020-08-08	Doc 20200808 YB913.doc	doc	84cce9a551dc2eb66990351d4d17dd8c37f457ad337bcb9984231f608208258a	43.33%	QuakBot
2020-08-07	Mes_2020_08_08_116.doc	doc	5d2b88e4fefb1593bca1de5b27276ba0d00140416c91339fc6fd44431c8ccbd9	40.00%	QuakBot
2020-08-07	rep_2020_08_08_SKD6626.doc	doc	aac586207f9c6a20788d622e8e2c639deea5ef650c3b20b552a7f1b1d0a58a96	35.48%	Heodo
2020-08-07	List-2020_08_07-4675518.doc	doc	a69000df0de02fa33f76a39760c10e3b343cf3987577aadd182e361f49d7f5eb	34.43%	QuakBot
2020-08-07	Dat 2020_08_07 465645.doc	doc	acf64b8e97e3201f06314a33733d479adef77620d8c569663be2e02c3ef38e98	33.87%	QuakBot
2020-08-07	Rep-20200807-5821630.doc	doc	1efe160047fc230f05990587dea94ff8f3a0677431f83670f9706ad2fe7d69c7	36.07%	Heodo
2020-08-07	List-2020_08_07-612.doc	doc	a0fdf8103be20e574f980d08ed87eba05a3843c83c02e90dc36bd4d4ef0277bc	34.43%	Heodo
2020-08-07	File_20200807_U3660.doc	doc	0c521d971d4f848f0fe2d2602be0198ed41c412db71a3dab065d5100be08bb04	31.67%	QuakBot
2020-08-07	dat 2020_08_07.doc	doc	869c786dcd71ec09be9f3a73a32d81a26a491ebe9ff19ae64516fad84e58fcfa	33.87%	Heodo
2020-08-07	REP_00128.doc	doc	d30fd458f190f862617c0b08d5cc7d7368f2dec8903b2caa0f8aacb6b498edb6	29.51%	Heodo
2020-08-07	LIST_2020_08_07_5843.doc	doc	75a21eb02e0f3df032f2c445d99fc8607e0ed541ddff871a71ad9c454ad4f7c0	29.03%	Heodo
2020-08-07	ARC-HDL485.doc	doc	96ed67dd83da911c985723d7678cf2867dbaceefca11e73de50938371d7a155a	n/a	Heodo