URLhaus Database

You are currently viewing the URLhaus database entry for http://atomek.eu/g4/http://FILE/9e24ckOJ03kGy0/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	451866
URL:	http://atomek.eu/g4/http://FILE/9e24ckOJ03kGy0/
URL Status:	Offline
Host:	atomek.eu
Date added:	2020-09-02 20:20:34 UTC
Last online:	2020-09-03 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-02 20:22:07 UTC to abuse{at}ovh[dot]net)
Takedown time:	10 hours, 40 minutes (down since 2020-09-03 07:02:32 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-03	arc-2020_09_03-7059798.doc	doc	cacf08dc29380900a46bd3ef7a8d9df051aae704102a5878816183cfe16caf1b	31.67%	Heodo
2020-09-03	7598R 20200903 9817.doc	doc	3505f54cbf2ddab863054dc37a1c898cc5ff3f4dc69ef57ca0f8a32a132588e1	32.20%	Heodo
2020-09-03	ARC_20200903_1895.doc	doc	b3a06afe37d63e434d8ac12e8f2ed2fa8826d8153e9d5f6a3ec6793b11d43277	31.67%	Heodo
2020-09-03	ARC.doc	doc	aa172b20f6de0d7af9a069bb8d7c11a589e3b2a8d9d67498b0110f69561a10e5	29.82%	Heodo
2020-09-03	Arc-20200903-44024.doc	doc	d1736bb7fba0d5f83c964fd5e9c3d2659a1a1ff6eb178441309a83e9fa00ef5f	30.00%	Heodo
2020-09-03	LIST_2020_09_03.doc	doc	34280c447a8ffad5d29899ac71200552e4c648ac215fe6bc47168c2d398bc44d	n/a	Heodo
2020-09-03	UNTITLED-20200903-938.doc	doc	37ef3759b818dcea7d8eb53b1154b78d5112b369a37d266135ca3b3852922114	30.00%	Heodo
2020-09-03	Arc.doc	doc	9f06d52236fee48250887e3c5e7c440f42b4bcba489a3a884e18b7e873a07df5	n/a	Heodo
2020-09-03	QH50607_20200903_53123.doc	doc	c27e13323301dcbf879fd5d7c743e5f810ee5dca4d256bb69c599b85e26fe839	n/a	Heodo
2020-09-03	Untitled-CP97642.doc	doc	b4f5b53b9a038bcfed6b0ede01b82d41c3829d4e18e0672ed48ad2ed6795ce29	29.51%	Heodo
2020-09-03	WPY92499 2020_09_03 ME342456.doc	doc	f1273c5ac81abd89c31217015042acb434eea654480322da66ca1eaa119c73ba	30.51%	Heodo
2020-09-03	1722CZ-YS342.doc	doc	1fd0d748533826575c14cf110f2ba272517b328051ae72c9d397568d05ea93cc	28.07%	Heodo
2020-09-03	Untitled_2020_09_03_86237.doc	doc	3dfe28733e74beee2043c25a24a6ff3041c2411ce6054f8c843537c3f8c3b973	28.33%	Heodo
2020-09-03	413ZD 20200903 HQ9762.doc	doc	8c2a4d37de43bfa1e37a1800952c60ba9b3f351246cb47066fd446ac568e24c0	28.33%	Heodo
2020-09-03	Attachments 388.doc	doc	2cda8e5f76cf5db89f157f738694792ea3ff19076b27e540a30116add841db9f	n/a	Heodo
2020-09-03	3645KMN 20200903 JZ987.doc	doc	a1582f8e1726c716984d979e0b2fcdc729c469ff612af372dc5c802f8dcf1419	n/a	Heodo
2020-09-03	Untitled 20200903 M306.doc	doc	8c593e99baabe4b8890027df98e8e1bc56af6d1a2ab89e3cb5982ef838191ab3	27.12%	Heodo
2020-09-03	MES 20200903.doc	doc	331f6f1c7361fec9bc67094b8f722822cd76a5ed5f52d5b84750dfd66410b382	26.67%	Heodo
2020-09-03	doc-2020_09_03-N98542.doc	doc	a05c6c80c1aed4ef6f7d276ea976bd3a3ebfbf8e80f46273376440eff47bc87b	26.67%	Heodo
2020-09-03	doc-20200903-U89870.doc	doc	dc78c96c7efd7612358790f39c63e33a09e37718776d7f827ec9c7f3c6e5aa36	27.87%	Heodo
2020-09-03	List_IDY7254.doc	doc	085d2ea87b81f4e928025643fbb3e252b20f52d3dfca8d8a91c7c99188b67e68	26.67%	Heodo
2020-09-03	mes 20200903.doc	doc	08461750f88454bb39066eb05f966d9592f736fee04659787314b643da114389	26.67%	Heodo
2020-09-03	mes-PCI002138.doc	doc	3b9ae29dfc77210c64539999fc0cc72fed7df798f7f5adef5c8d5bb7ab9ab4af	n/a	Heodo
2020-09-03	MES-2020_09_03.doc	doc	a3e2eb1611caf695f981fe0341b42b3eb3ce6c89d4c5592e3a6f42de7fd61c50	26.23%	Heodo
2020-09-03	ARC 20200903 AM80888.doc	doc	5b27a5e6cdae618e9eb5e14035ea32c95ce43e30a8c36e1402d81e941dbebb03	26.67%	Heodo
2020-09-02	DAT.doc	doc	8599de55c3e38503985cad1e6a7ea642de4c05b2233e45902e175227dae2a6ac	27.12%	Heodo
2020-09-02	JSJ4600_20200903_Q133.doc	doc	307a4fbaa0d80db37e3ea6e971fae14df8588da457932320d6ea7f4d4df61ac4	26.67%	Heodo
2020-09-02	Attachment_20200903_XOM747.doc	doc	a9604493990426298f032a099836b353e88a4b5152690b58c6eb87865d2864e8	25.00%	Heodo
2020-09-02	inf.doc	doc	6e6db219ffe9ff6be1e7df214bd10146f8df7e51344845c7c8ed5ab7954e58a6	25.42%	Heodo
2020-09-02	Attachments-20200903-332646.doc	doc	42cb24fcecf7fda3dac12fd3cd37e79730f914e718de105352f702edd99427c1	n/a	Heodo
2020-09-02	Arc_20200903_8781.doc	doc	3e12b4e6701c06712933cef6cf69f6837c8faa4e4e33ebc312788ef3523af8f2	23.33%	Heodo
2020-09-02	doc 789.doc	doc	de53464b8b694b4f672a2f55429b372de0dfd04906cc310700ad0201e16bd5ec	n/a	Heodo
2020-09-02	4647_4031627.doc	doc	13ab456a38769f62874636b17911970ca8c4886474e7b3229d86d0559e50d33a	n/a	Heodo
2020-09-02	6582Y KNZ170.doc	doc	da38e53e0e6e17c44340862587b20514021f660632075b20aa08310c2673ced3	21.67%	Heodo
2020-09-02	mes 20200903 H589.doc	doc	47051914b32358b3277db21d76c1f681d97058305cb4d6b55d4bac81816a6f47	21.67%	Heodo
2020-09-02	Arc_8046671.doc	doc	603899956c0a90734416570b7b05e1a90e96f00226b59073ad6e098bdcd60acd	32.20%	Heodo
2020-09-02	Arc-2020_09_02-962.doc	doc	c4dd9b2282259cde0372a62f1426bad99c8b47ad1617ec1171a8031c6087552b	n/a	Heodo
2020-09-02	Mes 2020_09_02 2133.doc	doc	930c166c6877a176166a8eab320ecc6ed60d3780bd1d6140c861a69fc6be1101	30.51%	Heodo