URLhaus Database

You are currently viewing the URLhaus database entry for http://atomek.eu/g4/http:/FILE/9e24ckOJ03kGy0/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	451906
URL:	http://atomek.eu/g4/http:/FILE/9e24ckOJ03kGy0/
URL Status:	Offline
Host:	atomek.eu
Date added:	2020-09-02 20:56:03 UTC
Last online:	2020-09-03 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-02 20:58:08 UTC to abuse{at}ovh[dot]net)
Takedown time:	10 hours, 3 minutes (down since 2020-09-03 07:01:38 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-03	arc-2020_09_03-7059798.doc	doc	cacf08dc29380900a46bd3ef7a8d9df051aae704102a5878816183cfe16caf1b	31.67%	Heodo
2020-09-03	7598R 20200903 9817.doc	doc	3505f54cbf2ddab863054dc37a1c898cc5ff3f4dc69ef57ca0f8a32a132588e1	32.20%	Heodo
2020-09-03	FILE_2020_09_03_QSY52574.doc	doc	610f9b964005fb3e89a45ddeb0555cb5137065429a651730c5aa68bfb59fcdfc	n/a	Heodo
2020-09-03	ARC.doc	doc	aa172b20f6de0d7af9a069bb8d7c11a589e3b2a8d9d67498b0110f69561a10e5	29.82%	Heodo
2020-09-03	REP 1440.doc	doc	c4e63aa4bd93111e81fc78b0cf516be383a95aaa80e1afbed1215283c56ad3ad	30.51%	Heodo
2020-09-03	list 2020_09_03 0746.doc	doc	d1736bb7fba0d5f83c964fd5e9c3d2659a1a1ff6eb178441309a83e9fa00ef5f	30.00%	Heodo
2020-09-03	Inf 20200903 Q6812.doc	doc	e16df740c6b4d003b00ff92bcecbffcee7c2b1beb17d9bdfe388f753ffeee9a3	30.51%	Heodo
2020-09-03	UNTITLED 2020_09_03 WZ799.doc	doc	10b9c4bca67ace9500467fe62f3f429c09793aad07493bb237def1c168c83000	30.00%	Heodo
2020-09-03	Arc GZS970423.doc	doc	de08010ddabc84739d35ba636f0e5392d059431e11e6f96b88541e693d421882	31.03%	Heodo
2020-09-03	arc_2020_09_03_735488.doc	doc	b9a8cd441d4272f268bfe4f6d07d3e7d847df248f08827b609db5336c4cb8c6a	29.51%	Heodo
2020-09-03	Mes 2020_09_03 6958197.doc	doc	b4f5b53b9a038bcfed6b0ede01b82d41c3829d4e18e0672ed48ad2ed6795ce29	29.51%	Heodo
2020-09-03	5287 2020_09_03 182334.doc	doc	ba6fe089390cec5baaab565159c0b3cd9d0357eb3d92919d629d33929c96da12	30.00%	Heodo
2020-09-03	FILE-2020_09_03-637.doc	doc	2240002698b5432e0116538adfd1e60a4d1f975f80b040ffa9a58ea7e46a0934	29.51%	Heodo
2020-09-03	MES 2020_09_03 651.doc	doc	3dfe28733e74beee2043c25a24a6ff3041c2411ce6054f8c843537c3f8c3b973	28.33%	Heodo
2020-09-03	413ZD 20200903 HQ9762.doc	doc	8c2a4d37de43bfa1e37a1800952c60ba9b3f351246cb47066fd446ac568e24c0	28.33%	Heodo
2020-09-03	Inf-2020_09_03-V89123.doc	doc	c41f3d11c142049ed7f425035baa31c3fd11251621fd38312b9d36e632f6b18f	28.33%	Heodo
2020-09-03	doc MD3050.doc	doc	a1582f8e1726c716984d979e0b2fcdc729c469ff612af372dc5c802f8dcf1419	25.86%	Heodo
2020-09-03	Untitled 20200903 QI8241.doc	doc	56cc3fba7824817094a7bda5669fcd970513a9728b5baf553c28c6d556d0f27c	25.86%	Heodo
2020-09-03	REP_2020_09_03_HLA07594.doc	doc	030dc88d3c5827bd9cd7bbf0117a6cfdf55fc56d5b8d4715dfd85406a04ffd4a	26.67%	Heodo
2020-09-03	Doc 20200903.doc	doc	a05c6c80c1aed4ef6f7d276ea976bd3a3ebfbf8e80f46273376440eff47bc87b	27.12%	Heodo
2020-09-03	Mes 2020_09_03 B90710.doc	doc	12eb109b5cc21f61356696a06698808a9bcc8e97a6d3a5ef1c96d3aedd57b13c	26.67%	Heodo
2020-09-03	List_IDY7254.doc	doc	085d2ea87b81f4e928025643fbb3e252b20f52d3dfca8d8a91c7c99188b67e68	26.67%	Heodo
2020-09-03	arc_2020_09_03.doc	doc	08461750f88454bb39066eb05f966d9592f736fee04659787314b643da114389	26.67%	Heodo
2020-09-03	mes-PCI002138.doc	doc	3b9ae29dfc77210c64539999fc0cc72fed7df798f7f5adef5c8d5bb7ab9ab4af	n/a	Heodo
2020-09-03	UNTITLED 2020_09_03 BV8191.doc	doc	a3e2eb1611caf695f981fe0341b42b3eb3ce6c89d4c5592e3a6f42de7fd61c50	26.23%	Heodo
2020-09-03	ARC 20200903 AM80888.doc	doc	5b27a5e6cdae618e9eb5e14035ea32c95ce43e30a8c36e1402d81e941dbebb03	26.67%	Heodo
2020-09-02	DAT.doc	doc	8599de55c3e38503985cad1e6a7ea642de4c05b2233e45902e175227dae2a6ac	27.12%	Heodo
2020-09-02	JSJ4600_20200903_Q133.doc	doc	307a4fbaa0d80db37e3ea6e971fae14df8588da457932320d6ea7f4d4df61ac4	26.67%	Heodo
2020-09-02	Attachment_20200903_XOM747.doc	doc	a9604493990426298f032a099836b353e88a4b5152690b58c6eb87865d2864e8	25.00%	Heodo
2020-09-02	inf.doc	doc	6e6db219ffe9ff6be1e7df214bd10146f8df7e51344845c7c8ed5ab7954e58a6	25.42%	Heodo
2020-09-02	FILE-2020_09_03-XQ755.doc	doc	cbc706330d51abaad2b5aadb0d773e948c1705880c56112529fbffce5009fbe4	23.33%	Heodo
2020-09-02	Arc_20200903_8781.doc	doc	3e12b4e6701c06712933cef6cf69f6837c8faa4e4e33ebc312788ef3523af8f2	23.33%	Heodo
2020-09-02	UNTITLED_20200903_07550.doc	doc	e05bc9c7040864c92426c04f0086bdb8458a6108b5fbb51c3939067c17d368d2	n/a	Heodo
2020-09-02	mes_HS461.doc	doc	b647a5a90f5b33c02561da1e22ee9d50da3501b2f14016782af110bfc53397ab	21.31%	Heodo
2020-09-02	List_2020_09_03_AWQ459876.doc	doc	da38e53e0e6e17c44340862587b20514021f660632075b20aa08310c2673ced3	n/a	Heodo
2020-09-02	REP-2020_09_03-0168740.doc	doc	3eaed80c039be753fe99818eaf855ac6a37141c7528b2a6775df0ef0c73800bc	n/a	Heodo
2020-09-02	Arc_8046671.doc	doc	603899956c0a90734416570b7b05e1a90e96f00226b59073ad6e098bdcd60acd	32.20%	Heodo
2020-09-02	Doc_04214.doc	doc	2274fc32d5e2b929b02a7f84535d43e309eb87737831513a6d3c9b985857058f	31.67%	Heodo