URLhaus Database

You are currently viewing the URLhaus database entry for http://automed.ge/wp-includes/LLC/lt5g7nk6/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	429644
URL:	http://automed.ge/wp-includes/LLC/lt5g7nk6/
URL Status:	Offline
Host:	automed.ge
Date added:	2020-08-11 19:26:11 UTC
Last online:	2020-08-21 01:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-08-11 19:28:04 UTC to info{at}serv[dot]ge)
Takedown time:	9 days, 5 hours, 45 minutes (down since 2020-08-21 01:13:33 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-13	U_PO_08132020EX.doc	doc	be04b2d2bf1b93069edc57b0a0a2dd1ca926c840982e1a63e625397ff8a960bc	38.33%	Heodo
2020-08-13	EO8053012448UH.doc	doc	15e32f7a4675db4e399e6ac32e7b9b98197aeb89dc371330c21678abcbe13262	n/a	Heodo
2020-08-13	Z_PO_08132020EX.doc	doc	bbbfae57148d4ae3803142303babc3d2fcb182194f9112aaa34b6f4978e8e0ee	36.67%	Heodo
2020-08-13	KZ2476353276DR.doc	doc	b8c7112d2672445960d4ca69da612b07b761b5119015c0dc4e75064b85978ff0	36.67%	Heodo
2020-08-13	643427317029948657451.doc	doc	ea4ab11724bb19ff8c0451069a27cfc6b2de7b7ad0254edd07f3036c265a066f	35.00%	Heodo
2020-08-13	WXS_080120_GBG_081320.doc	doc	b8748876a802240520ada4d1493ffef171a7e7a99ad42481dbeffec99b436c50	n/a	Heodo
2020-08-13	75394659.doc	doc	f959a3ec8067a6967f047b19554210234638a6ac9b0bac85e006979f09c33d11	37.29%	Heodo
2020-08-13	FILE_HZ5842917872GT.doc	doc	787b6d7c7eccdccf7041ef2028eebf0f8eb9691e1fc1561c6a6c13985156b1a7	32.79%	Heodo
2020-08-13	INV_NTR_080120_YBE_081320.doc	doc	bccd7607de30c4481db2b724437ae78b0d1248b1b7bd563add97f212194b4fd3	n/a	Heodo
2020-08-13	PO_08132020EX.doc	doc	5f13b204f1454bc08133eb8207a0bbd3faa357d80495f1136ff43768e69914e5	n/a	Heodo
2020-08-13	2JZBLRWG.doc	doc	5dfe99bdd766418f029d534146438a97818581f989d4b2ebf5f92179344000c0	30.00%	Heodo
2020-08-13	GN9779043095MO.doc	doc	0532eadbdda96ceadb7250d379491c1bb64d6d40b96bc71d551268896fd4bdd6	28.33%	Heodo
2020-08-13	YZNR6YHZ3EXD.doc	doc	cc1a7efdcb7e41f40365042a5f31c2338804f4bacce2f64fec0ef2fcc3dd2f96	28.81%	Heodo
2020-08-13	5526247751931364691860912.doc	doc	479e00f4a39c727821fabea3c681e051bf755f4eb4c10e62f23055ca7f4a9353	29.51%	Heodo
2020-08-13	ZEKE_PO_08132020EX.doc	doc	b51738d4d37c472d3b1b69c1f7cab2d120fd9f2e53a524e772a263e65a892c94	28.81%	Heodo
2020-08-13	HUV_080120_THF_081320.doc	doc	22c4bc8c9ad10df54d22ae6a89c1b937d49982a7b9f6ed54798394dc9033c0cb	28.33%	Heodo
2020-08-13	57669472.doc	doc	a8786f3ff1ecf32215198afb54ea5211a0c5fc6468cef97101a85ff5839b05ae	28.81%	Heodo
2020-08-13	6135708199664801.doc	doc	ae0c7dfa89cf0301b64ef4f6b364a1e426c79c80a9d0943916c93f3315ebc907	27.87%	Heodo
2020-08-13	A_06984786.doc	doc	79b609ddf074406de181d656544923255389ac44a068ddaeb858e6546d2787f4	27.87%	Heodo
2020-08-13	75N72865BLBEAKUW.doc	doc	430d07c2162af45022115ce4b557ab182afc95143b698568d50c41832c6b281b	29.51%	Heodo
2020-08-13	45038524.doc	doc	52426d2c2644ab78cd7fbe3a9e0d19acbd34903d9f62d42fe2e999b964e3eea7	29.31%	Heodo
2020-08-13	D_478526521.doc	doc	0c4015de45653ee2f8fc6e338461a2377e14139b1ff879df5a2fe1d3c200a15e	28.33%	Heodo
2020-08-13	DOC_NC6PKBYJJZ0W.doc	doc	fdf714d8a02549739b60c414ff535944cd2b7d8a84e465b55f4fa263680e9cbe	26.67%	Heodo
2020-08-13	67955086.doc	doc	f1194d491ba7c0f8f39b1c0b9d47c4324742b324adc2e4a3feba13f77e9b40fe	27.87%	Heodo
2020-08-13	FILE_65659729.doc	doc	3f9f641892bac263ede86f11632b4a6498dcc2b94b13727c5dc8c8c594e0f608	27.59%	Heodo
2020-08-13	REP_ILZ_080120_SFE_081320.doc	doc	0652c184cccfd772644a2b72467b93f57ee93b1095894cc08ab3a9d9470fbac9	26.67%	Heodo
2020-08-13	REP_MZB_080120_VEK_081320.doc	doc	30aceb60d6841a0f444bf36dbf53b021d32f7c1494c42f2c8600c6ea1b84909e	26.67%	Heodo
2020-08-13	REP_JPR_080120_KYZ_081320.doc	doc	1ac4188f22c717e76b493881ab12ef60e719cb86d2e5289f743b42b338cb5b96	27.12%	Heodo
2020-08-13	REP_76482549.doc	doc	9806f54f8d2769646e6a9caee3f1c15a1b47f781be6eef64c390d6e9ee867bd4	26.67%	Heodo
2020-08-13	PO_08132020EX.doc	doc	a8bba76a96bc1cc1852b0b70a3e75776d9dda9cdd9a5978c25f38dd031cd1d4b	27.87%	Heodo
2020-08-13	181IUNAF8Z3OXAJ.doc	doc	ba510b5a0f97430a09efbd12acbb4c1be869e71e678adf5fa0b5498fb477068e	28.33%	Heodo
2020-08-13	MQXB_USG_080120_JDO_081320.doc	doc	f3288815441008b2291c6b17d597d58fe606f7475c4641bacba49ad56c1b1142	51.72%	Heodo
2020-08-13	INV_PO_08132020EX.doc	doc	5d05496cf28924d44375333ce8c68c5919abc9cc35ba4e8c9a35d02ea07cf5c0	n/a	Heodo
2020-08-13	BAL_PO_08132020EX.doc	doc	0938a3eb8d86fa634cbaa1f643bd2c6cafcdacba202e4683cf7245705bd11fb3	52.46%	Heodo
2020-08-13	BAL_KU3KW5X0PSZZ8Y.doc	doc	c2bb5e128810c06abd15ad3ef0bc95622c20da154ca500892972305c94feabed	n/a	Heodo
2020-08-13	977CS79L.doc	doc	2ec1025c3a44b35de74853b22998ea439d6eb5f0d92d9065256692f0deadcbd9	51.67%	Heodo
2020-08-13	FILE_4158948509.doc	doc	5ec2a412f6729dbbd84453b84c85ac56f93e865a1900eb514efedefedc56467f	50.82%	Heodo
2020-08-12	0580272840110816.doc	doc	a9af06ae735677ec282b4a66f7bc85a343dc7c71491658673fed6150e05ef3c5	50.85%	Heodo
2020-08-12	DOC_72083047250418.doc	doc	e9bbc3d987e57144a6554ea1c30a527af2db5a40b2c12e9fa6b28a79ea2afb3a	49.15%	Heodo
2020-08-12	5355792425517194952486.doc	doc	c872e36dabcc02d5ca6d5a1c7ff09a8673509c3a45dc42978988f19f053fffad	48.33%	Heodo
2020-08-12	C_919V2XPMGZ.doc	doc	6d377770b986243d95806974b9d72c7f06f0cc80801d73a0860866cf4d95376e	n/a	Heodo
2020-08-12	EQ8772951103OL.doc	doc	cfec1c4aeca2bf10496b8ae3be0b77a9dfade44f1503c09398114731db0e92b5	n/a	Heodo
2020-08-12	HEXQ_JX1OK6EO.doc	doc	04f8c0a6881a2159e13398f7072a461705b4ccc8517a28cb9565506f9b9ba8b0	50.00%	Heodo
2020-08-12	FILE_7282683688265.doc	doc	448b77551e8ab272663dac5ccf4cad4be8b7dcfc1759a2859785754aa44d285a	n/a	Heodo
2020-08-12	23398981050430.doc	doc	81b56737e0ebf1766ee14ae1a7c022da0208f91ddbae7d06bee3cefbbf3b01a1	48.33%	Heodo
2020-08-12	BAL_MZB_080120_SHT_081220.doc	doc	f2ccd3c493881b68693c2d24addb0a1ec854e6020efdff1cbccf785a1ad099bf	48.33%	Heodo
2020-08-12	REP_PO_08122020EX.doc	doc	4b94ba4ad2c65349c09e18ba049dd76f5b61a5491812b3ea60961945d1866446	49.15%	Heodo
2020-08-12	O_CZ2123463402FD.doc	doc	01817dd6570dc258829c88ceab491052f8376cc5071286d89c5ef07b621f96dd	n/a	Heodo
2020-08-12	BAL_94784393389.doc	doc	97feccf3c91f6d0275ecafdf2bb2d3a869dbd30f1ed7e87db533ac6a63678fb5	45.90%	Heodo
2020-08-12	RD4203236888KH.doc	doc	dd4525e6914fa0fd2f91bde41f2df30ef8857b9f08c19e0a106ec78098ab63c1	n/a	Heodo
2020-08-12	KFR_4321414680254096148522390.doc	doc	1b43dacaa3825888c4583607901a5fad687f60840690fa8dfb7b5ab72e28c27a	38.98%	Heodo
2020-08-12	BAL_6023572408155.doc	doc	25263694227734da43c741c2d09b0f0aceb8cb2d9488378a2ea765c6c19be594	n/a	Heodo
2020-08-12	PO_08122020EX.doc	doc	4020a8982e70b51b150cd40a837ea5dfceb35f0a6c9f9858b3fae5e00404ae62	30.51%	Heodo
2020-08-12	FILE_2260347100350202191924.doc	doc	1f1a6a0dbefcc80a0303cdd5d9efc76784286fe3003a19b0e1ca9e0da6b7d030	29.51%	Heodo
2020-08-12	DOC_57910651.doc	doc	801b894083a28702abb0010b0d8c0fdbdb840c5ca75143f0b3651ffcd9f4733c	30.00%	Heodo
2020-08-12	REP_736344403396479033546.doc	doc	d49ceafe59b20372032a83bee0b04f5ea7bc91c92258d386bac309f97206627c	27.12%	Heodo
2020-08-12	FILE_7811816878076192.doc	doc	e6aff4596a71a4b0c501dd7850553e31385190366a94fd6dc636e0664665e131	27.87%	Heodo
2020-08-12	IWE_080120_TQC_081220.doc	doc	beb08012d1a1eaa82766653d073df1c7d7579e39012001170ce6ffdd3225e1b7	28.33%	Heodo
2020-08-12	BAL_94933615.doc	doc	d4c552ce903e8455566a265fd7ba1a276db5bf2a88ad998b7c93e89989d1aecc	n/a	Heodo
2020-08-12	A_5210817861032.doc	doc	9ec7ef1bc0701307cd1c1ddc9a252a989e724abc0705fec55d8bceefc7ffd087	n/a	Heodo
2020-08-12	L_QIR_080120_VEX_081220.doc	doc	e0201f9ab91fd60515ac550f33b5556040b5d5ac9438585f999ece1111ffb09e	n/a	Heodo
2020-08-12	PO_08122020EX.doc	doc	397be2c8284f65fd173f3ebb49ce8059a21e4228e1a8f5eefef6772291c8c185	28.07%	Heodo
2020-08-12	21063586.doc	doc	7d5046f3a9a3765884a6c25a9180fc3521778f6307e706c551bf48fec651192d	28.81%	Heodo
2020-08-12	INV_YV4681568264WR.doc	doc	a56d5701d53cd34f450eb0a957c6f5c0716a835bc9c9070e315e22f71889b72b	n/a	Heodo
2020-08-12	L_ZM2762783839UU.doc	doc	1e1197d27bc4e2c81bf36570d41052b3f74d24df43ce0250b2d53d7b2269c20b	28.81%	Heodo
2020-08-12	DOC_70481948.doc	doc	fe14ae5d76ac1ccafc67f474efe315000dadae344444a44c9200e04e94ebbdad	28.81%	Heodo
2020-08-12	PO_08122020EX.doc	doc	025046a10693eb1c9dca8e64fa2dc55f1ba16ff9c6650493205e2c3af827e1dc	52.46%	Heodo
2020-08-12	INV_PO_08122020EX.doc	doc	c978e204a4343d19a9b1df57379618a391455fe0f0fd17e49fcb670670c4241c	n/a	Heodo
2020-08-12	KNB_080120_HWP_081220.doc	doc	6f973501cc2dece992aa2f959f8e352e424e96f06abb300b4bed8bcf2ab4bf34	51.67%	Heodo
2020-08-12	BAL_PO_08122020EX.doc	doc	1d2096f4adcba717670858b98912615f7bc86bd95ef6b3117901aa4ae6383d4d	53.33%	Heodo
2020-08-12	FILE_UZY_080120_RUY_081220.doc	doc	75e0692474be7d8066516c6ccb1904530d6540d82228ca27d52c6c8c5f806264	52.54%	Heodo
2020-08-12	XMNRFXWCE.doc	doc	455f02233220edb99d4f99f02ec20a5ad8b3a157bacaeae2dcac14f707613869	53.33%	Heodo
2020-08-12	DOC_4359143308842096197751.doc	doc	8f78d106bc2f3e79349aabe3d812859febc3039e06dced8aa67b29e2421a9d31	54.24%	Heodo
2020-08-12	INV_PO_08122020EX.doc	doc	7575d9ebd2153fdfbf4c1626ec4769e8cdef40ea8e2990670f1cc5cba71a2e7e	51.67%	Heodo
2020-08-12	41882604.doc	doc	4c3eddd6a41f348b80609e91f83e3a9e22818758105ce3db1de70777baeae682	n/a	Heodo
2020-08-12	DOC_QHRJ2PLYHO7S.doc	doc	358176ae69d49cbdc29ce5f8965efe9952253949970d9de4e8f09f46c488e6ec	n/a	Heodo
2020-08-12	ZY5104578749VV.doc	doc	b06fa4a03274712b0d1bea0d2a5d1afc2c71541acb80b1054d31b661b67514ea	n/a	Heodo
2020-08-12	REP_PO_08122020EX.doc	doc	e4d1deaefa7f905c5ce7490867ae09ff2d50fdf4162f102e276653c1c46eeab6	n/a	Heodo
2020-08-11	A_JHT_080120_DSZ_081220.doc	doc	5a95e436c4df9dfb41496c96489d1bddf6db2c7d54ccf0761eb61ef1af9c83a0	50.88%	Heodo
2020-08-11	AB6942645433HD.doc	doc	cafe9be1769c83fbeb348a49f0c1e0512df75007fbca4689516ce442fa72b54e	51.67%	Heodo
2020-08-11	BAL_08088686.doc	doc	854be831ad01f15c5a5cc2f0f253d059b2a9faaac66db5b90fe51b3daa401c57	50.00%	Heodo
2020-08-11	CMJL_RIT_080120_WWH_081220.doc	doc	1aac25866333e7f77dc237137353a0a65ce189972d87658229eae96e3037bc68	n/a	Heodo
2020-08-11	Z_7276853605.doc	doc	1d09b28a4d454266d52d7d2e5b9aeab2bbf43839ec33c9a7221eafae3c28c067	51.67%	Heodo
2020-08-11	W_73584559.doc	doc	2adc586ea7a59715aa3226b8b211a8d39fdc6b40691c30e3a96962d2c041688d	52.54%	Heodo
2020-08-11	ARX_FTH_080120_IQO_081220.doc	doc	bb6e3d0f0394c94254fd90afa543277a215c6834d045f0c20aabd990cb68856d	n/a	Heodo
2020-08-11	N_IFR_080120_YJB_081120.doc	doc	b9be58269c46d1dba55d08e51cf5186e5c6669171b0b96d6bf2ca5b7558af124	n/a	Heodo
2020-08-11	FILE_BM0371534448SP.doc	doc	597ed34e38d2b0c2313a9d95a421d70af23bd88d60c66de8e04f4127d425c6e3	50.00%	Heodo
2020-08-11	BAL_20862642341195313081.doc	doc	0dc77319f898db1037b996e421c171d0ddbd13166a8b589ab1da97b8bcfc99cd	48.33%	Heodo
2020-08-11	FDY_080120_EBD_081120.doc	doc	e3c3680851a89170c23abe99901157c7d96591521360d2140a0ba4dccbb69ae1	n/a	Heodo