URLhaus Database

You are currently viewing the URLhaus database entry for http://eyupoglumedya.com/blog/parts_service/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	432247
URL:	http://eyupoglumedya.com/blog/parts_service/
URL Status:	Offline
Host:	eyupoglumedya.com
Date added:	2020-08-13 18:11:49 UTC
Last online:	2020-08-27 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-13 18:12:02 UTC to abuse{at}ni[dot]net[dot]tr)
Takedown time:	13 days, 17 hours, 21 minutes (down since 2020-08-27 11:33:04 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-14	BAL_PO_08142020EX.doc	doc	2958931d81ad10eb95bb3fca9457a800e9b4a9459d2727f30cb5d49d7bed0527	24.59%	Heodo
2020-08-14	REP_FCEFIBI9TSPP2W.doc	doc	38c8a47d1d9798b4da56d1a354bb62681c1e7e32c0e8665ef84cf88e8b4eae21	23.33%	Heodo
2020-08-14	REP_PO_08142020EX.doc	doc	73cad6ba26fb0aa184d10e24cfdbed4498c47ef40ef010ed07ae719fc7b6b2d4	23.73%	Heodo
2020-08-14	16546333.doc	doc	79cd7f136cc0a61a98a896ade45d1aa6746869461a7524b0abcdb743ff8a454e	23.33%	Heodo
2020-08-14	J_XYI_080120_RYB_081420.doc	doc	3949030f76ff6b3522aa805a451313ab179bd113f785e3a2ec1fc1d474619708	24.59%	Heodo
2020-08-14	PO_08142020EX.doc	doc	ef7ca96ffe6ec90acb92e8c9643a98c30154a996cbaf90a2d7f3a4a2dd6e1108	23.33%	Heodo
2020-08-14	FILE_198881399738780418099.doc	doc	2ba31bcf0605c3fb50f7855062c192023371778e906ddbc8f2f9c8812d07a2a0	23.33%	Heodo
2020-08-14	68088777.doc	doc	faa4c872e4e08e1146cc849b5a9f4302d22a6a7b88f28c20d267b44d7d6b0c5c	23.33%	Heodo
2020-08-14	DOC_86736513.doc	doc	52dfa2ae84a796728c42db4f98cf77d399ec18ebd3e7a3876add7ca5443107b0	23.33%	Heodo
2020-08-14	BAL_PO_08142020EX.doc	doc	1b566e47879307c36ab6864f6877fbdf8128ab937cd837fe3050b24c7958c673	22.95%	Heodo
2020-08-14	6542490124035238430288822.doc	doc	ce9ff1845b08d7610cd9a181ced3676fc04452e4d019ef14a48d59634b45cff1	23.73%	Heodo
2020-08-14	REP_ZK6980934876WT.doc	doc	43c592e78307702281f1105969aad4a99aed3a1cd8b87965c1724b3e0e2f08de	n/a	Heodo
2020-08-14	Z_PS4KZ8EFRC0DPV.doc	doc	c6b7c7bfc887108475b13843c34397ce838e4338a8ced72d8b58d478631d3ff3	n/a	Heodo
2020-08-14	BAL_PO_08142020EX.doc	doc	4c07030c48ddd9cdd9c6d7e1de08af7b2498d2ca7e8edc75ea8ca09b53238cd0	23.33%	Heodo
2020-08-14	I_ZSC_080120_GLD_081420.doc	doc	184f481ac2e0638a5f29787df5ef317f15c5b1509de96eaef3f949c86c2f8b78	23.73%	Heodo
2020-08-14	DOC_NMM_080120_TLF_081420.doc	doc	1cb2882cd1b3a5d7abcbe3d76caae33bb609753651c611bb27d19f740f26fc8b	36.67%	Heodo
2020-08-14	48769967.doc	doc	0f80316b76262700a25c47fc972ed9f77b1d2f997f7d8f4f2dc7c00a2c59eca5	37.29%	Heodo
2020-08-14	UXOC_37591299293.doc	doc	8217ef5454225881de094f60ccb5714c9d729406c576bcf59c4e61904022b289	35.00%	Heodo
2020-08-14	J_9I2G4BR3CLMSC7F1.doc	doc	fa4a4908d530908c1e687ff784931d3e57af14fe24494b625e45f1f0387a8528	35.59%	Heodo
2020-08-14	REP_95200868.doc	doc	8c1068585407f5f88829c4f57a246305ddd51450ef74893d81cc738604e9cb3e	36.07%	Heodo
2020-08-14	KR5691300677VC.doc	doc	fb7a412b04631d97dd0997790d131551a8a9538f20413aa9d4d76664ad2d4d15	37.70%	Heodo
2020-08-14	FILE_63351543.doc	doc	ac72c66d611118545906b5f23ba3aa32a7dcf91eb2f2f41c1476afea66ad21fa	36.84%	Heodo
2020-08-14	FILE_D8CTE9MW81ZZFQ9.doc	doc	5b9c77e173da67ad419ce7c2c1264bd51647f242339265f6ea7a2af57ddd8f5a	36.67%	Heodo
2020-08-14	INV_50071016.doc	doc	13425d91c0471208df6a06b23e5f176fea8637422e82c95f1ecd534aadda855b	36.07%	Heodo
2020-08-14	REP_PO_08142020EX.doc	doc	28bc4f423b833b0fadccb2de2327be63041318014cf1ae1e1dc1941010322f53	35.59%	Heodo
2020-08-14	BAL_GPW7BBDY6IXYMU6.doc	doc	d4fade764b1ae03f546843ff7b67176a1d7fca0c1cad66455d0770c364b5746e	35.00%	Heodo
2020-08-13	S7B9TH2.doc	doc	ae007fe87d30f9b482a9a7525e1ccd6b8a482bd23635156170ae371339d27341	36.07%	Heodo
2020-08-13	DOC_PO_08142020EX.doc	doc	668487ec145e75676c1a4fd6e0828331c412f7fe35709a3deb6d182debad6422	37.70%	Heodo
2020-08-13	473664681086445812563.doc	doc	0ed266508f694702f6337f375bc70e94eb3c5397bbf5e4fddf1d319a751544db	38.33%	Heodo
2020-08-13	REP_9Q4285SP2P.doc	doc	04df573ac90a418093676f7b715b938c6ed9367b845d3ef5e4e1ae4f51ced816	36.67%	Heodo
2020-08-13	PG_YE6771936494XK.doc	doc	f0e83e09fe7f05e06f70b1e8e13f26adda64a1872f9104b340bfe870d9e27011	38.33%	Heodo
2020-08-13	LR_WP3991673124QB.doc	doc	40fa25d14444c5f0471cb5e33a8397ec008ad42615aefa558366173602afc62b	38.33%	Heodo
2020-08-13	C_FNTL0MN8PA.doc	doc	9b6d833972d18927b686656be4ce748c8824166731d940152534142ce2647caf	36.67%	Heodo
2020-08-13	FILE_TPN_080120_WXQ_081320.doc	doc	9be561c7cf40dc53dbba36e51b0787a5dfb2c43000b0c5915df93ec5ef170687	n/a	Heodo
2020-08-13	00JM1GH7CN7O.doc	doc	b4a759ab982ab288dd6ab871610df205148b10cf4305cd15be190ceb1370e330	38.33%	Heodo
2020-08-13	REP_DU2RBH90SK27ZM2.doc	doc	f153d1cd2401db480ab764a78b8a1928c558755e34f37ecc8ece84b1f14e6964	36.67%	Heodo
2020-08-13	FILE_30636290.doc	doc	bbbfae57148d4ae3803142303babc3d2fcb182194f9112aaa34b6f4978e8e0ee	n/a	Heodo
2020-08-13	BAL_49892016.doc	doc	3f54dbc7d7efc9342ac4ae143a7e38bb8d4138d9106817ab2f5ae7ac6b95f277	36.07%	Heodo