URLhaus Database

You are currently viewing the URLhaus database entry for http://christinekeller.ch/wp-content/uploads/eo4iqgqw-nb3k8-4084/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	432125
URL:	http://christinekeller.ch/wp-content/uploads/eo4iqgqw-nb3k8-4084/
URL Status:	Offline
Host:	christinekeller.ch
Date added:	2020-08-13 16:55:04 UTC
Last online:	2020-08-16 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-13 16:56:02 UTC to abuse{at}netcup[dot]de)
Takedown time:	2 days, 17 hours, 48 minutes (down since 2020-08-16 10:44:43 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-15	INVOICE-EQ884-52637201.doc	doc	b9d2bc9624f1e81b007fd1d89170294eb6eb29c779f83f4e75576a0fa3fa421a	41.38%	Heodo
2020-08-15	Invoice VEV4469 417730049.doc	doc	8166f9d5647da264c416fb5151e8f329302965d5717c6d4210d146fc41acd16a	40.68%	Heodo
2020-08-15	Inv-NOSY94-883477.doc	doc	509ee5a5b60fc1722c36b7285771bd5efbad237f9ca4101fdd4a982b5a3f86e6	40.68%	Heodo
2020-08-15	INVOICE-21-131414.doc	doc	982fda87df85acd7be68a483e75bb74daff74fe842e65b73bf0e5ca086e6a218	41.38%	Heodo
2020-08-15	invoice 538 682036.doc	doc	42f931a37a44c73263e47b0f33039ccb6710707b64b2f18e3cb3cd223fd06df5	41.67%	Heodo
2020-08-15	invoice 044 300791984.doc	doc	55020382e75952a05416d038ce6650f0832de5e4dd5053a82b475f1828b1e761	41.67%	Heodo
2020-08-15	invoice 5 10124223.doc	doc	cebc1f02cb5c7f918e32b0703c5cea992c71ac183a21cbe3033ba9c9521ea186	40.68%	Heodo
2020-08-15	invoice_MYI18_754647.doc	doc	5028de3ce60c62f1e99fcc961491a81d8a3315f89afef5015243cf80d77872fd	40.68%	Heodo
2020-08-15	Invoice_QCBO9_4931632.doc	doc	786999121e626bfe51caeb919834a7203f54369b39681cfd2b71fbd653d25842	37.50%	Heodo
2020-08-15	invoiceJ596367923.doc	doc	f77afce2b8d4472fbcf09e30d3fddb8903ce48eebae03a294d7ca7819c07fdf5	40.68%	Heodo
2020-08-15	INVOICE_SRZX772_699279.doc	doc	0f66bd662c52e3cbc7af5fc1bf2b877c06965a6c276d4ff6ea2dd8aa22273d24	40.68%	Heodo
2020-08-15	invoiceHG601901532.doc	doc	94b9821024615e536b2196b18ad6a0c092e4030cc19a99f35d6cf7637a4a3eaf	40.68%	Heodo
2020-08-15	Invoice OARX8428 245322550.doc	doc	180477b92b3bf7d69b02af387ab42a2ecf08c6acddb52cb5a2de7c8f39ec7f58	40.00%	Heodo
2020-08-15	Inv-752-561843367.doc	doc	3d3319da15a4774593968e93c815aabd17f3ccdd973793e8f372028cf510fbea	39.66%	Heodo
2020-08-15	INVOICEP5680939141.doc	doc	a23d42930b2a24a6264c1a35bba0a4200aa1e839a8c408d5371d3fbc77080337	43.86%	Heodo
2020-08-15	Inv-CTJ5-438936026.doc	doc	c7214b10c8cbeef517f4c966a111017a37e144cad39e215bf93f5632109d4040	40.35%	Heodo
2020-08-15	Invoice_NT832_1146191.doc	doc	608640cc09523824170abe5439a993ab6057204ad82c3c3af46ac0ebcf7cf38d	41.38%	Heodo
2020-08-15	Inv_1214_76215617.doc	doc	bae86b6997572490c22ffc81ad1e24ecce68f3d2124066b202be498fbd9b7d72	41.38%	Heodo
2020-08-15	Invoice-V04-8365499.doc	doc	6f7885a8876fa4d1cbc42c10aba9d34cb52a2965ef6b3927e8fd820da075660b	n/a	Heodo
2020-08-14	Invoice VQA0 529780.doc	doc	7de39bd208f9dc300125b4fd349c4750c501e395b37e3c6a4d2856c516ef30d3	37.29%	Heodo
2020-08-14	invoice 96 88320503.doc	doc	2ae0fb0ffcfdb106a9a9f0e5ca0e092207da05903f4126376ad7f2e153491abb	37.93%	Heodo
2020-08-14	invoice Y629 839317818.doc	doc	b86c240ff73da180f757c89c445ffcabe432f5274d37075086d28f00b41871d4	37.93%	Heodo
2020-08-14	InvAM00333891202.doc	doc	945f6863a44778bca636e7c1076746b4f4fb45cc9e67a455d55ec84b4d3a83c4	38.60%	Heodo
2020-08-14	Inv CY5495 2537002.doc	doc	284869d2f6bf8757c4361deba6f72989a57e8fc84c93be00e7d2e9be8b979d61	n/a	Heodo
2020-08-14	Inv-MG574-672868657.doc	doc	381b2d98cec49e5cfbe0c9363878bf47a35ae5653f0c0d247f15beb869c721b8	38.33%	Heodo
2020-08-14	invoice-R04-466997543.doc	doc	0042b24a00a23de031502f7aa4671cf2256c9097cb7509fcd8cda9fb6435e2c6	38.33%	Heodo
2020-08-14	Invoice_JT7_084557753.doc	doc	95cc5ce9259454f349e823d4c1e4c546a303dacfd17dd01c60af5f9dfb171cb6	36.21%	Heodo
2020-08-14	InvoiceJDQW78814113.doc	doc	f63cf892be860fdaa9344fa756d261c0d729aa1944f58cf75a780cb92b639f4a	37.29%	Heodo
2020-08-14	invoiceQM6803824105.doc	doc	9b4854075266029833675d652902a1baea75b0755d7ebcd141125072d0967b65	38.33%	Heodo
2020-08-14	INVOICE-N8943-4339223.doc	doc	c129af5aef7d314993b58cc7c4a1df79f5550e97f3eb6b9f1d558defa38df88f	30.00%	Heodo
2020-08-14	InvOS4101943080.doc	doc	0b9b57254dd7909e3811cb4909af8975a9206c13f6fb6f2ae5c8f9a2687ff202	30.00%	Heodo
2020-08-14	Invoice39987580158.doc	doc	3d56178779af4f3321a7d6adabc672edb3e9036292191e34bb37d215e19a9f4b	30.00%	Heodo
2020-08-14	Invoice-MHW8245-662242892.doc	doc	ec279b19633a13b9e90f6a0457ab350cb8396c1f88fb9d1275f29de7dd42cd86	29.51%	Heodo
2020-08-14	Invoice-MHW8245-662242892.doc	doc	ec279b19633a13b9e90f6a0457ab350cb8396c1f88fb9d1275f29de7dd42cd86	29.51%	Heodo
2020-08-14	Invoice-6849-36782976.doc	doc	936f0b1c957e1480cdba3c5cefac63730008c19b570d825bd0d6c6de85ca38b2	27.87%	Heodo
2020-08-14	INVOICE-GDO9246-41400708.doc	doc	9d6676d7926e7555e55f55924ee0a8082d62b5b813ac98704090a5a23e7a1775	25.42%	Heodo
2020-08-14	invoice YU33 4766996.doc	doc	4935ab1182453885ea821cc714b1679ae7eeb54bb744fe13f52ad6e954a7f785	25.00%	Heodo
2020-08-14	InvoiceT054442940462.doc	doc	fe58e66ba70c6c395732f2c817dbd2c6454463fc5104633ec022c7d1fac1bed9	25.00%	Heodo
2020-08-14	INVOICE-7-28978549.doc	doc	7dc64cdcabade0fe1b2cccc83c3a256efb0de22bbc1e8b17a072104e393b3b26	25.00%	Heodo
2020-08-14	Inv-TPL83-51995428.doc	doc	f29b2352c27bd3d9fca98d1f168efbbed851c986473a4281bdebadee731653f7	26.23%	Heodo
2020-08-14	Invoice_P6104_205098816.doc	doc	b3ffd34596fe613e60507fc3754eb284d3bdf1968ea939014bb5c3efcdefedae	25.00%	Heodo
2020-08-14	Inv K788 77616380.doc	doc	0bd1c09908f6c09ae5217b631f5041669b722d5961f9471365b074d51d9a7a36	23.73%	Heodo
2020-08-14	Invoice NJ3 974463003.doc	doc	73d4b0a7ca15e61e87a8fe48a88037618e4b4aac3d8a94cf4583f52cbab9bcc1	25.00%	Heodo
2020-08-14	invoice_M27_610992.doc	doc	2a7342691538ac359f25d6ccd05e6b81f64ea3dfb5fe8af5f23eb3f3425a056a	23.73%	Heodo
2020-08-14	Inv-RAR1021-20075325.doc	doc	c8491294ace5a6682e374787541ec78d155b4e288f143a086cb3320328782317	24.59%	Heodo
2020-08-14	Inv QH79 71392106.doc	doc	8aa7b26f53f2ebc1a1678bb6f61704527478b875e9c4947c3193d966f0664efb	23.33%	Heodo
2020-08-14	Invoice-BFKS7586-04160580.doc	doc	99db7baf30cee72146c4791d36d158ca3ed62a58dd3bd57b7bfa60d0f13b08d9	24.59%	Heodo
2020-08-14	Invoice WZ041 576545.doc	doc	27db24afe51c643a809e559c190b96146022ef6d3394b8e990c6eee4bb9846ac	40.68%	Heodo
2020-08-14	Invoice_X99_3330810.doc	doc	fb17807621969c33d345882ad5ae95cd5294c32509e13a6fe8ce1d317a5c3f4d	38.60%	Heodo
2020-08-14	INVOICE QV2 55008059.doc	doc	c32ebf07a4f2324cc33cf6e7c975c375621c519fa654fc27303c9a812293fd7f	39.66%	Heodo
2020-08-14	InvJN6463962.doc	doc	dbc3f242e959a4c3398cc0676dacb940b4253a18f4a2be2d3a1aebb7c1f62d74	38.33%	Heodo
2020-08-14	INVOICE_XN492_827718417.doc	doc	4156fe5a204dbbd2086b1c71f40ced2d03b723dfbbf218927b71ad2b2fb369c6	38.98%	Heodo
2020-08-14	Invoice_6687_7548748.doc	doc	8b725e5a090dcb30815c5df978e72af9a04372b9fda6729678004e9bdd617ce6	38.33%	Heodo
2020-08-14	Invoice-XJ1-3623509.doc	doc	f740ad05fe75e146443ce0776602fc5828a534f28e1e2f34a1d785083de85bd1	38.60%	Heodo
2020-08-14	Inv-0-4628603.doc	doc	ebfd94ac1cb7510d9b3fe2de38c88bb88d64956d0c6eb93aceebee8ea83ac763	37.93%	Heodo
2020-08-14	INVOICE O21 139171.doc	doc	0b134d91d537beab9f4e700b126eb1b43b69c80126818592cef4697fce08263b	37.70%	Heodo
2020-08-14	Invoice 54 9560286.doc	doc	4398bc31070f761b318b30f297d363b006ed9e84c6af0aa45ad140f57e7c1529	38.98%	Heodo
2020-08-14	invoice_UYV9_665190712.doc	doc	532d6be9513e3dea9cfb7040d4e2b0878429f90b84e8c3229ba775ff99dcfbbc	37.29%	Heodo
2020-08-13	Invoice VU8768 164611382.doc	doc	f9d386ef77ac7b75fa5d24fedcf07b054c6e35682826e1a38a6e908dc8c77e10	36.67%	Heodo
2020-08-13	Invoice_LX799_98680488.doc	doc	5631e8cae72c63a40c3b2b7558736633f75b424eff6bad19103ca6d559955528	36.67%	Heodo
2020-08-13	Inv00595871.doc	doc	02002790f4d5801feba9f00836aa82e8762db15f9dbe6f7aa8b7ab84b661c284	35.59%	Heodo
2020-08-13	INVOICE_P9604_73792681.doc	doc	226139f39424aaafeee49dc0a927be5da4a28431b970df629c236c7509680210	35.00%	Heodo
2020-08-13	invoice RDM79 3017562.doc	doc	ab444b6b4e01751a504bcbe5bfafccb6c73c5a8f0a83102badfdfa7f0d061be7	35.00%	Heodo
2020-08-13	Inv_MR421_80581335.doc	doc	5afd28f4c27929a5271720ade77b26422b7596600473f76d9aca778869203bac	36.21%	Heodo
2020-08-13	INVOICEQIFC7985470130124.doc	doc	5068ac1fc3ea1af3eb637bed169df3a72f14ab7db56ff2996f718fbe8c05642e	36.67%	Heodo
2020-08-13	Inv_TVVJ5837_579193198.doc	doc	294443b3b8e68154544b8f501310b598b2925bc108c42f5a30bccfa9598b6782	35.00%	Heodo
2020-08-13	invoice-BWIB957-47585391.doc	doc	bb480394e0201866ae43a5b60c1ec371e3dd37a01e922a8dd5ff68d8cb325f3e	40.00%	Heodo
2020-08-13	invoice-BWIB957-47585391.doc	doc	bb480394e0201866ae43a5b60c1ec371e3dd37a01e922a8dd5ff68d8cb325f3e	40.00%	Heodo
2020-08-13	Invoice O8535 31412446.doc	doc	775c7f80738784b0ea5e971bb618159e93970f0eeef8b80612dde5e1d76c953f	35.00%	Heodo
2020-08-13	Invoice_0_3697099.doc	doc	f9f75e341dcd114ae17fc85df6c1b391df6507a67a519c143bea0010ea93f59b	31.67%	Heodo