URLhaus Database

You are currently viewing the URLhaus database entry for http://stratexec.co.za/training/mahz3mkicx/97pr1577695146697asjxht6y5ka2cpodqrl/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	435271
URL:	http://stratexec.co.za/training/mahz3mkicx/97pr1577695146697asjxht6y5ka2cpodqrl/
URL Status:	Offline
Host:	stratexec.co.za
Date added:	2020-08-17 23:48:19 UTC
Last online:	2021-04-28 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-17 23:50:04 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:	8 months, 13 days, 12 hours, 14 minutes (down since 2021-04-28 12:04:24 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-19	149945282398.doc	doc	03c177e560713d7bea35f5f09a80811e163ffd703f9df3f38610095666693630	31.67%	Heodo
2020-08-19	DOC_Z7CWF6QFICCK2V.doc	doc	dec85f1ead815b5c109e7a7e9793a63849fc89f591a2e29a5c266b91280bcf08	23.33%	Heodo
2020-08-19	BAL_YQM_080120_VTM_081920.doc	doc	8d3b2fdc25288364fd65d1dd62308aadc287a87a4dd553b72a6937c088715771	n/a	Heodo
2020-08-19	80599381522496727456.doc	doc	f0a8ac44de88e568c8758ef8d4c1fc77b88d80a19045c8b48676c7f7714cb615	23.33%	Heodo
2020-08-19	PO_08192020EX.doc	doc	293921527da71236ef9e13d2b761e81efe85607ab084b379dd797bc3b6a31218	16.67%	Heodo
2020-08-19	FILE_2AGNSJR.doc	doc	e10fd6b719ccb741ff632f1141214caa698376417f9615419d85d200cff1bf6f	16.67%	Heodo
2020-08-19	G_04776458.doc	doc	3780d20be48fb349faf9fb0fc17e1eb9f3a3060e3d57af2bbd7e20d6b0b4223d	18.33%	Heodo
2020-08-19	INV_GFL2Q8JOPOT.doc	doc	f72a18b5e7cf69423c431ec5aa068b8ff80aaef4050ccb7a64b2e509a231f8c7	45.00%	Heodo
2020-08-18	Z_309479769984371321.doc	doc	db2013508bc3e41f1f93da8cc42b9edcae448ab5eefe05b364e1ce01247dd763	n/a	Heodo
2020-08-18	YZC_080120_ZGD_081920.doc	doc	6132d38c562ce3fd2f815bb85f961fe7be3153f058d6b86f366c69a51f65bbf8	42.37%	Heodo
2020-08-18	FILE_11576041.doc	doc	fe26e82cbd2b5d6687f5b9793748e9e53f958a4c71decf035c8630a50cc24fe7	40.00%	Heodo
2020-08-18	RM_25743191.doc	doc	460a8e4f639b96c10e0094ce3aceeb1f60278284a1d7b27e3b16fd4b76744636	40.98%	Heodo
2020-08-18	BAL_MDARX53IKR.doc	doc	8f113aa3e0e0c6b2e83af971e3675874b5ba848bdb4ddf0be0cf15d8df0a03d3	38.33%	Heodo
2020-08-18	BAL_22370679.doc	doc	a86930bc30ff0b73aa01cbdc19cf0503ba59a676f992f7623d399e1d54e13a56	26.67%	Heodo
2020-08-18	BAL_478782872190675604840707.doc	doc	0017bd312dca6a55a4c8573e1bb88ad991b85da2a1546ba713ccd52f2554132a	23.73%	Heodo
2020-08-18	N_UFR_080120_BCG_081820.doc	doc	d021a79aebe130ed1440dfc99908def9a8947d245ad9f8c9dec7a339adc06135	22.95%	Heodo
2020-08-18	6209613412887913070.doc	doc	92674d8d935ca49cbe4489ad9f6b55bb98697e74750d26bc138edd3c70f214b4	20.00%	Heodo
2020-08-18	INV_PO_08182020EX.doc	doc	3d046766ec30e113966502a639a2055522806959804ab8ccc127a7690caa5456	21.67%	Heodo
2020-08-18	QP_07736680.doc	doc	32e48dcbf4e76c4b36965f707ceeb7d30e379c45840a425af07b91ea27932c06	21.67%	Heodo
2020-08-18	B_AJGA4M3.doc	doc	7976a8188a5d793cdbb85eae76d2bf5dcd550789634815969fd953edefd06bee	n/a	Heodo
2020-08-18	FILE_PSA_080120_NQB_081820.doc	doc	8265ec213eaa6d222c57d0befde6281f1e53f7cbbc3e23df4b0b151921316acc	45.00%	Heodo
2020-08-18	JKM_PO_08182020EX.doc	doc	5fd9d575a13678e66d43f02aa919121a34f26ff8ef42fd2b43a475f1e96a0188	40.98%	Heodo
2020-08-18	JCE_080120_CMI_081820.doc	doc	a9f2dfb969ec4a5c09edfdcf49a041eed112c8ef64c36610131b1ef17118292a	n/a	Heodo
2020-08-17	REP_GFA_080120_LOC_081820.doc	doc	dff1df7c560a8a24caa14cf006d941b7c3d80648923fc99f691cf668706dd683	n/a	Heodo
2020-08-17	BAL_JX7663811820MF.doc	doc	8db1361f62d2104158b5d7ce624e355ff63fa255281de2a93eed9e0a2c523432	43.86%	Heodo