URLhaus Database

You are currently viewing the URLhaus database entry for https://zubk.net/wp-content/plugins/gallery-plugin/upload/files/OTjY/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	430358
URL:	https://zubk.net/wp-content/plugins/gallery-plugin/upload/files/OTjY/
URL Status:	Offline
Host:	zubk.net
Date added:	2020-08-12 11:33:04 UTC
Last online:	2020-08-16 04:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-08-12 11:34:03 UTC to kdenisb{at}gmail[dot]com)
Takedown time:	3 days, 17 hours, 18 minutes (down since 2020-08-16 04:52:08 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-14	invoice-H1-0900922.doc	doc	a4bd9a81a37fee5b41e731813e4cea46796d5684c624d7f09e25be438d71b6db	25.00%	Heodo
2020-08-14	invoiceJY6857718.doc	doc	f29b2352c27bd3d9fca98d1f168efbbed851c986473a4281bdebadee731653f7	26.23%	Heodo
2020-08-14	Inv-WEAM578-597606191.doc	doc	a39c3a1d85563e52225ba5a4b21a11c2020fcfe4370f36c2bc012ae19d91103f	25.00%	Heodo
2020-08-14	InvoiceJB037072331630.doc	doc	0bd1c09908f6c09ae5217b631f5041669b722d5961f9471365b074d51d9a7a36	23.73%	Heodo
2020-08-14	invoice-YV55-7011589.doc	doc	7358c63d00a9a687434f3915c70e05e268b5d414d08c19e063de5f08e84e92e3	23.33%	Heodo
2020-08-14	invoice-GWZ152-71266362.doc	doc	4af3cc1ac4ee4610fa7671fdc8b02ad17ad4e71433250d2ab04291fc1f5e657c	24.56%	Heodo
2020-08-14	invoice P45 835876190.doc	doc	07b144dd0033cf31233b85369f90ddc087ecdf0c5ae378612e504252db7c3f32	23.33%	Heodo
2020-08-14	Inv-0419-811336982.doc	doc	495ebea1fd0ea1d5d47a3696aa58045c06311416da9f715ead1bc2809b8732b9	24.59%	Heodo
2020-08-14	invoice 94 508782.doc	doc	a437dcd3136177141f2affb2906b150c6c0da7a4a12a87e1c808b2b320370f18	40.98%	Heodo
2020-08-14	Inv QE9 726432537.doc	doc	e64e43f9549144dcb8e091b5d2140499702e699e14f019192575a50ce08d323e	41.07%	Heodo
2020-08-14	Invoice_HMEO595_4655265.doc	doc	99dac5a117859eb23edb38d2da4b792d02b4a4d1fab2249bc171faf6bf1dfda9	40.00%	Heodo
2020-08-14	Inv W4 030670120.doc	doc	3132acbb0aa02f175f2e8bf589a53e732564cf73f1f003cb64c842ba52d3c889	41.67%	Heodo
2020-08-14	invoice_PRS54_67376328.doc	doc	c32ebf07a4f2324cc33cf6e7c975c375621c519fa654fc27303c9a812293fd7f	39.66%	Heodo
2020-08-14	invoice PQHO2609 936865969.doc	doc	382eeb05e0b37509916697e88d5f58e00cfd17db07cf9b27240fd84aa4bcd26e	40.00%	Heodo
2020-08-14	invoice-AM211-946495259.doc	doc	3d8831fa48eda1b1975a84cde54f8775ceecc95fa6ae4278a9ee533cf37d9d8f	38.98%	Heodo
2020-08-14	Invoice_WOIB54_6334693.doc	doc	8b725e5a090dcb30815c5df978e72af9a04372b9fda6729678004e9bdd617ce6	38.33%	Heodo
2020-08-14	invoice SS6178 481901.doc	doc	2da551517d3d24f3485bb7c1edd4dc79031582d5cc3f4066169ecdbe26b4df18	36.67%	Heodo
2020-08-14	INVOICE 3 42921244.doc	doc	ebfd94ac1cb7510d9b3fe2de38c88bb88d64956d0c6eb93aceebee8ea83ac763	37.93%	Heodo
2020-08-14	Invoice-9088-67920389.doc	doc	0b134d91d537beab9f4e700b126eb1b43b69c80126818592cef4697fce08263b	37.70%	Heodo
2020-08-14	invoice-YYUQ77-1759676.doc	doc	4398bc31070f761b318b30f297d363b006ed9e84c6af0aa45ad140f57e7c1529	37.29%	Heodo
2020-08-14	invoice-T434-55185793.doc	doc	e8516c23d1aec8faadd52ae68fd240339940d05f4a1db7c56afdbec1eb5de0f6	37.70%	Heodo
2020-08-13	INVOICEUGHC6373455100.doc	doc	3c2103ec1e6af0ce039524d58d70a4ced5e2845549def894d03f836978afa09d	38.98%	Heodo
2020-08-13	Inv-YX826-2725926.doc	doc	3eb6b088630e12b4b89f3af4f5b1366626605adddd5d7d447d1b4b8246d305bc	36.67%	Heodo
2020-08-13	Inv-TME2927-157679369.doc	doc	88d310c1de24f5a780b5269aeff8f47a6715c4fcc531df6ad2e8b2fce834773b	35.00%	Heodo
2020-08-13	invoice_607_850886119.doc	doc	ff68f4adbb2d5f421b94ec8c2ca343c8dc807544237928a2617bb4c1dd32b7b8	36.67%	Heodo
2020-08-13	Invoice_6_16593335.doc	doc	653065e50db8318e4c980f45418849681df513e216b29c07cc7036442b0f9cfe	36.07%	Heodo
2020-08-13	InvZ72204946.doc	doc	ad919d299d8151242bb880dfd8e4f379ee644eb8a6eb799f7dd9608fdbaa84d2	37.93%	Heodo
2020-08-13	Invoice EB362 47893173.doc	doc	5068ac1fc3ea1af3eb637bed169df3a72f14ab7db56ff2996f718fbe8c05642e	36.67%	Heodo
2020-08-13	InvJ1588658082.doc	doc	efd5ba3aef6a5b7efdf02bba779391cf010ad01d68be10642219e412a940797f	36.21%	Heodo
2020-08-13	Invoice 5 77163654.doc	doc	894dfe7d84439530c0f7bdca76e92f6d9ff10fe2121e0ff8decfea3153f5e91f	35.00%	Heodo
2020-08-13	invoice5220409.doc	doc	7f84ffec8d67c90cf874b1c63419a909e57b6e610d050a800bccfef7de037607	37.29%	Heodo
2020-08-13	invoice-246-992255989.doc	doc	17c0ad7fe3012db3c5ada59ba1d21436aa344ab57a37ce699684f8bbead66de0	33.33%	Heodo
2020-08-13	invoiceEN662510387.doc	doc	ecab54e301b452142ecc261b2329b5603222fdd66c4785aaee3b0a1e54373879	32.79%	Heodo
2020-08-13	invoice_P2_5226920.doc	doc	196a89c54cda70af31877740ead0a738ead3533d3ef89e87e31b193044fb42f7	31.67%	Heodo
2020-08-13	Invoice ML9876 5259014.doc	doc	fca1b080bd37f31310426e23e3d06dff66c14e54fdc049af8896fd4970ea29c5	31.67%	Heodo
2020-08-13	InvDZXP6296443138846.doc	doc	7d4ee38f224a7af8f2988087cb32ba596f3e914f876a03f7b51b3d68c0832e43	30.00%	Heodo
2020-08-13	invoice IYCO6 654411.doc	doc	56301f606789e94e8da7b88c171cb8e282a451a8c3c719ddd073a2840c9f3976	28.81%	Heodo
2020-08-13	INVOICE-UIUI63-5603107.doc	doc	4bd0be911a687ec4b5a5cbb2e2fefd2756af0764a5360ecdb90bbde1dbd3dfd2	29.51%	Heodo
2020-08-13	INVOICE-WEJ82-311831.doc	doc	52c981dcee0a9c0bc80ec192b453e8af6b01ced6cb3187645687ad0fd1b13221	27.87%	Heodo
2020-08-13	InvOIB74465723.doc	doc	dce7a722033797f2aa2ad0124f254c5b8774adde48fdb0be22e150e8b368588f	26.67%	Heodo
2020-08-13	Invoice-D12-171099.doc	doc	b728f085e0e3133f7083a77948330f193955e186b2e479815f2657baf3802c57	n/a	Heodo
2020-08-13	InvoiceIDR29282705842.doc	doc	3a957d2e54e658d116c346dcaf0dab5ecaec5e60bf7125b32087746f27cbe35f	26.67%	Heodo
2020-08-13	invoice-GIM1265-783901700.doc	doc	b58536809fa841324f6ebd181e66c4e897843b4689a45987ba00691b7c99f35c	25.00%	Heodo
2020-08-13	Invoice-ZGJ168-963615.doc	doc	776396c0aa0fac10eb849a713ca7927a00cd7aa654be032e870fa7cbe3076078	26.67%	Heodo
2020-08-13	Inv-WRUI121-4930509.doc	doc	c6448d3ae149d4be02cc47863725d1c6422455e424cc378cc755ada5109d76c7	26.67%	Heodo
2020-08-13	INVOICE_296_56030769.doc	doc	a9db211b5c0ed36501a165bda0a9c6a4f673bcb350aa5f5b7bfb4a9910f883c0	25.00%	Heodo
2020-08-13	INVOICEDA9858918838.doc	doc	147ff91d2f978f8abd623f6a25e0599903cb53c9a890255e3fcede1cb0fbc8da	25.42%	Heodo
2020-08-13	Invoice-BN3925-9145795.doc	doc	d4f1ca6b7e264ab843f2bf183ff3a4bc306e513e7b5edc1cd49154e8f0e88499	26.67%	Heodo
2020-08-13	InvoiceQRYH892287627534.doc	doc	cdb381f78364b3a519d51aa70490c2a66f26062664a172c82b15f14a70297bb2	25.86%	Heodo
2020-08-13	INVOICE-BWV531-690670.doc	doc	8313a416feea74f1e4555d53dbb6e2c4e7a831c854f7fa38ea8b3815b3bd124a	24.56%	Heodo
2020-08-13	InvH3174521821971.doc	doc	701f6714acc1e2c42435c5ca1c3c5919ec11dcaaebe5791bbea60eab5c8327c5	54.24%	Heodo
2020-08-13	INVOICE-GROW611-0990018.doc	doc	10531f315432369a9c0706bc00ac1405445316044a9ec07b03de6606a6a9f9fb	55.00%	Heodo
2020-08-13	invoice-DSB2-0492342.doc	doc	3d1521d09be3ee5bbbc9968469250a27e97da18cb8dc7ec8bd9d211bdb683830	53.33%	Heodo
2020-08-13	Invoice-EWM3-3640476.doc	doc	e1c720ebaa0f446a16ce18dac61a138b0d4c73a1e59236ae3c91c6cb73da5a1e	n/a	Heodo
2020-08-13	Invoice-PUV6418-610528.doc	doc	bd379f0e0dcc9c8c75d70a99df9f95dc56d70fd92cbf446a21dcb7b22ded59f9	53.33%	Heodo
2020-08-13	Invoice-AH0-110956.doc	doc	97e52709f1f9169fb2a3d0cfc7852f811d067999ed1bdc700c6b66bc7dc23765	52.54%	Heodo
2020-08-13	invoice9556384021.doc	doc	e26bbe184e43c8251aee307aa6d392971f7facdda4ce50f9733a966dc7905ff2	n/a	Heodo
2020-08-12	invoice-YDI9008-366825633.doc	doc	b858572fbe695215c2aa6ade7ada24c980392ad2f5c9e3564d4e6446ef424383	51.67%	Heodo
2020-08-12	Inv SW56 71528644.doc	doc	e412c6a1097b6fdf1492ad40805d0bbb1df005f870085f3fcb57d30552974cdb	48.33%	Heodo
2020-08-12	InvoiceF7339075850.doc	doc	fb474008a44d536948b71f933bfc0289e7779352c43c4d62f0b3dff8f0ae478d	49.15%	Heodo
2020-08-12	INVOICE-0009-41788443.doc	doc	27f5a6d1c03ee22b1c20250a5cf13fc46584715e452dc107d3f7263371a96809	48.33%	Heodo
2020-08-12	invoiceAI15003774249.doc	doc	da25968d18d6c8ddfd6ffa940b4e0bc6809a5b1a224602f196ce7eb107578f88	50.00%	Heodo
2020-08-12	invoice_GC4_332585495.doc	doc	bb323d30961f8a99384ce2c530e33ec24e0c753db29d1aa629e8bc91ae0c1201	49.15%	Heodo
2020-08-12	INVOICE 633 53439069.doc	doc	0c7d085dc88b57e56819a0a9319e1aa089ad9851a0ea21137aab6309395ed039	49.15%	Heodo
2020-08-12	invoice-LXIC22-6880141.doc	doc	6d545c7606e9a323f6b3e35d7352e7e60579a17bd7e063ecba5fa44b239ae931	46.67%	Heodo
2020-08-12	invoice-6598-3051608.doc	doc	14f91992f731d3ada3f75425545f0c7c3315ced9901f504310146165643ce276	50.85%	Heodo
2020-08-12	INVOICE_J28_7415514.doc	doc	42eacf30bc2f17cd5c7fab970199ff08189d908cfdebacb920bbb88c356d92cf	50.00%	Heodo
2020-08-12	INVOICE-P927-7567898.doc	doc	ca9fe1cffea8d057b906d925c71eedaa638e559cddec2d200ed2ff3cf09ef67d	n/a	Heodo
2020-08-12	invoice O1 35926989.doc	doc	cd110e81c2ab80786c6b50fa2f567bd93e1471529d849677f100974715c14621	n/a	Heodo
2020-08-12	invoice475174826.doc	doc	5e184d8704ede4a488ad00aadff4c69488878a947bfa597c985c0fc18a27b67e	43.10%	Heodo
2020-08-12	INVOICE UC1865 94481885.doc	doc	ae4e6ac684f5b88e2165adea2e0df977852b853b20d129fae3d53600eebeca8c	39.34%	Heodo
2020-08-12	Invoice-EN6-868117430.doc	doc	b2699f3cd54b6953a3eb9e1812890cf40563699a96776cfacd8f81288e962e11	31.67%	Heodo
2020-08-12	Inv030676430.doc	doc	d38dd6d1f7f64159fb3a29df7e5c78123b2cae316e479623072837fd852874d8	n/a	Heodo
2020-08-12	INVOICE-REB7-6236790.doc	doc	5acefebbcc9a92b556c6f81e212c7db449fe2692e8877039dd7b6a920f8e5172	31.67%	Heodo
2020-08-12	INVOICEUNFA31435546.doc	doc	439856b7e650b1e0aaf08f0cc6068e5a0a096c029409e92659c4dd84b802eaad	32.20%	Heodo
2020-08-12	invoice SA7285 539058.doc	doc	f3390052891e7cf3c580921e2522e4a8fe5aec87e6c819a16e738ab283ff586b	28.81%	Heodo
2020-08-12	invoice QNFS155 841921059.doc	doc	58e99da90bc92faeff54c3c395483bb8140c2e586cb53ecc349fc87ee90cac23	30.00%	Heodo
2020-08-12	Inv_GXGE982_9563603.doc	doc	9b7eb16f356fc9c07f733b056757d867b513408c22946bb444906da99bcd3ba0	30.00%	Heodo