URLhaus Database

You are currently viewing the URLhaus database entry for http://frera.com/OLD/3634893_eCHShQz1vMV_nku7k_VWKGZAtBQXQ/open_forum/zr9tj1neq91m0o_x1ssw75zzwyu/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	438741
URL:	http://frera.com/OLD/3634893_eCHShQz1vMV_nku7k_VWKGZAtBQXQ/open_forum/zr9tj1neq91m0o_x1ssw75zzwyu/
URL Status:	Offline
Host:	frera.com
Date added:	2020-08-21 22:12:03 UTC
Last online:	2020-08-22 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-08-21 22:14:03 UTC to abuse{at}strato[dot]de)
Takedown time:	13 hours, 32 minutes (down since 2020-08-22 11:46:12 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-22	arc-2020_08_22-425614.doc	doc	44be463c465e4e229df4dcea734d505a424cb65601ccdcd1348117882ad9038c	45.76%	Heodo
2020-08-22	Doc 20200822.doc	doc	e2e7f4b11f11f2af066278c55e5cca8fb8e9e9c9f3bcebea7b72b4c6e938cf4d	36.21%	Heodo
2020-08-22	DAT 20200822 835.doc	doc	67e2cb8867c603a2dab982a160af55d695d175dbc7ece0bbbe00c4fddc85eab3	45.61%	Heodo
2020-08-22	REP-20200822-UPI92096.doc	doc	53f20418aff1b58d2c8a455052a1d86981538e058d335edc4bb70c0228c8ea46	43.10%	Heodo
2020-08-22	inf TKE08985.doc	doc	49c9a516531428da5c4efd0104271a4045adeb84e6d6558b35082985c571ef2c	35.59%	Heodo
2020-08-22	Arc_2020_08_22_0041.doc	doc	a8d0317e5f1e52d1808478e9ddb1173f41b1bc31dbf33d5d861e2923893826d1	31.48%	Heodo
2020-08-22	INF BIE43900.doc	doc	0a7181e539b268536df28fc63a82b43dfa50e94f794f246c2adf975042ad1384	40.68%	Heodo
2020-08-22	ARC_20200822_K70158.doc	doc	7910573209534692d5d300434187b3769f390a81173b30e2ca9a834d1989266c	36.21%	Heodo
2020-08-22	Mes_N2292.doc	doc	0d62984f302057e3206f8ffb7af2b01402726b9a6d7146509f4420e5aecd80e5	34.48%	Heodo
2020-08-22	mes 16396.doc	doc	888576b006def3935c63b3044add14aff8f8a2f56a1a52592f895f1182d25ce6	38.98%	Heodo
2020-08-22	doc-2020_08_22-ELG9180.doc	doc	4484c615a0ac00d4d0c8abcda3d125c72235a6df8e51d7d9068e42d0f9c41d24	38.98%	Heodo
2020-08-22	DAT.doc	doc	eb03beecb5dbcd12f2191ec6980a4b9abb56b43907f1bff900378a80daa3699a	35.09%	Heodo
2020-08-22	ARC 20200822 KQG274.doc	doc	7e23b5d1c6802917ef79115b4b1a242be7cd7465aa52247ae9d01092bcb49da1	34.48%	Heodo
2020-08-22	List-2020_08_22-E626.doc	doc	13878ffb3c3601849729c8f8ed0508cd64d188f8505998b19c8ada35fb5862e2	37.93%	Heodo
2020-08-22	Doc_20200822_858194.doc	doc	4cd4ea7314c2268401c1395af0e562dcb530b081eb42c55152e03990a62bc4ea	34.48%	Heodo
2020-08-22	Arc 2020_08_22 9539293.doc	doc	037b8124330acc05c14aeec4da5dd741dfc43260dbd62df806d84fb370ed3416	38.98%	Heodo
2020-08-22	File 2020_08_22 P3774.doc	doc	6c07e097125602926df0ea025482c72e280b3f4b72f2fe5f0603c0b23811ef4a	35.09%	Heodo
2020-08-22	REP_1393325.doc	doc	cfe9b00366296aa5a8c8cd03ea3bba651df2c931c4bb37c6ad12e087dc3849eb	32.76%	Heodo
2020-08-22	arc_2020_08_22_CLQ472658.doc	doc	bf613424225d5260ce91473ce6ebfe8adceb0588ea8fd5bb613437a9ce55f5cb	34.48%	Heodo
2020-08-22	inf_VXX7524.doc	doc	9c6e241a9a90edac415dda654252a69fb56e32a5f9894dc1e0e44f8d02e56d2a	37.93%	Heodo
2020-08-22	File-2020_08_22.doc	doc	38ad7eca5e40a7294cfd489d269d4dae16920886c3e5b69674dfffb9e75daeb9	32.76%	Heodo
2020-08-22	list 20200822 UYP059826.doc	doc	867d3bb147c8023487bb78f217e39d1e3525f2d28cf2e6ae06661c9fbb13eb4d	37.50%	Heodo
2020-08-22	arc_617634.doc	doc	3c425e91c6383bae63a5768f423894b4db16efeaa0224ff93d8e9878e0422ff9	33.90%	Heodo
2020-08-21	Dat-2020_08_22-B13760.doc	doc	f3910c447952615a78e47e19bb4d3f313f015a74e603c83b15fbe812d5437d4c	34.48%	Heodo
2020-08-21	dat_20200822_4370456.doc	doc	92e5e1a51ddd03e23c7c26053d435dae5ad6603e18a54d2926e943f5380ad077	n/a	Heodo
2020-08-21	Dat 2020_08_22 T015.doc	doc	5027992f3f1c092f72a1f03d8617eb280d1a262c52e16a3b3c06c09e2d2479a3	33.93%	Heodo
2020-08-21	INF_20200822_AWP527.doc	doc	06da47e8874c949c899c40bdac1c203ae60c6d0b6dccef8a9fd09a98d5b274e9	n/a	Heodo
2020-08-21	Mes_6391060.doc	doc	e41c9acb24c7dbffbe881b62867bf6c7e1ee5c151509f7fa14b4004d0db184aa	n/a	Heodo
2020-08-21	Dat-72335.doc	doc	477e5903ab426d0f8d08786b9ee6332240fdbcb967dac106e7de5705a84ef512	n/a	Heodo
2020-08-21	dat-20200822.doc	doc	f5c802f7ea024701b5da84ae6654fb6d08915fb996f178622a4d2808016cf0ae	n/a	Heodo
2020-08-21	Arc-24211.doc	doc	3e287ba0386e18854475b7652259b5696e05f2a145187e1582c7d229c2099180	n/a	Heodo