URLhaus Database

You are currently viewing the URLhaus database entry for https://www.wpbkw.com/0.0bfgdsf/sites/z7auke80107789y3kex53rm00fw4x1/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:445141
URL: https://www.wpbkw.com/0.0bfgdsf/sites/z7auke80107789y3kex53rm00fw4x1/
URL Status:Offline
Host: www.wpbkw.com
Date added:2020-08-27 10:34:40 UTC
Last online:2020-08-29 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-08-27 10:36:04 UTC to abuse{at}rackip[dot]com)
Takedown time:2 days, 3 hours, 10 minutes Poor (down since 2020-08-29 13:46:22 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-27REP_TK6842771179WZ.docdoc 77ad3c40bc0967f1848893236a278bd997369b4203652af056b735d8378c6079Virustotal results 32.76%Heodo
2020-08-27BAL_PXM_080120_QDE_082720.docdoc 35da2a043122e43ce1a120246b4e1087eeb78de3d7ba0ef7cf2f33b0a7f470dbVirustotal results 32.76%Heodo
2020-08-27VP1318464732ND.docdoc b9e2a8c85d83c0a54743d72c3e4f2433957898eafc163f465c6b2450a30f4447Virustotal results 32.76%Heodo
2020-08-27FILE_OY8487462275JD.docdoc f8c0ab3bc7ebbd986e72a712fa194d1c05d9ae0c804a39442e5beebcda5934ffn/aHeodo
2020-08-27GHC_080120_NMT_082720.docdoc a95a77a3739d37fad99204a70ad398923274bc834a29efe0e3ba63f61e9635d3n/aHeodo
2020-08-27UZ7181300425SG.docdoc cf7c5c9932e84c5e7b4581ed4ab33d064f13bac0d2cf382eb274c72730bebf5eVirustotal results 32.20%Heodo
2020-08-27FILE_PO_08272020EX.docdoc 57dac421ffe1a98070334b279e5be3bd97ea21ee620e9d6cbf9dd0450c04a547n/aHeodo
2020-08-27DUBO_CLH_080120_HTQ_082720.docdoc f44879951101c7f2717080007e067b3a80c6dd37dd0eaa757790e1fdbbf63fe2Virustotal results 32.20%Heodo
2020-08-27CCDM_6ZP3D64L3DW1E.docdoc 1ed11ebc12a09924917104bea8ca68bf4f6c24654b6ad0e17100ca907a01d698Virustotal results 32.76%Heodo
2020-08-27DOC_PDF_080120_OGT_082720.docdoc c6081344c883e627f79612b8bcaf44b55befbbb92800f6a709696a3749180534n/aHeodo
2020-08-27SA9301428731WY.docdoc 9e9c4d5ee91bf05ccf73c05e7de8d898aa379f1069060435224af69ee06ce086n/aHeodo
2020-08-27M_636324633375987.docdoc d56d9d709306f23661f511e5201029bc098ddb98a2c5378c99d5314793b6b30eVirustotal results 32.76%Heodo
2020-08-2799770066.docdoc 72a047a55409445c1767467b0e67391b0fbdb99be5b2e6a5457df52c7e2ef398n/aHeodo
2020-08-2729334469867161213976.docdoc ff0302507e7b8d9f6cc614e90bdb200ec5bee9f579514c9ab4c50c78703bc172n/aHeodo
2020-08-27DOC_25619973956975267.docdoc 1de15c9ed545a45fd0d8427d1ecb434fa6f59d9efbb91236202a73b806f0d1ebVirustotal results 36.84%Heodo
2020-08-27Q_ZK5297634253NB.docdoc 6c0ce946ca66edf1fd056150078900bdfe30459e0d40f07216d8718b728941f0n/aHeodo
2020-08-27AX2260525807QU.docdoc 5ed03df6a3535b20645e72e6658a0bcdc994e14ce0fa8f4e28bfb4af4068e336n/aHeodo
2020-08-27A_ECO9CX2SLNR.docdoc 9a31c5f1b201f416658cf758ebda7480d9a6aa0b3330b71b8c71e73143958cdfVirustotal results 31.03%Heodo
2020-08-27FILE_W498ZUNI1YJZC.docdoc 2136cb67c60f9d08a5305401c1c4a33d58bf58038a9ce7d125d6ecf71e73655dn/aHeodo
2020-08-27CMX_080120_RNJ_082720.docdoc 1f7ed0ccd130a0b63ad568b735ad629f439919389015594a0a8c62b9f7e2460fn/aHeodo
2020-08-27RI8749965925GO.docdoc 0b996a31427775476402581dd429db57db41e3a98ed148776a2ba8f0b6cc1a75n/aHeodo
2020-08-27DOC_ALZ_080120_LSY_082720.docdoc 13838aa29674df0931020702d63159c97fea6d1e993a0995d5283ec0bb6107cbVirustotal results 27.59%Heodo
2020-08-27ZV0378387196OC.docdoc 606f2aaa6e7955ce889ca7bab690fdc3c65468565ab9a4c7beb3c6ac79050405Virustotal results 29.31%Heodo
2020-08-27REP_SP6074945846JA.docdoc d0b9665315063e743dc96f2d64974b38368b7e391aefd8f51225bd31eaf8f203Virustotal results 30.91%Heodo
2020-08-27FILE_604089237569747951.docdoc 151815029e695cd4af22c16d6eb0aa00c3ad74ba422c20d22e9bedf220485490n/aHeodo