URLhaus Database

You are currently viewing the URLhaus database entry for https://nadgt.com/wp-includes/sites/f168476253264030na43r8xgngcomdt/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:435659
URL: https://nadgt.com/wp-includes/sites/f168476253264030na43r8xgngcomdt/
URL Status:Offline
Host: nadgt.com
Date added:2020-08-18 13:34:09 UTC
Last online:2020-08-21 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?):mail Yes (Ticket DCU002873764 created on 2020-08-18 13:36:06 UTC)
Takedown time:3 days, 4 hours, 14 minutes Bad (down since 2020-08-21 17:50:47 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-20RT_66845195777913625.docdoc f2c11a8f3f6306050420e37c8c1c24cfde3ca7e03cb703761581c1e5f6f75757Virustotal results 23.73%Heodo
2020-08-20REP_N21H4IVQSZJRG.docdoc 62aaaf61f90d1c3f0c657fb7c0698dc7e72492a3e762c2161612a93b9ffe2aa1Virustotal results 23.73%Heodo
2020-08-20FILE_1W2TQB3IFIU6AWU.docdoc 9e432563d511818ca16124abe249e618b489ddade2dcbcdb516aaa1d5ca4613aVirustotal results 24.14%Heodo
2020-08-20PO_08202020EX.docdoc 66adaecff904f859044c0d2aacc5bf77afc7928a3827c0e75dda7e79c0c29601Virustotal results 22.03%Heodo
2020-08-20INV_AU3561650705NG.docdoc 73bfcb9214b001594d3b0d3cc9c11c8ae9b0c2f57e4b75b8772cdad41a7e3c28Virustotal results 22.03%Heodo
2020-08-20BAL_06062672040891497318.docdoc 3bcb63d0b349e26c119eeb26b941a86d8d7eca8fd7912c82d45754a3ee5fbaf2Virustotal results 20.00%Heodo
2020-08-20FILE_PO_08202020EX.docdoc 65bd1b927dcce32a7171cec9e1e26732660728495e44d5f85a73f898aa2186d6Virustotal results 20.34%Heodo
2020-08-20REP_58791380.docdoc 9f32a654f894dafb884f98c4e30ab391b1fe3f15478273bedd8397903990c781Virustotal results 20.69%Heodo
2020-08-20JB_IOU_080120_GXI_082020.docdoc bfdf3c9957775bcbc77fd32ca103eb77c0d7ce345a27bde62c3347647ad94a06Virustotal results 19.67%Heodo
2020-08-2098048261.docdoc cc9254149ac0a5f25e859e00fd4ae509b05a23e42d49708d4c0a15e4628b1c66Virustotal results 20.69%Heodo
2020-08-20QD1706199296TO.docdoc ffcb336fb1265e56e3ab3a0a1fd778031732ce4193fd6695ccb644e914feae92Virustotal results 18.64%Heodo
2020-08-2096370801.docdoc 6e647b837da2262825372b4fb5ccf78f780e467cdcc593c348153bd1619dbf86Virustotal results 44.26%Heodo
2020-08-20BAL_EQ0159914592HY.docdoc 66a403efd8393bccf77c5569e565832eff2be778707554b35b78be859b2af41eVirustotal results 42.37%Heodo
2020-08-20D_85551492.docdoc b1a3a3654d76f8eeaf84cff925c62e4f349407617da64a11c91b03851f5cf209Virustotal results 40.68%Heodo
2020-08-20QNY_080120_VUD_082020.docdoc 77dc94d7a2eb1a8f1f2875ee18a8115333a3c2ab0f0455d8cd46b952f93809b8Virustotal results 40.68%Heodo
2020-08-20VDQ_0567966444.docdoc be4d090fe53cdad0fd9dcb56ac3cde1af3c9ad19d5e1a8976a02b154d2d9940eVirustotal results 40.68%Heodo
2020-08-20B_ZKB_080120_EFK_082020.docdoc 6caf84cf6a6cadcdf4aa5f45a9f87b63c16cdf6486f53279c0ce48676edfc142Virustotal results 41.67%Heodo
2020-08-20BAL_2RKZ4I704.docdoc c5efc23a6bc4da1660b4c6c3b4755581990f7c00591cfdce1350df652c03a3f6Virustotal results 40.68%Heodo
2020-08-20PO_08202020EX.docdoc 28a20d1749e1a04f9f1a3b039848a6bbea1a51f656aed41cc4dc53d7f5b0244dVirustotal results 40.68%Heodo
2020-08-20REP_BNS_080120_GMT_082020.docdoc 29524d934f54a27deecaedd3e58de8a4490eddc04ac913bcb37c3ca1354c5b06Virustotal results 38.33%Heodo
2020-08-20BR_PO_08202020EX.docdoc fd5697cbe13a39316aa3bb5a556294913f66b029ece0dfa4c3dcfb9f8fee28e5Virustotal results 38.33%Heodo
2020-08-20FILE_JQZ_080120_YDN_082020.docdoc eeb0a1417b5106cfb471ec4c6404b1acaeee3e4acfd04ae2748adee4ed69812dVirustotal results 37.29%Heodo
2020-08-20T_MDN_080120_KYP_082020.docdoc 275e276c98e61d33c2852f27d543c9cda4212aa16383e36b2e3651a28070a8fcn/aHeodo
2020-08-2077837566309318119442522.docdoc 60bb16533f938460519528657d8b785485622e3471330a87fa5894fed506eed8Virustotal results 38.33%Heodo
2020-08-20PO_08202020EX.docdoc 5debb0401a79585a656197d49e148048a7c7db909c234ae80dd84798e89663cfn/aHeodo
2020-08-20PO_08202020EX.docdoc 792bded71968e33329fb0d1e6dcde690bcaf112c642d1aeb8842680f35c9c7b4Virustotal results 37.29%Heodo
2020-08-20GOQ_080120_SBJ_082020.docdoc be8b2b9dcb90fbaed4e7bc6186fd5dbad93c77fd80cee44717c88ac07641368an/aHeodo
2020-08-20FILE_PO_08202020EX.docdoc 96f7d13cfc1edad4f9381ae98cab2336d39557b2230d88583c92284d6616b4e5Virustotal results 38.33%Heodo
2020-08-20REP_BCOKBDD4T.docdoc f49f483de9c2f5fc441b529eaa889631aa5a272206dfdca519993427403f65e9n/aHeodo
2020-08-19DOC_XLI_080120_IKH_082020.docdoc 5bbab5eced851e6bd35aa4ddd992a84f707bbd76ce0850920c5a5bd21378b61dVirustotal results 37.29%Heodo
2020-08-19DOC_GQ320B190.docdoc 06212a633940e412d08fe257dc44e835d74a44b32a8792643dbc963f5002005aVirustotal results 30.00%Heodo
2020-08-19CH3405244613OC.docdoc ee0c184cdb3791d36a47a1d945aab42379266c4cc4ea6cd88c316ace9deb8826Virustotal results 28.33%Heodo
2020-08-19775550657059373.docdoc aa9937aa317d1d2b03ce14571abc16492ed802b9724388593e7b05295304d1e3Virustotal results 26.67%Heodo
2020-08-19B_82875656.docdoc 063b886950d14cfd765fafcd552629e1c87c3c1d0b03cc4a794e8c02dd34db42Virustotal results 16.95%Heodo
2020-08-19FILE_74811565.docdoc e11c5acfd7962cbfc0d24bd96833b535c52e148b42d4181feae6ea497f2fc228Virustotal results 16.67%Heodo
2020-08-1974636489.docdoc 249d09495f8a48b2afa8c8ee4d0d0dd82905f53396e8026eb04a6db756d73593n/aHeodo
2020-08-19INV_28267825.docdoc 080538677c76d09277a58f1dc9be3e5df254a92d12fddc11326c1f896cd93a98Virustotal results 17.24%Heodo
2020-08-19REP_4RTUDSPMLF4ZH4L.docdoc 7feab4f1f35adcc7433afdbf4448e5b79996fbe150dfe6e0f708a6c13ce86f7bVirustotal results 23.33%Heodo
2020-08-19PO_08192020EX.docdoc 8be59997575735dc3845990047094781b5e69f074f5b6569e6e1dcea50f08693Virustotal results 23.33%Heodo
2020-08-19BAL_PO_08192020EX.docdoc 50260ee06d348c3d5c3830b2f828e96107107b0577e81ce93d8abb8c6780d076Virustotal results 22.03%Heodo
2020-08-19DOC_PO_08192020EX.docdoc 46cb2c80369e51c136820b6399d03f8a87dd7aa339a95f24dbdb88c2d4628adcVirustotal results 22.03%Heodo
2020-08-19REP_38124615.docdoc 783974bc2743d417a2df0a73eaf9e83ebf04435f67741f711a498effe3997894Virustotal results 22.03%Heodo
2020-08-19FILE_CSA_080120_BVP_081920.docdoc b4319c87f6557ca9768ff78abfa16c323c6ed7de149f3f741c390bfd70cfb22bn/aHeodo
2020-08-190V8EKBC6F4NKF9.docdoc 0d9522e1c5d18866b466aa9d28546adc56ea56f6d821fdda5ab77b1285b9e0d8Virustotal results 23.33%Heodo
2020-08-19ITW_KO5935373533OC.docdoc 009691eac43a379cfb16af76765628fa7b5edd661f15269473810499069e0703n/aHeodo
2020-08-19N_PO_08192020EX.docdoc 76b5b8d527359fb1183fc7e4e4eb0dc5369aa0126843b1ec8d04f73c658e0b15n/aHeodo
2020-08-19FILE_5JQ86WI5ID5FGBZB.docdoc 6e24d40dd2ab39e102c07369124f050fc0b0f2c103fc5acd2fcf280d8048b1bbVirustotal results 18.64%Heodo
2020-08-19444682764282051.docdoc 77834d629af8b45f85ec232e03fab3cf97e78e448b23fe48bc93ad6a391f3c90n/aHeodo
2020-08-19REP_RZ4822880875YU.docdoc 2065474363cd9df4a104d020800f2f1523e4cdbb0602b68434bb6cf61b62398dVirustotal results 16.67%Heodo
2020-08-19N_CXZ_080120_YDT_081920.docdoc 75bc73ac1deba195db4e0a8b56ce1501cd81daf19193a105f150e06e5af53cd1Virustotal results 16.95%Heodo
2020-08-19BAL_40VZKTBO2PC08Q.docdoc 3ae29b3f7f29f20ad0073a44572a88b7aafe19da62e0a8d8d8a04213945f0e80Virustotal results 16.39%Heodo
2020-08-19DOC_PO_08192020EX.docdoc 8fa3388c004c72bc132d2ae9af6e47729f3e30ec0337e69115fbf3b2d2b4260cn/aHeodo
2020-08-19BAL_90713621.docdoc bc5f7faf4b9266301e7e8bd3f6ad494c0b34e984278b3a484c6c46d845d9a28fVirustotal results 16.67%Heodo
2020-08-19GVMTTI3B7GWKLX42.docdoc ee7fba4103591bdb24625094a6325f7d1bc7371f7e5a4c119cdcfe56a88ec967n/aHeodo
2020-08-19PO_08192020EX.docdoc 1b110485a730140a1499cfb4e0313b280748117cd1f41699438e6e103af73ea7n/aHeodo
2020-08-19INV_WBR_080120_SWD_081920.docdoc c3f0d0d594a74f097907231612a0cd0da8c75160a2ae1064a3744ecdea407986Virustotal results 15.00%Heodo
2020-08-19Q81A4NAZJV.docdoc c6c4ba6bead64d98f91dca8dbc28c67ee9be3a3c5b9de2e50dd98c7c11349cb0n/aHeodo
2020-08-19GG6649435913RW.docdoc 75053be7f5d07337ba28d4d9fed63933fdd33feda824f8adb8587e4b4829caf5n/aHeodo
2020-08-19INV_90204035.docdoc a7f7da45bf54c26cc2fce4e3c3a639209f7701cad6339b69b3980224423d2d7bVirustotal results 16.67%Heodo
2020-08-19PO_08192020EX.docdoc e1ad58fc89b2089ce1478cd296d226c1152315a2b047c86d84819160061e1dceVirustotal results 16.95%Heodo
2020-08-19FILE_02665103.docdoc 25155c0bdbb328c6e4d68df35320b627b978d287c658085bc03617601fff804bVirustotal results 16.67%Heodo
2020-08-19IX_72849126792120.docdoc a870134516045438396843914d05ac0216cddc2cf87cd1d9b40e275ae4f572afn/aHeodo
2020-08-19FILE_093767513964858.docdoc 1cebaf9cbe29d2c61ad56dca8d497607287435c75f9585dd3288fb0a7e0c73ebVirustotal results 18.97%Heodo
2020-08-19REP_WNB_080120_OND_081920.docdoc e7801b2180c3386d049135af6b5e4ad14c56a7a6eda2cf87dcf474e3ce9c4e39Virustotal results 18.87%Heodo
2020-08-1932325018617316.docdoc a89f4a0e07aed6f0db5226aa6c45eca8e232db1686eaaf99f163acf0eb849c37Virustotal results 18.33%Heodo
2020-08-19CZ0267170039DT.docdoc 9900bbaaeda76430a6fb110081e9f12168cb7f2a537020f1858cf84c5c45b81dn/aHeodo
2020-08-19LAUH_PO_08192020EX.docdoc bb8f4400df61e199e8f1c8bf7bc8f4409d7ad9eae9af6cc6ce8ae32bcb99be8bVirustotal results 18.64%Heodo
2020-08-19FILE_20143424.docdoc 8f9d37fa58ce7df58a90fc82d80da4ff63b634a0dc855729e1c18e7bd66f7872Virustotal results 19.67%Heodo
2020-08-1954738885715.docdoc e7b5571f8fcba096c1240aec4d940d600588432e00c3f22504711fc6b240f8bfn/aHeodo
2020-08-19Q_76876329.docdoc cbcffeaf57dc69c22c4c1f6eaa6b2102c764aa8b0080b466aa95969f3c0283e1Virustotal results 18.64%Heodo
2020-08-19VFT_080120_IVF_081920.docdoc dac9381a81d9d239f2a341b839cdcd469921f650f74da24535abe92d78951118Virustotal results 43.86%Heodo
2020-08-19DOC_UXJ_080120_RRW_081920.docdoc a1b39bb8e04288328a8785f48219abb0b12a2a6330e2192973405a2bf6682644Virustotal results 46.67%Heodo
2020-08-19LNT_080120_JSM_081920.docdoc a3773aee947b0fdf4bb4d2a48777f6e8e4a83beb62f033efffbb0b487bef2e8fVirustotal results 48.28%Heodo
2020-08-19PO_08192020EX.docdoc 9300711f5a35bc33dab0314d010f858ea9385b9b41b60e8db605a367ee901d57Virustotal results 48.21%Heodo
2020-08-1983532381.docdoc 882600fee7e0ea4b30699f07b2c5237c9cb80b2ed0bdd471d055f7b450565272Virustotal results 46.67%Heodo
2020-08-19FHIXI18TM.docdoc 1e5fdb496c17dd55dfc3e32231d286de4334d59bcc313b939202c4f8ae2abecaVirustotal results 46.67%Heodo
2020-08-19FILE_NYQ_080120_MKU_081920.docdoc db532f530a3c0922c028cff817afb07a9e082ec260a37750a8af82739e8e8ba8Virustotal results 46.67%Heodo
2020-08-19KO_NY7333538344JL.docdoc 2efc148d28ccc7f78e2f598072e171cb43bd6703a0be1abc612c36f1420ec1d0Virustotal results 46.55%Heodo
2020-08-19BAL_7A7KB1V24IOE.docdoc ade0c61c5a90ff1c6aa1b54b0f5d9e29382b98feb206f3b170724aa6e34cb389Virustotal results 46.67%Heodo
2020-08-19FILE_318933905555.docdoc 77da6b15c6aba0dd430e50f7372588fa39691b2cdd9f90f3d71a36445b59f30cVirustotal results 44.07%Heodo
2020-08-19DOC_94633874.docdoc fbf8375b991d64aa1173b7a2d5792b19bdc39b63df4d483e9ac99f47157f3446Virustotal results 48.21%Heodo
2020-08-19DOC_BQ7933270367QF.docdoc 13ecb0280410d83e2d67d9f049fe85af186a0c9959c316c90f3ec327a9ab244dVirustotal results 46.67%Heodo
2020-08-19L_31364096.docdoc 9cbc258b5f93fe39609cced6c936d4529b4b3ba671125e8ad51eba9085dbd3a5Virustotal results 45.76%Heodo
2020-08-19BAL_PO_08192020EX.docdoc 546326b982f8d4e1c2af1b80d268127974403aae48e453ff6d8f1820120a8d0fVirustotal results 45.76%Heodo
2020-08-19IL6938586892IX.docdoc 94fe6d0cc1723a60d8965c606027ad0283a60c1f4677cf33c8cb85fd202bbc60Virustotal results 46.67%Heodo
2020-08-19FILE_PO_08192020EX.docdoc fededa8f56c791fe22493104398edd8f25c5b47a5668857fbbe72e6ee16ede93Virustotal results 45.00%Heodo
2020-08-18BAL_IXI_080120_DRJ_081920.docdoc 6e7bc5b464486368fc64b81be80628536390d77832adc42ae658a9ec6642f2b4Virustotal results 45.90%Heodo
2020-08-18II8212658648JG.docdoc 78b703aa2f21f7da750676af91580be9d1e489f83d46c23e914c501ab654676fVirustotal results 48.15%Heodo
2020-08-18BAL_KU6944125629LB.docdoc 805f00873a643dff1edc0ebb808bcc771a6641780897a3d7732b01444b2ec3d8Virustotal results 40.00%Heodo
2020-08-18B_6XA4AMLNV5F.docdoc 7f32822db30d0d6ab9d5ef5dd261b4629d251e40b69b860a30fa476c0e7b8d0fVirustotal results 40.00%Heodo
2020-08-18INV_66846678.docdoc 2db327ec6e030d7937f39cdedb6cbdbade5a89c43fbf6ff39f7c4b7299261a0dn/aHeodo
2020-08-18DOC_JUTS2W3CQMC9.docdoc 462b55199b1901a5d737132fa6f604c4b6e8d201ca57b5971ce95294fb74a056Virustotal results 40.00%Heodo
2020-08-182TCF91GCPRS.docdoc 87becefe3e3cd497258a1bfe5a143aa5f119ddb98b934070d60c747f85529fa6Virustotal results 40.68%Heodo
2020-08-18PO_08182020EX.docdoc cab6349ac0df4084c7ff95a5e68f961048537236c2602cd3aff11482fb0d0af0Virustotal results 40.00%Heodo
2020-08-18DOC_50297635000151.docdoc 460a8e4f639b96c10e0094ce3aceeb1f60278284a1d7b27e3b16fd4b76744636Virustotal results 40.98%Heodo
2020-08-18PO_08182020EX.docdoc 801bc5af1dd1dcee180728a22dc08e6a43622b62fdd21c4d95b06895b62bebbcn/aHeodo
2020-08-1822368188742420632759131.docdoc 74226a70313533ca0e2db01942f0aac396ee7490eb12db52c07ceeecc4b3e451Virustotal results 40.98%Heodo
2020-08-18REP_341687956666813554.docdoc fef24e0c24fefb1c867b231cecb3ca9fcfd7322a0df4f1d47be8c48000fb0ba5Virustotal results 40.68%Heodo
2020-08-18REP_18692791.docdoc 40bf45a0f3955cc2cb68375dd18ebe4bfbf79a8c1ced852bfaab79bcb58eb4bbVirustotal results 38.33%Heodo
2020-08-1897813433.docdoc a7e09fdce8bb372722c2e23e9a17db2d7ebbd56845a8a4d640485b9597b271f5Virustotal results 37.70%Heodo
2020-08-18OF9651454687VL.docdoc bdb11339f1bd60995f4f996322b18b502f9fd561ba97b25fbb7e290f03c44e28Virustotal results 35.00%Heodo
2020-08-18DOC_USB_080120_TSI_081820.docdoc 59a09a4e193789a268b7d79fc4e5a2f5be16c87cbb04c5fc10e2ec27aaa641d5Virustotal results 30.00%Heodo
2020-08-18BX5982576325LB.docdoc 0cef6300d4ff34161fe15685c7de03dd6663177b6ca1d87df136eb05e9daf650Virustotal results 28.81%Heodo
2020-08-18INV_443733284647255768031.docdoc 0e67f376d0afae0fa2310ad9d30b2996e75cc56cc8d6cda026be3b24549a63cfVirustotal results 21.67%Heodo