URLhaus Database

You are currently viewing the URLhaus database entry for http://taltus.co.uk/closed_disk/balance/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:436813
URL: http://taltus.co.uk/closed_disk/balance/
URL Status:Offline
Host: taltus.co.uk
Date added:2020-08-19 19:45:36 UTC
Last online:2020-08-20 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-08-19 19:46:02 UTC to abuse{at}bigwetfish[dot]co[dot]uk)
Takedown time:15 hours, 9 minutes Good (down since 2020-08-20 10:55:16 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-20PW_PO_08202020EX.docdoc bfdf3c9957775bcbc77fd32ca103eb77c0d7ce345a27bde62c3347647ad94a06n/aHeodo
2020-08-20VJ4124105554WO.docdoc 9b8093f8e43a21459619460b9e991aa75ce552e9671b0d1b47ac7b3c638c8fafn/aHeodo
2020-08-2032241685.docdoc 5d3beef0242dc0de22d84070c113bcc9b3927d40772dbd6da912611a24792a60Virustotal results 20.00%Heodo
2020-08-20YBE_IIL_080120_GPI_082020.docdoc 6e647b837da2262825372b4fb5ccf78f780e467cdcc593c348153bd1619dbf86Virustotal results 44.26%Heodo
2020-08-20DOC_28039806.docdoc 3adba5d0d3b9f8425b3f663d9a4e49ea5d5effd605916f354e932e1fae4486e4Virustotal results 41.67%Heodo
2020-08-20FILE_QX6358099263JU.docdoc b1a3a3654d76f8eeaf84cff925c62e4f349407617da64a11c91b03851f5cf209Virustotal results 40.68%Heodo
2020-08-20CSQ6VRQKSBLGC.docdoc 77dc94d7a2eb1a8f1f2875ee18a8115333a3c2ab0f0455d8cd46b952f93809b8Virustotal results 40.68%Heodo
2020-08-20PO_08202020EX.docdoc a184a094e50174dc9dc8c5c22ac016c02f3605fd19c733c49ad1ebf02c493f65Virustotal results 40.00%Heodo
2020-08-20BAL_JMU1H3HQZYSB9UHA.docdoc eaa1c250dbc47328eafe0c85fab62bcb61bdbca2c66baff441e462b6ae5c1a1bn/aHeodo
2020-08-20FILE_91465986.docdoc f4bdec707792203de37f57aaa05aee2ce49012f69866816d8275ceed21df1daen/aHeodo
2020-08-20FILE_TDU_080120_VET_082020.docdoc b26d580deb9ff666c0dc35f4cc7c9d88038fe0f3c8bf48c4aacd56dfc05c4cabVirustotal results 40.68%Heodo
2020-08-20INV_MSO_080120_TCP_082020.docdoc 29524d934f54a27deecaedd3e58de8a4490eddc04ac913bcb37c3ca1354c5b06n/aHeodo
2020-08-20DOC_43006955716.docdoc fd5697cbe13a39316aa3bb5a556294913f66b029ece0dfa4c3dcfb9f8fee28e5Virustotal results 38.33%Heodo
2020-08-2083428063.docdoc 521688de7a4f5ae13f0d5348c2d0c4604f43a409de9751fd4ba6d791f4adc281n/aHeodo
2020-08-20INV_PO_08202020EX.docdoc 275e276c98e61d33c2852f27d543c9cda4212aa16383e36b2e3651a28070a8fcn/aHeodo
2020-08-20HAZZ_73102792.docdoc 60bb16533f938460519528657d8b785485622e3471330a87fa5894fed506eed8n/aHeodo
2020-08-202IJ1NI7.docdoc 5debb0401a79585a656197d49e148048a7c7db909c234ae80dd84798e89663cfn/aHeodo
2020-08-20BAL_MDI_080120_REJ_082020.docdoc b32f302c129728edd895136f299f0e68031f9554b42be4fd2dd35f80a9b2a750n/aHeodo
2020-08-20DOC_323578863324517294459.docdoc be8b2b9dcb90fbaed4e7bc6186fd5dbad93c77fd80cee44717c88ac07641368an/aHeodo
2020-08-20HP1785350638ZM.docdoc 96f7d13cfc1edad4f9381ae98cab2336d39557b2230d88583c92284d6616b4e5n/aHeodo
2020-08-209FWQCFBU9JFWR.docdoc f49f483de9c2f5fc441b529eaa889631aa5a272206dfdca519993427403f65e9n/aHeodo
2020-08-19YK_08219556.docdoc a75897a4101123281bbe047444001acc874171e15cc5a6047baa32d5100d4237Virustotal results 35.00%Heodo
2020-08-19WCH_340197969.docdoc 36a290d9df91c6881e6f23de7e03e02206ef7ca2d8aac9d585308806b6e2b965n/aHeodo
2020-08-19PO_08202020EX.docdoc ee0c184cdb3791d36a47a1d945aab42379266c4cc4ea6cd88c316ace9deb8826Virustotal results 28.81%Heodo
2020-08-19BAL_JGIMYES8ISQE.docdoc 7ad5ea1233a7caa4360448569e2745679d1b0e3864b7f716284e3a7384c31462Virustotal results 26.67%Heodo
2020-08-19G_ZH8534190580XS.docdoc 5f8721a94ab98ae1faa9808845e0951f18b9c9bf25b5da944d163f07a90e4d0eVirustotal results 16.95%Heodo
2020-08-19PII_080120_MWW_082020.docdoc 063b886950d14cfd765fafcd552629e1c87c3c1d0b03cc4a794e8c02dd34db42Virustotal results 16.95%Heodo
2020-08-19DOC_XDF_080120_CSP_082020.docdoc 5a216285239e2f997444c5eb15fd484fcfbb8a3d23acfea4b5d587768ba66063Virustotal results 16.95%Heodo
2020-08-19P_PO_08192020EX.docdoc d054c0a4a703726e52aaa5f6db946aefbc777af3e84c0bef5d5cfa5f7dbfe034Virustotal results 16.67%Heodo
2020-08-19REP_CF6402127067KY.docdoc 1b110485a730140a1499cfb4e0313b280748117cd1f41699438e6e103af73ea7Virustotal results 17.24%Heodo
2020-08-19ERY_XCN_080120_RKB_081920.docdoc 1d0d782d8396cb7c83be29d2f7baf7413db37d06555a498f8a89d075dbf163dfVirustotal results 15.25%Heodo
2020-08-19DOC_BH8338212526GP.docdoc 7feab4f1f35adcc7433afdbf4448e5b79996fbe150dfe6e0f708a6c13ce86f7bVirustotal results 23.33%Heodo
2020-08-1904500817.docdoc 8be59997575735dc3845990047094781b5e69f074f5b6569e6e1dcea50f08693n/aHeodo