URLhaus Database

You are currently viewing the URLhaus database entry for http://www.ab-swisspro.com/wp-content/FILE/4xlpepuf/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	432013
URL:	http://www.ab-swisspro.com/wp-content/FILE/4xlpepuf/
URL Status:	Offline
Host:	www.ab-swisspro.com
Date added:	2020-08-13 14:34:11 UTC
Last online:	2020-08-15 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-08-13 14:36:06 UTC to abuse{at}staff[dot]aruba[dot]it)
Takedown time:	2 days, 0 hours, 26 minutes (down since 2020-08-15 15:02:56 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-15	UXH_4Q7ES6HFTWHOLWBC.doc	doc	55f8854dbcaa2832aa10f768c129ab27544b5b153c7e4ea008f7ae9444681eec	44.83%	Heodo
2020-08-15	XEH_080120_GFR_081520.doc	doc	4519aeb43efa936084622c8f8242eb04c7431ed323c6d40f41cf43b0cc8ae6bf	43.33%	Heodo
2020-08-15	WV_79572738.doc	doc	72af635d51194d2ab428924c2c7f51aa4a9d040e93566ed7302ed43f5fa16eed	38.98%	Heodo
2020-08-15	DOC_PO_08152020EX.doc	doc	59931fc10797afb244cd5fad842662e6195c228946e63c010c8d619147c57a21	40.68%	Heodo
2020-08-15	VC8369440296EW.doc	doc	ee97f9a6d45b17138a70dd059c12b950dc5cfd7ea2ea195a0174e656506608c9	41.38%	Heodo
2020-08-15	BAL_93457806.doc	doc	efaf2ad634e680575e71775d7e7081272a70e9d96a70a2da8691a0e4e95f21ae	41.38%	Heodo
2020-08-15	FILE_HPX_080120_IEX_081520.doc	doc	bcac38ffbb51d86e6aee3890c75a867b75b2e54ee530fa7fc6a23be61e53a0a7	n/a	Heodo
2020-08-15	FILE_80447828.doc	doc	15f3fb6dfa920996f70baeb95d6a459700a4d0822b25ec3ea7a37ea056b76977	38.98%	Heodo
2020-08-15	DOC_CY1F7AO7S.doc	doc	39305c6dbc4d4612cfc18efe4df05ca5898cd752b92635429f393159a7734448	40.35%	Heodo
2020-08-15	VFIC_PO_08152020EX.doc	doc	df46f526192787058b497745baa89076f7a146abf7904a166ff3c88913d6fe8d	42.37%	Heodo
2020-08-15	INV_77981443063340.doc	doc	0d12b5e9f5f5999ef15565f91ef3a2e631ca0a35c8747a808a542b2a8d8100b2	42.11%	Heodo
2020-08-15	REP_EQRRZ4O9M8.doc	doc	5cf289830a79e1608f952fbb47868d1791f30a61fca435f7f76c5bd33b623451	40.35%	Heodo
2020-08-15	27600806.doc	doc	0d3465f8f227108fdc7caadec5319a2f0b0309acaf36286e782a5dd70ba7105f	41.38%	Heodo
2020-08-15	FILE_PVO_080120_WJG_081520.doc	doc	2fabcc2eb662a103f6fb0067a2d8f0b522149acda448296223c7fe79bdc2e2ea	41.38%	Heodo
2020-08-15	PO_08152020EX.doc	doc	2052c0368adb81017535da7aa5dae9846fb5cdd1ad7b3dc089d9c2b7152608bb	40.68%	Heodo
2020-08-15	PO_08152020EX.doc	doc	2b1defff772c7e6448125be396c10f7b34b8bbe01d902999824e216358a78338	41.38%	Heodo
2020-08-15	LDLA_DM5128171692EE.doc	doc	2282676dff6e201e68e1817f507dbb2f5ecbeb498367e7aada3916d32e89511d	41.67%	Heodo
2020-08-14	GTE4E1QK.doc	doc	75a72a41ab01b2732ce7d72f8099772cfa9eeffd6de415ac468e8f979c38d466	40.68%	Heodo
2020-08-14	INV_PO_08152020EX.doc	doc	b7a5233a4bac135e1d7b9c85e89cf9140cee08cfedd72993f82513c8ae8d7c3e	38.60%	Heodo
2020-08-14	FILE_PO_08142020EX.doc	doc	66516549d3f5fb3f943ccfb801d21236517f2a4a58b1a5ecfc3740fbcfbed54a	39.66%	Heodo
2020-08-14	51470395.doc	doc	4a4029474014846a17463695f4af7917f8fc4fd250f36e96bcc1964d4bce93d0	38.98%	Heodo
2020-08-14	DOC_VJ4216602351EZ.doc	doc	38235cb975b312112bd08a47637b30afe5469285d7ea70c0bf8ea221ec74cab0	38.89%	Heodo
2020-08-14	1608221483084675009177.doc	doc	b118fd8dcf97cf570ff2c1e3640e17e7fe7bd4f73b7ec79f4aac13d6b1fcca19	40.68%	Heodo
2020-08-14	BAL_911625454821878180367.doc	doc	bd8ae2a2434e7741a6684687008dd2c59815c3dc6a31a3639493405e82a5cc8e	37.29%	Heodo
2020-08-14	EXC_080120_NNB_081420.doc	doc	0a55fe7bd5ed193a8326b31f8065bd2c338661bdfdd0edd35ade2f95e156a2e2	33.33%	Heodo
2020-08-14	7121167318051.doc	doc	89b7f9eec5a1813a68b6f7e012bc92e08a67aac56b1c9bdd1d8c1d707ff0de19	32.20%	Heodo
2020-08-14	DOC_835044656838836786207.doc	doc	64ba6f5e621c011742a0ca7ba63a9416866e59ac3eb1aabaa6b355e2be4d11ff	29.51%	Heodo
2020-08-14	INV_PO_08142020EX.doc	doc	38c8a47d1d9798b4da56d1a354bb62681c1e7e32c0e8665ef84cf88e8b4eae21	23.33%	Heodo
2020-08-14	FILE_71F1CKKSNHUX.doc	doc	60c6203d9b7a2178fb3f76f12d896c8191aaef13c55973e5a177df215181683d	23.33%	Heodo
2020-08-14	INV_CVX_080120_VBI_081420.doc	doc	24798df3b8b05d774f455725548251d62206a0f8498f29914f75dd7086d28389	23.33%	Heodo
2020-08-14	32781065.doc	doc	2ba31bcf0605c3fb50f7855062c192023371778e906ddbc8f2f9c8812d07a2a0	23.33%	Heodo
2020-08-14	Z_45356930.doc	doc	52dfa2ae84a796728c42db4f98cf77d399ec18ebd3e7a3876add7ca5443107b0	23.33%	Heodo
2020-08-14	KV_909UNH2MU6FAMW.doc	doc	b0b09674fd6c7ffa1209810a9a25a67ca712daa394c546944b8724019f7ec4c9	23.33%	Heodo
2020-08-14	INV_PO_08142020EX.doc	doc	92386e2f315d649c3565cbcd1df211f967b66594ff68453608b6125236b55a53	n/a	Heodo
2020-08-14	REP_28165482.doc	doc	fed5ef0471ce8aadd6f39707a21f2f164b997ff30ddb925d8c29ebac3848f67b	n/a	Heodo
2020-08-14	98926813.doc	doc	33fbdc20f3885a3d8af503c38d711e04b952263269a898c8d6cccb5cf7b352df	24.56%	Heodo
2020-08-14	DOC_15380055.doc	doc	f92c670905c9b92334b90a5f812306d265e6e9e54c7b4ad16847d5c6234cb670	36.67%	Heodo
2020-08-14	REP_XGF2DMLJVR2UV.doc	doc	9d8cb204b05c50b29d5686326f0332cfa34a339234c12d448aa14d010d0a41d6	36.21%	Heodo
2020-08-14	E81MI9VU94TNYBHJ.doc	doc	0928f7c9c557d9e232052edc5377f9986651f02861f1f90ae67a9bcdf3caa375	36.67%	Heodo
2020-08-14	BAL_GWY_080120_DFV_081420.doc	doc	ac72c66d611118545906b5f23ba3aa32a7dcf91eb2f2f41c1476afea66ad21fa	36.84%	Heodo
2020-08-14	OLNAITLHU.doc	doc	6ab2c399c8174e97809e728dc331f229df5e7d30dba04a5b1658ff245c45a657	35.59%	Heodo
2020-08-14	PO_08142020EX.doc	doc	13425d91c0471208df6a06b23e5f176fea8637422e82c95f1ecd534aadda855b	36.07%	Heodo
2020-08-14	REP_DI9214401410JP.doc	doc	d14b37fdf7ad86b3794264b6df4bfd7efbfd5ae07b03e72a800be6d16ec8aa83	35.00%	Heodo
2020-08-14	ZJX_PO_08142020EX.doc	doc	d4fade764b1ae03f546843ff7b67176a1d7fca0c1cad66455d0770c364b5746e	35.00%	Heodo
2020-08-13	X_PO_08142020EX.doc	doc	ae61420aebc07da884917752dcdac62809ccd7a3eb2ed470a3b6c810e7635adf	n/a	Heodo
2020-08-13	GOZVWB42ZFJC00.doc	doc	34aed4bb09915606f5373f0d72261b384fe3d85fcde9b3c716ac00967158ec77	n/a	Heodo
2020-08-13	FX0276791147OJ.doc	doc	40fa25d14444c5f0471cb5e33a8397ec008ad42615aefa558366173602afc62b	38.33%	Heodo
2020-08-13	FILE_PO_08132020EX.doc	doc	0f56c76a4c47767ff9ff3f8a9fdc37edabf5d585992ab218eec6d39627dee63d	n/a	Heodo
2020-08-13	REP_UFC_080120_TOV_081320.doc	doc	181c8cee3b6463be02aa4dcfbcdecf6a495a03e0692a379e34467dd0ed5a6fdb	n/a	Heodo
2020-08-13	FILE_79737687.doc	doc	92b38ca67d00bffc28647167730cef8ea6123542c4123464f1c565e59186b871	n/a	Heodo
2020-08-13	BAL_PO_08132020EX.doc	doc	b8c7112d2672445960d4ca69da612b07b761b5119015c0dc4e75064b85978ff0	36.67%	Heodo
2020-08-13	BAL_SVGOGTPT1P7ZK5.doc	doc	ea4ab11724bb19ff8c0451069a27cfc6b2de7b7ad0254edd07f3036c265a066f	35.00%	Heodo
2020-08-13	BAL_SVGOGTPT1P7ZK5.doc	doc	ea4ab11724bb19ff8c0451069a27cfc6b2de7b7ad0254edd07f3036c265a066f	35.00%	Heodo
2020-08-13	BAL_ALW_080120_DUN_081320.doc	doc	5315b4a4c2af17341c0999eec4aa1582449c04828caa9b53e17e482b943be988	n/a	Heodo
2020-08-13	S07FTKPOAU.doc	doc	0532eadbdda96ceadb7250d379491c1bb64d6d40b96bc71d551268896fd4bdd6	28.33%	Heodo
2020-08-13	MY_PO_08132020EX.doc	doc	8a0a74b31fb30ce1a4adbaa3945c4186c7d467268e76b9ca802905b7cf5fa54e	29.51%	Heodo
2020-08-13	PO_08132020EX.doc	doc	479e00f4a39c727821fabea3c681e051bf755f4eb4c10e62f23055ca7f4a9353	n/a	Heodo
2020-08-13	UTU_2197862229872989381890.doc	doc	9c4b90d3c6366d048bac579a06083e0c8cc405997c19ade21c0dd68010b5b0f6	30.00%	Heodo