URLhaus Database

You are currently viewing the URLhaus database entry for https://wjcomms.co.uk/wp-includes/zHaxTDwQk/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:428847
URL: https://wjcomms.co.uk/wp-includes/zHaxTDwQk/
URL Status:Offline
Host: wjcomms.co.uk
Date added:2020-08-10 20:08:07 UTC
Last online:2020-08-11 11:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-08-10 20:10:04 UTC to support{at}mythic-beasts[dot]com)
Takedown time:15 hours, 33 minutes Good (down since 2020-08-11 11:43:19 UTC)
Tags:doc emotet link epoch3 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-11InvLZ9790564.docdoc 0fb22fec5d9853fa93af3eec4e3275df76e1aa54b17327f3b81cae5594f64205Virustotal results 26.67%Heodo
2020-08-11Inv-YXC899-2403651.docdoc 8d1a38a7a87a318a060774c81c68b97f13ede9de0d241007cbb5591d0d708495n/aHeodo
2020-08-11INVOICE-VZJB799-0836977.docdoc b16e37a0663d4850eea084147f345f8ed5f0771b13cb970e6073598106508476Virustotal results 26.23%Heodo
2020-08-11invoice-FSPB964-0184039.docdoc b97f21c9d86c3f8c4a66a3e12e9a89c5d9f0bb23fc7b90a95618bc0faef06250Virustotal results 26.67%Heodo
2020-08-11invoice_BU0_344691.docdoc 43048cdd340fff0306fb245a60aadab8b1f8ecbad52db75e5a31771d36796e75n/aHeodo
2020-08-11Inv-26-7884336.docdoc 52e28ea8aca2d8740bf1588be8b31149155d1ed1b03f5515245289f97419268fn/aHeodo
2020-08-11INVOICE SXA11 20668214.docdoc b9e3dadcc0acf82fb00ef7d39028f21feff334463cd020e05907710d63596c23Virustotal results 23.73%Heodo
2020-08-11Inv-BT119-82254054.docdoc 0e19c849ca4c2233df5a1a5a7921ffab67a1c30929d5e14ba93534f1e4fe14afVirustotal results 25.42%Heodo
2020-08-11INVOICE V5 10195661.docdoc 4597432569ef4ac0f059bbf50dd60697eabf6db4eaa073732fcb93eeb3c3b298Virustotal results 25.00%Heodo
2020-08-11Invoice-QAD8787-434649082.docdoc 50a973f6d0e0284ed5cbce911ba01e39ab74db72d56ac520595f474a0eef9af8Virustotal results 25.00%Heodo
2020-08-11INVOICE-OHWN9-08476664.docdoc 828c45a0531e4114b04795ca2dbf8733b845ed7e138fc6a2bb925634c52a79e0Virustotal results 24.19%Heodo
2020-08-11INVOICE-GNM20-5381701.docdoc 9f5254aadc7a867d60371d269a9dc5700029302284d6d0e9b152fa0d5b27c67eVirustotal results 25.42%Heodo
2020-08-11INVOICE-L4-299738.docdoc 539b9b6a1a67270d4042d4a27e6c105ab464ca4a6bde8bc31a6cc617867c6dbbVirustotal results 24.59%Heodo
2020-08-11invoice-VAQ74-68752658.docdoc 709d0659fa4f24d03271c135278037e641d7882204d841bbfe3fef0c7752d734n/aHeodo
2020-08-11Invoice-U46-4127958.docdoc 920f950bc61e9c48ea08d7d68d5b1d5f8a96a323a027f67380f61b63004a2048Virustotal results 43.10%Heodo
2020-08-11invoice-ZUHQ1-2603028.docdoc 26b9c1c0f69f153aafff4869e4d5ab9b45de7032924833fe9de0daa5d39c857eVirustotal results 45.00% Heodo
2020-08-11InvDV8435875708.docdoc cc59963fe5d5894b7e5dbc7692e1805997093581646466a298272239ade2f200Virustotal results 43.33% Heodo
2020-08-11Inv-X970-208004.docdoc c64d68094224e580747c4707691e50c77046c7cc9e226b2ad20ff1d38ff3299eVirustotal results 45.00% Heodo
2020-08-11Inv-MD1880-6790179.docdoc 1fbc9ed8fc7699f9210bb96065f2a385bfbda9a92af0b62c5f1d1c16815883c8Virustotal results 44.26% Heodo
2020-08-11INVOICE-94-200120254.docdoc 47eeaa6e638b28556d75d986cc2a8f88bae892b3a0341a4a8799a8ff94eff6f7Virustotal results 45.00% Heodo
2020-08-11InvDX66085400460.docdoc d9d5afd0f83aa28a06f4a1b5dc642926301d0b9bb7cd9dc22dc75ef49fafa296Virustotal results 45.00% Heodo
2020-08-11Inv-KBB90-316218.docdoc 00c79cf67a9dad04c8c95c56c0ee755066e266c384f38f106cbcee90931e6cc7Virustotal results 44.26% Heodo
2020-08-11InvoiceZ2420332938072.docdoc d49792fa43cfaa2d13e6bab3b87374314a2cb9ab1ef794d1caa38a9b588294f6n/a Heodo
2020-08-11INVOICEE3691122479.docdoc 520883da8b1bf11497ba78643e6b06fc4bc58b3bff347932c18c526c02020b6en/a Heodo
2020-08-11Inv-PNWD849-36169638.docdoc cb4b0b24f326ebbb9b3ee68e61c6972bc8dffd19f8d39797cd36ae66d5f6b342Virustotal results 45.00% Heodo
2020-08-10Invoice-Y0451-3757844.docdoc 765ee8def1d2072f08d72026bfa54f3b4564e8788cc961e1e1360d1d7e8cfdc1Virustotal results 40.98% Heodo
2020-08-10INVOICE EFKJ506 0387185.docdoc 54daa69279ba46571d3bfda4b3b8b6f552f34d59053e6c895b56f843b7ac74c3n/a Heodo
2020-08-10Inv_ZB36_669236233.docdoc 96379d3c95f98bfe9120778d7b62fa83e9ee5f7f151ae6ba8c6b169dd1a94d14n/a Heodo
2020-08-10Inv_867_82062234.docdoc e05af92d12bc311e3952d2d09fb02b29e531c26fbda20510ca55b9379a84bb7bn/a Heodo
2020-08-10INVOICE-DZL1632-896427.docdoc a57ec2f717eefa2a45b6c779b5218d1d41bc48b0fa20b82be6fe1b7598b7e23aVirustotal results 40.32%Heodo
2020-08-10Invoice_DPDM26_6607985.docdoc 2febb46b906fbda4f0b825ba753c76c0f4d9bedc58e9bbe76cfdef3fcbe7de6bn/a Heodo
2020-08-10INVOICE Z4 62452010.docdoc cb622916234b52549a809b6201e237887ce2aa624b9f51f0e829f346a885294dVirustotal results 40.98% Heodo
2020-08-10invoice_98_175550.docdoc a3e36fb8f7637e34a62acad4588fd71993fa7f19feea81025d316eacbf38b629Virustotal results 41.67% Heodo
2020-08-10Inv-09-16404661.docdoc 5a4b46c4ca83fd1871d35db99dd3f62062133a798926754fb4e9ee88327ed392Virustotal results 41.67% Heodo
2020-08-10Invoice-FSW3-262287634.docdoc aacc28b42d66b6594572167ba0826434b6a08ed2c59ddc05382dedcfb687763cVirustotal results 40.68% Heodo
2020-08-10invoice_DVR7916_44644492.docdoc 08210f95348904867b67bf5f81907c82dc398e6c6981d97c9aa22dec66233348n/a Heodo
2020-08-10Inv-FX7709-895248451.docdoc eb2aee603e1cc5c8d9c060528cca9520f212d1dcb268d5f6a37f201e356bf104Virustotal results 40.32% Heodo