URLhaus Database

You are currently viewing the URLhaus database entry for http://wmzart.com/wp-includes/multifunctional-section/individual-portal/mrgfoofzn5rn1ga-1yts28z69z6/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:428103
URL: http://wmzart.com/wp-includes/multifunctional-section/individual-portal/mrgfoofzn5rn1ga-1yts28z69z6/
URL Status:Offline
Host: wmzart.com
Date added:2020-08-10 07:18:05 UTC
Last online:2020-08-28 04:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-08-10 07:20:06 UTC to abuse{at}tencent[dot]com,abuse{at}qq[dot]com,jsquare{at}tencent[dot]com,dreamsruan{at}tencent[dot]com)
Takedown time:17 days, 20 hours, 40 minutes Bad (down since 2020-08-28 04:00:26 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-12doc 9975592.docdoc 064fc1e12184d2a6e3b224fcb4a1d3b2ec2c457a0688912ba91283d9fa4eef65Virustotal results 28.33%Heodo
2020-08-12REP.docdoc 750ee8cbbaf949d49f5cb20f8c8c2aa859faea839bdac616c41b539afb9a777eVirustotal results 49.15%Heodo
2020-08-12mes-MY104513.docdoc e44866ddc3408fab14c87c206e408852253a05de531691d4cb8e1dcd7f37cf72Virustotal results 50.88%Heodo
2020-08-12Rep-20200812-O595.docdoc 1f2721d86674c089b606753be49e601afa652cd0daa1af0a19239ca33981af29Virustotal results 51.67%Heodo
2020-08-12file-347914.docdoc fb3cc3350e60d43b553472c75d1c7ec6d97b7a837094ac667dae539d90e627a5Virustotal results 51.67%Heodo
2020-08-12Arc-2020_08_12-FRW571.docdoc d6ceff199daed77e31636bbce10dd06d27353c4064b10c076028aea4313071c1Virustotal results 49.18%Heodo
2020-08-12rep_O860630.docdoc aa16198b53e4a0f12906d869baf7d712279438c0e5cb818a405a26f02d9b29d0Virustotal results 53.45%Heodo
2020-08-12rep-95382.docdoc 590e4167894112b18705fca17ee4057b39745b4af8c182ee650b066c9b195f8cVirustotal results 48.57%Heodo
2020-08-12file_2020_08_12_2913.docdoc fadf9dff9ac739df4bfe67bb110d2570b3a8b56ff10d4d0a619ec013819ee896Virustotal results 50.82%Heodo
2020-08-12mes-2020_08_12-9145.docdoc a86eec1385c130042a6609edfa33a94bd2e475ddda047eb16553247dd67622b9Virustotal results 49.12%Heodo
2020-08-12FILE 3977.docdoc 3978433c3749e3e2c401e046dde407aef5c2365a0ef1bfa9e6f47182b9c4c1edVirustotal results 52.54%Heodo
2020-08-12List.docdoc 972372bf61555e5ac2960184e0c02960b7ecafaf9af5649d7ab2c7d0ef73e090Virustotal results 48.33%Heodo
2020-08-12FILE.docdoc 2d9d999204b6190a6e91bc1da7b0330466f17a916b33c2cab9bd681bc5060e10Virustotal results 48.33%Heodo
2020-08-12rep.docdoc e49959014262227a3e6ca5bc2937e6afab83a251fc694000d1a3d38e7814d9dcVirustotal results 50.85%Heodo
2020-08-11rep 2020_08_12 139334.docdoc 79c47358c6ca784a93b378478cf157a96b6810484e3fa17d544d8ab047274c17Virustotal results 50.85%Heodo
2020-08-11REP_20200812_2609147.docdoc db647367365410a0e5641b0f84a8b1ca4da7a3266d34b01971653e29821aba39Virustotal results 50.00%Heodo
2020-08-11List 2020_08_12.docdoc 0241b1ed7a1656dab5d9fe64b7e59fec547126495769ca53d78220090b494889Virustotal results 49.18%Heodo
2020-08-11File-2020_08_12.docdoc 8f5d6af71053c703ef6ac42971b9c19766bb0682e793b8f295af1453eccb5023Virustotal results 49.18%Heodo
2020-08-11rep 2020_08_12 K875.docdoc 593a1eee983e1c66c480fc52ce564f0ebb60c48d5cadef3f5ed4367d32f1112bVirustotal results 50.00%Heodo
2020-08-11mes-20200812-X8888.docdoc 7100d7486bcccf991906541b709fd020c8cf3aebaed5025f37c19ea15924b034Virustotal results 50.00%Heodo
2020-08-11INF_4624.docdoc fd98e040494ec96249be1460752ad33da1d1a230de136873e2c99e72fdbc336fVirustotal results 50.00%Heodo
2020-08-11mes C89437.docdoc 2a0edb0b6cbc19988eefe08d5e8916bd2412d0cbfd5528e64ab37788dbd7f177Virustotal results 48.33%Heodo
2020-08-11LIST-VQ7786.docdoc 1bd68b07b524ffb4ddcd903f20522ebbaf7108f9f695e901551f5d4f90013345Virustotal results 47.54%Heodo
2020-08-11INF.docdoc 3db6e1a981c6deca37677f3d0b851028ab4b7dee72408caa1ed2f91034d52571Virustotal results 45.76%Heodo
2020-08-11Dat 20200811 NWM783.docdoc 928776fa16adfec7c45a7231c94e0a7a06ab38c7c93929ea7d9971063d84ececVirustotal results 38.98%Heodo
2020-08-11Inf-20200811-E3986.docdoc 1da87bf7cde42012d6ef60a19e839e43b5cf12ca5942cd31c40cc0ac0e31da49Virustotal results 40.68%Heodo
2020-08-11Rep 20200811.docdoc 418eeb7ae0db2b02c5717e9db6635d4164c49b94b435a006d2b447258f71a9abVirustotal results 40.00%Heodo
2020-08-11REP-2020_08_11-330.docdoc 298c4e598ac5553c5e29ce8a580234b92748004be2b24a5b024b8c9cec3c0000Virustotal results 37.93%Heodo
2020-08-11doc 20200811 6121.docdoc efd00f1e4cc5a1ac8241f0a454c24b8147543f0a66b64bc6de403d154856ef75Virustotal results 35.59%Heodo
2020-08-11FILE 2020_08_11 078.docdoc a5530f320f63ba729eda16a7597abee3a1e0f858c579613f99d860ca77732107Virustotal results 37.29%Heodo
2020-08-11MES 20200811 33503.docdoc 414215cf10624e38397dc0e374e5603dcd30869e47fd34102860dedb3b80d07eVirustotal results 35.00%Heodo
2020-08-11ARC_2020_08_11_705609.docdoc 1d8fcb8ce78f1d43313541c4c0506bea77534c4c4d124d489a7b833e7860f74bVirustotal results 31.67%Heodo
2020-08-11file_653.docdoc abc9c3b1ecd1d78757fefd554fd19117f40548a66ede57013083b255758f9936Virustotal results 30.51%Heodo
2020-08-11Dat.docdoc 203612e1ea608a05ef054fe7c5b92486cad9b0ff50b0c9a65ad953d96f596b3dVirustotal results 29.51%Heodo
2020-08-11list_CFD36850.docdoc 252db122a1b30ce47b633f1131fad749c4e0fd1f6f4c9ade52bd27774d41ed62Virustotal results 30.00%Heodo
2020-08-11file 2020_08_11 779.docdoc 378ba1c08d0f738f1e75a4562623302f23a1719ef199f363ad72478e3355a800Virustotal results 27.87%Heodo
2020-08-11Doc-ZKA44280.docdoc 03ae6dacc26669e23257af7d5e8a8c8d15bdbe6cc973112960392ab22d03d93fVirustotal results 25.00%Heodo
2020-08-11file_2020_08_11_DE8490.docdoc 23315f65b06123e965e1949c08085c097b3efc919a3807955cd3e1acc596e809Virustotal results 25.00%Heodo
2020-08-11LIST_20200811_01799.docdoc b9d7c3f1fc34b47554d301ba8d6d5a60e86fb6db50fe0d212aeae580a8c38840Virustotal results 25.42%Heodo
2020-08-11DAT-727.docdoc d990f8ea6afdd409b408fefaf18c4bb205c5fef6397e1e6d7c9466a47b138cb1Virustotal results 24.59%Heodo
2020-08-11Rep_993501.docdoc 9715534fe73d1a63f33ee24b769c7a8dfdadedb96b0c0e52fe0fa713f889d37cVirustotal results 23.33%Heodo
2020-08-11Dat 1860.docdoc df4028247491b1fbd4814fdffd5c5520ff0f3b674fc2a8b279767193d14c96e5Virustotal results 25.42%Heodo
2020-08-11FILE 2020_08_11 YY653964.docdoc bdec17a0bd8af4f682e06a0e45531d3e90242d09c6a7e99b3c293fcd72418b21Virustotal results 23.64%Heodo
2020-08-11Doc 2020_08_11 A6834.docdoc 9ef7fa8efe7c59b7cdbd9d44134d7876fb641fd6cbd2b1aaa1fadab058c7e4efVirustotal results 22.95%Heodo
2020-08-11dat_2020_08_11_152766.docdoc 400606c4f2d3e3c0c7847fdf8847eaff200a7b862ab7dbf625524bf3584f4992Virustotal results 22.03%Heodo
2020-08-11MES_OK15572.docdoc b1528ebc856d5dccf38a0f758121c3e2b97f527b661f447c4ccecbf2332ac804Virustotal results 23.73%Heodo
2020-08-11doc-2020_08_11-EV6432.docdoc d96073b283f52c7dec6eb788b5b17e99280fcf57b31a3139d2e631044da32365Virustotal results 22.58%Heodo
2020-08-11inf_20200811_57200.docdoc 835fb139123223e0744868aaea747cd334a4b5e5b770d017dfab4b17d30a0b85Virustotal results 23.73%Heodo
2020-08-11inf-2020_08_11-RKG121.docdoc ad8ecc85066be281b996f847814e7770dd2316faeaf97406e310db7bd1e3498fVirustotal results 20.97%Heodo
2020-08-11mes_JFC9953.docdoc 12587249744f2253a36fa401256c0bfe0d806185522023bd4862720f14b9cb15Virustotal results 22.95%Heodo
2020-08-11REP-20200811-KX34855.docdoc 7ff100de00d9795cd8a2284d561d25e1dd85aeffb4681647afbee0de71057c4bVirustotal results 23.73%Heodo
2020-08-11Rep-20200811-086.docdoc c63d69fb1a335468a6aeebc2b8af051bf71cb55b4808a17409b332fc70728b8cVirustotal results 44.83%Heodo
2020-08-11file 2020_08_11.docdoc 61a3696a9198091587a55008ec682860adeddaf5a0cc68060e71647881009598Virustotal results 43.10%Heodo
2020-08-11INF 20200811 379034.docdoc fce0f3d055c058d10eaff76ccd0a00bc87a7fb733b1ce6894e486b39ebf6793fVirustotal results 42.37% Heodo
2020-08-11Mes_20200811_RF455172.docdoc cae649fa4834fbe773a6759d1c55036ab5a152fa90aa2f64b7751e50b3e7deebVirustotal results 43.33% Heodo
2020-08-11Mes_2020_08_11.docdoc 353b24cd1dbb7be15133b64495afbbd1846a83e775870f07cef1efc21c411ddfVirustotal results 44.26% Heodo
2020-08-11MES 20200811 29563.docdoc bd21c54cff53a13d78966917cf55e87135e7020967d2416f6a0b259beba63dbaVirustotal results 44.07% Heodo
2020-08-11dat-2020_08_11.docdoc ee1ee54baff4c78ecda5e4b6ff18630ad8152cabe662ac370b7d814ee6d457e4Virustotal results 44.07% Heodo
2020-08-11LIST WEF60961.docdoc 1d6d7c0058e45499315faa839a5d61667865f8b11c4ae4038f23e60cbfa8a8efVirustotal results 43.55% Heodo
2020-08-11LIST-Y66683.docdoc 92f8226b4916acee5abadfd888bd396b2979be223db46252b4decde8b4b3667cVirustotal results 45.00% Heodo
2020-08-11dat-20200811-8952.docdoc 1bea8bd16375e1fe86b702f282fc945bcdeb831b6e2c43a1c40ee83aec1a857bVirustotal results 44.26% Heodo
2020-08-11inf-20200811-8973852.docdoc 13c77da9bbdaea66303dfe4cfcb8b5a9f8eae8d46f1e710ab6574c73b2c1d91eVirustotal results 44.83%Heodo
2020-08-11arc-2020_08_11.docdoc 3b8c4e97505c638f5483d32e67e05043b3f245cb397a0069370eec83299bb2deVirustotal results 43.33% Heodo
2020-08-11Arc_2020_08_11_KE18502.docdoc bda55acb649535e7d61133cf076b1604f3da829aa4d7b45a7bf3ba27466d9c3aVirustotal results 45.76% Heodo
2020-08-10file 20200811 ID41681.docdoc 1ff50f088800028624af3ad83890529e6cd409d4c797d27b35f77e33fe36793eVirustotal results 40.00% Heodo
2020-08-10list_20200811_VLC5494.docdoc a685d179f34dc5fcb9fdb968d93826a1931f9e729bd7fa6491dc6cacf4ca0c68Virustotal results 40.00% Heodo
2020-08-10arc.docdoc 230cc48c70942780ddd2cc9327ac6c9b96bd8c1272c1ad0ccde75cced629204aVirustotal results 40.98% Heodo
2020-08-10REP_2020_08_11_LE5385.docdoc ab0306c2455e32e50062bce1ae1e34c69f5b6b90faf1e02827ea1333ef8d6df2Virustotal results 40.98% Heodo
2020-08-10file-20200811-28339.docdoc d1995ed56b0d8d1b1696cf696e047d70dd9f86f9ba8dfeb1903fa84aa82f3e94Virustotal results 41.67% Heodo
2020-08-10INF_2020_08_11_PZ043389.docdoc 73c17caafafa44d5ebd7a8d48e34c9bb754001950b197e63c5c97996246be9beVirustotal results 40.00% Heodo
2020-08-10ARC-2020_08_11-37555.docdoc 76bd88e8ff88b6c78c4f5a2c133e2462a8c36abe34ca709a89c1c8199271307dVirustotal results 40.98% Heodo
2020-08-10dat-AS581872.docdoc 5c5c196f98303cb83fe01bd0c601c680ca5b4d5fc5d194a31da99bb0492bcda6Virustotal results 41.67% Heodo
2020-08-10Arc 2020_08_11 5737.docdoc 3708962d8333f33b8ca2229ccdf932d5f06c2e380b5634afb33c2b29e209e269Virustotal results 41.67% Heodo
2020-08-10list_2020_08_11_L92546.docdoc 8c6e70e36629b376e399237d925f93bd2cd7839a7e02ba7e76c11afdaf82a4adVirustotal results 42.37% Heodo
2020-08-10MES_20200811.docdoc 6fdba2a3c021e527cc4d508e143f075fee286280cbb58cc759f2c7968248b1c6Virustotal results 41.67% Heodo
2020-08-10rep 992761.docdoc 39778a23f3d46041a3f8a26a858e2b2e7d4490f9fb8544db7e27baeda4935b97Virustotal results 40.98% Heodo
2020-08-10File 2020_08_10 YC68692.docdoc b5184411717b5186e80a521f6b70c47091f21c4e9c586d2f565438dfaba70d7dn/a Heodo
2020-08-10Inf 2020_08_10 A079.docdoc 21d305c97502379abad7f15c44454ff18239806f9839d1e72f83028893df2fa4Virustotal results 41.67% Heodo
2020-08-10Rep 9625.docdoc 6d218e558b2cf4b5f4564d9bbfe8feb68602b363228a53f9c7e7aba48ae19d1dVirustotal results 41.67% Heodo
2020-08-10Mes_20200810.docdoc 3a2bcd46d722290108da96d36f9b0ba93b0135b9ec0363f0fbf116ecef4c7163Virustotal results 43.33% Heodo
2020-08-10INF HB45664.docdoc a183ad4b8a0e9fb7dca68946fd71e2382b7d6818ea27d5aeeee1eccb0c15ede7Virustotal results 44.83% Heodo
2020-08-10doc.docdoc 31f1744a98bd025bf64a9f1fff3db5a0d8c389dbc4b60eb7a9d665e358420da3Virustotal results 41.67% Heodo
2020-08-10Doc_20200810.docdoc 3ba827fdccdc439eb5e92985a6ce5abda57ef7ba59f302f21602034b51e817f9Virustotal results 38.98% Heodo
2020-08-10dat-2020_08_10.docdoc cc150d98c77467413cca20e24af2ba69870168fa8a7793d89a2ca28cf926323dVirustotal results 40.98% Heodo
2020-08-10ARC.docdoc 05b19f1a3f37ab7e3dc1adfcb331e76f1669a70c8cef3aa4de7e7a322c7cb244Virustotal results 40.98% Heodo
2020-08-10REP_289367.docdoc 833a770e2cbdabb55ec018d7ef4df44ab3fa7713f3a008c7fa9115052590a6b0Virustotal results 40.32% Heodo
2020-08-10DAT-177853.docdoc f93085363207df63463e918f54710d8958d46b5d0b25608a90ed707145215062Virustotal results 40.32% Heodo
2020-08-10mes_20200810_4321288.docdoc 89e6528d812e9c5ebd232efc41db376df49a2e62f631d7bc6687ce1e4505f900Virustotal results 40.32% Heodo
2020-08-10Inf_20200810_79823.docdoc 66c5dd0396ddffad45dd58a211980555bb1067b8b907568f402dc8bba02c84c9Virustotal results 38.60% Heodo
2020-08-10arc_20200810_HI800.docdoc 04833f4fcb5cb27cbdcd86d9ab44bb212ad8858f1579b061b7fe39c807c98cf8n/aHeodo
2020-08-10INF.docdoc bd4f437fb7e619a4c950887ea0bdf376ba140bc4f3cd5bd1fb4f9a30c1824e4dVirustotal results 34.43% Heodo
2020-08-10doc.docdoc 89d64653ee0c99479f754d1fab19c2f114a1e7bfa9a9b56962605cd4cd4dc7e3n/a Heodo
2020-08-10file 2020_08_10 SO692139.docdoc 48b138df9730d18cba8f70fc93609cca7c6559af542d1a28e3dd5299e5792520Virustotal results 27.87% Heodo
2020-08-10doc-403251.docdoc 254be797ffbf8675b2ea4ba0e525fe4be49e809bf39ec4d8edebd9be0a548468Virustotal results 27.87% Heodo
2020-08-10INF 20200810.docdoc 74dc458390ca47c9ca78e56ed76ffecac17d4ccb4cfa618b3cf6f7464a90ef32Virustotal results 23.33% Heodo
2020-08-10mes_2020_08_10.docdoc fea75486f779a09cc13afd43618fc5e3fb34dd21ad064fd50b17f9ba0efb21e4Virustotal results 24.19% Heodo
2020-08-10File_HJA557.docdoc 180422e0ef48fc6ccd972ff5be4adb974f18a65fc2f7cabe648bacc9aaf8d2a4Virustotal results 24.59% Heodo
2020-08-10rep-20200810.docdoc 6c9d4d2d2c02827829675b1a5916d3aa7b7f8c437af123ec2266032b3e36486cVirustotal results 24.59% Heodo
2020-08-10list 2020_08_10 0400899.docdoc 799851df1ba5830b6c1441b7a66be4f00b95a7f9cb434eea83672a5bfa8bc475Virustotal results 23.33% Heodo
2020-08-10list 20200810 3509.docdoc 77b8a8e1cc4d0b394cace3de6a6b6586b1790284beeeae5cb9560e16ea33e67bVirustotal results 24.59%Heodo
2020-08-10Doc-820.docdoc fa4d4fd753c9e149d01fd2d3c9c4feb9c2de06940c9fbd3337d959e768eff74aVirustotal results 23.33% Heodo
2020-08-10Arc_RM217453.docdoc 575baad449aaa019e080f460bc4ad62e864a12b8b87fffe30e2257cf4f8abac3n/a Heodo
2020-08-10File_20200810_W207.docdoc bd65d994a782055bed238901b1716efeca55301d845a68754458abdac455395aVirustotal results 22.95% Heodo
2020-08-10Dat_20200810.docdoc 0a3291d2715fd01250ba5d617a9526e37b1e15edd535968de9770e3ecfe0b66aVirustotal results 24.59% Heodo
2020-08-10inf-209.docdoc c8ecb35f1491b312bc8f34bab1a9746238044b23b70fe26cc8f232875f484587Virustotal results 25.00% Heodo
2020-08-10FILE 440.docdoc 7f98170c03d5d545bf1631325c8693f4cb416aef3bd0acff351e7a9e81db7407Virustotal results 23.33% Heodo
2020-08-10Rep_20200810_852.docdoc dc9f1461b3c37572fd9b498f5477dd7fb705470349fe1808c4d00bae0b1bad6dVirustotal results 22.95% Heodo
2020-08-10DAT_2020_08_10_RX46579.docdoc c7206b64627abe0a6bd7bb374f63cf7bf1c6668fd927641b574b1b5b62c0fe62Virustotal results 22.95% Heodo