URLhaus Database

You are currently viewing the URLhaus database entry for http://privokzal.com.ua/wp-content/paclm/naba3fdsj/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:436722
URL: http://privokzal.com.ua/wp-content/paclm/naba3fdsj/
URL Status:Offline
Host: privokzal.com.ua
Date added:2020-08-19 17:05:08 UTC
Last online:2020-08-26 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-08-19 17:06:04 UTC to network{at}abuse[dot]team)
Takedown time:6 days, 16 hours, 38 minutes Bad (down since 2020-08-26 09:44:55 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-21UJYH_953118071131307926.docdoc b9867ead986e6afb8337409a0b509cac26e3d383deb83f38f1cfcde8eaf3ab01Virustotal results 22.81%Heodo
2020-08-21SRD_080120_WYK_082120.docdoc 345f128c0704a8857b5928388afb0e8c8cfdc5c28ff78391a36894b86e4c9611Virustotal results 21.67%Heodo
2020-08-21REP_PO_08212020EX.docdoc d3e288e78e76e10c2214ea9589c989760fc693bb097650669c7f37b9332698c5Virustotal results 20.34%Heodo
2020-08-21FILE_DQDMZ3T.docdoc a99bc78979b657a1d16c9c3cb64ddfbd2d0317097210ad0dd85088b7a6c1b3ceVirustotal results 31.03%Heodo
2020-08-20INV_899373149467797441351.docdoc 6154589206b4a6394279b8053f63c1a89f87a7dd81ff376e2f502c63bd70d48fVirustotal results 30.51%Heodo
2020-08-20INV_5075044255621.docdoc ea9a29f42ce90bd0cc4aa2b4758dc76ce4a5d639dcbe1ee8f4f0b61632793577Virustotal results 30.00%Heodo
2020-08-20V_822833908561.docdoc 172af56801cf4f253a30974aeeddb1910408d1417b4d8bffbefe887436c3b633Virustotal results 27.12%Heodo
2020-08-20I_8233991091684887928126893.docdoc 63e9e5abc6b0d9e61f8f83baae44d5028c4c9ebe62e0ee337e3313c1e83841f4Virustotal results 20.00%Heodo
2020-08-20REP_MR5794574257YC.docdoc 1ec4fbe7672e49a2c4d311f2abb491d07517aa98db9ade8f346fefdc6cad7469Virustotal results 20.00%Heodo
2020-08-20DOC_893916757098635.docdoc 6999b90afceb089b399c074269f52600ddb3d7aee434cfba9a1896c8213f4df1n/aHeodo
2020-08-20FILE_31211569.docdoc bfdf3c9957775bcbc77fd32ca103eb77c0d7ce345a27bde62c3347647ad94a06n/aHeodo
2020-08-20PO_08202020EX.docdoc 9b8093f8e43a21459619460b9e991aa75ce552e9671b0d1b47ac7b3c638c8fafn/aHeodo
2020-08-20BAL_21666848.docdoc 5d3beef0242dc0de22d84070c113bcc9b3927d40772dbd6da912611a24792a60Virustotal results 20.00%Heodo
2020-08-20JP9286596443BD.docdoc 6e647b837da2262825372b4fb5ccf78f780e467cdcc593c348153bd1619dbf86Virustotal results 44.26%Heodo
2020-08-20FILE_17572401.docdoc 3adba5d0d3b9f8425b3f663d9a4e49ea5d5effd605916f354e932e1fae4486e4Virustotal results 41.67%Heodo
2020-08-20INV_805326340214320432956042.docdoc 5debb0401a79585a656197d49e148048a7c7db909c234ae80dd84798e89663cfVirustotal results 38.98%Heodo
2020-08-20WNO_XQG_080120_QNY_082020.docdoc d302615d23c61c639ad53db79f2e5e6e3aedb53e0404821c5c02064f7913910fVirustotal results 38.33%Heodo
2020-08-20INV_PUH_080120_EGR_082020.docdoc b32f302c129728edd895136f299f0e68031f9554b42be4fd2dd35f80a9b2a750n/aHeodo
2020-08-20REP_IBN_080120_EHB_082020.docdoc 258ce6696ac78fb8d21424c2e471d638e03aaa8c2aab1dc7a78e2125e77dc9b9Virustotal results 38.33%Heodo
2020-08-20REP_PO_08202020EX.docdoc 96f7d13cfc1edad4f9381ae98cab2336d39557b2230d88583c92284d6616b4e5n/aHeodo
2020-08-20PO_08202020EX.docdoc f49f483de9c2f5fc441b529eaa889631aa5a272206dfdca519993427403f65e9n/aHeodo
2020-08-19BAL_1003849103.docdoc a75897a4101123281bbe047444001acc874171e15cc5a6047baa32d5100d4237Virustotal results 35.00%Heodo
2020-08-19DOC_PIG_080120_NFD_082020.docdoc 36a290d9df91c6881e6f23de7e03e02206ef7ca2d8aac9d585308806b6e2b965n/aHeodo
2020-08-19INV_SKC_080120_XGU_082020.docdoc ee0c184cdb3791d36a47a1d945aab42379266c4cc4ea6cd88c316ace9deb8826Virustotal results 28.81%Heodo
2020-08-19REP_PO_08202020EX.docdoc 7ad5ea1233a7caa4360448569e2745679d1b0e3864b7f716284e3a7384c31462Virustotal results 26.67%Heodo
2020-08-19FILE_35281565208.docdoc d3cea7588b6e664da8ef52bfb856e6fdc6e0df460f961066491aed88f4e29a03Virustotal results 16.95%Heodo
2020-08-1921778288.docdoc 063b886950d14cfd765fafcd552629e1c87c3c1d0b03cc4a794e8c02dd34db42Virustotal results 16.95%Heodo
2020-08-19DOC_33079267.docdoc 5a216285239e2f997444c5eb15fd484fcfbb8a3d23acfea4b5d587768ba66063Virustotal results 16.95%Heodo
2020-08-19INV_AZR_080120_IMM_081920.docdoc 1a17af806d615019154f0985010aad3789bd90bdb40970f78cd0cda2bd722896n/aHeodo
2020-08-194430238342188662787.docdoc 1b110485a730140a1499cfb4e0313b280748117cd1f41699438e6e103af73ea7Virustotal results 17.24%Heodo
2020-08-1934794205.docdoc c3f0d0d594a74f097907231612a0cd0da8c75160a2ae1064a3744ecdea407986Virustotal results 15.00%Heodo
2020-08-19YUS_080120_FMO_081920.docdoc 7feab4f1f35adcc7433afdbf4448e5b79996fbe150dfe6e0f708a6c13ce86f7bVirustotal results 23.33%Heodo
2020-08-19QV_TKKESMKQS0BF.docdoc 7f3f68fc29feddc0494e2e4853b7454b5d0cceeabe5e0bcd13029c5ec301e9c6n/aHeodo
2020-08-1927421001502.docdoc a882484dd319c7363eab50da170eaf45d0be854d4208c86d3d9fa00621f2f9d9n/aHeodo
2020-08-19DOC_EUA_080120_WQH_081920.docdoc 529390562b286d3c2cfdfec7f930327818909b300cf64609a2d6d8bb3e5d47ebn/aHeodo
2020-08-19INV_QAY_080120_KGR_081920.docdoc 90499b6cd235fd63115a4d18f0989f842252935038f4cadec17f85a2081b1cfdn/aHeodo
2020-08-19J_22981588.docdoc 863115404bb5f48e7f22e292813820254117f2cac7a97b266e8a8fd6359557ddn/aHeodo
2020-08-19PO_08192020EX.docdoc 0d9522e1c5d18866b466aa9d28546adc56ea56f6d821fdda5ab77b1285b9e0d8Virustotal results 23.33%Heodo
2020-08-19REP_894561278.docdoc ed6f742fc6e103f092e9fd9301bf4ec786e88abca3ec1593661c4083f398616dn/aHeodo
2020-08-19PO_08192020EX.docdoc 76b5b8d527359fb1183fc7e4e4eb0dc5369aa0126843b1ec8d04f73c658e0b15n/aHeodo
2020-08-19DOC_JX4161956717MT.docdoc f2d2558321c1b85c41505c190a6b4f309524c7eb7282f7a10ca8f832f539e42dn/aHeodo
2020-08-19DOC_11680499879723752786.docdoc 0a498c55e5d52f436de044246c9f243ca0359b6277e557c4c4897ce31a585418n/aHeodo
2020-08-19DOC_ABKVIVBLTI630B.docdoc 2065474363cd9df4a104d020800f2f1523e4cdbb0602b68434bb6cf61b62398dn/aHeodo
2020-08-19W_4691182901164481.docdoc 42b9726416b4076116e799c57988e1d97cfc0331d87ddbb84cd3ddacae97effen/aHeodo