URLhaus Database

You are currently viewing the URLhaus database entry for http://werkwijzer-oldenzaal.nl/wp-content/https://Pages/X5eXRItESMv2yHasU2LF/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:451967
URL: http://werkwijzer-oldenzaal.nl/wp-content/https://Pages/X5eXRItESMv2yHasU2LF/
URL Status:Offline
Host: werkwijzer-oldenzaal.nl
Date added:2020-09-02 21:57:03 UTC
Last online:2020-09-03 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-03 08:39:44 UTC to abuse{at}antagonist[dot]nl)
Takedown time:35 minutes Wow (down since 2020-09-03 09:15:00 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-037241 2020_09_03 787569.docdoc db086b8728ea16bc67645ad3a8087b50c7876cb33c1e752f445d11a5c4c42dc2Virustotal results 18.33%Heodo
2020-09-03Inf_D365.docdoc c0cbde26c26008c28e57c09b3755a36c862bf431e69e8a8c6efa181a5c135343Virustotal results 18.33%Heodo
2020-09-03FILE_20200903_GK773159.docdoc d7e28dd65d5aab6b17a6509ad8869ce65f0838f59de7b034f9a0ea7775a19c35Virustotal results 18.97%Heodo
2020-09-03Rep-1380.docdoc 7fa4dcabbc254d8edb38a866c0073738d9e80aa44927ca2dffb57ef1895a1de1n/aHeodo
2020-09-03File_2020_09_03_5697352.docdoc 1a4f785565e762ebb5114a4fa08330ab74c2e36f6b8c581022ee6b475b0b9313n/aHeodo
2020-09-03FILE_20200903_EEN640.docdoc edd24d1a4d38c00b10ada9eaa24138cdbb5b2d6fcb80ff5350576827cf792494Virustotal results 35.00%Heodo
2020-09-03Mes 6687.docdoc 3e0be4ed5da1702faca0d2cd0ca1f13267be6c7af90459dd04c5de4478cb9220n/aHeodo
2020-09-03Arc_4584.docdoc cacf08dc29380900a46bd3ef7a8d9df051aae704102a5878816183cfe16caf1bVirustotal results 31.67%Heodo
2020-09-03FILE-2020_09_03.docdoc 3505f54cbf2ddab863054dc37a1c898cc5ff3f4dc69ef57ca0f8a32a132588e1Virustotal results 32.20%Heodo
2020-09-03dat 2020_09_03 2212.docdoc 610f9b964005fb3e89a45ddeb0555cb5137065429a651730c5aa68bfb59fcdfcn/aHeodo
2020-09-03Arc_20200903_5904.docdoc 3eaff0adaedb721bdcb992b625696f79e232fa822f13b1183b30939b7ed0b4ccn/aHeodo
2020-09-03ARC_20200903_SGW219832.docdoc d1736bb7fba0d5f83c964fd5e9c3d2659a1a1ff6eb178441309a83e9fa00ef5fVirustotal results 30.00%Heodo
2020-09-03UNTITLED_20200903_OA222823.docdoc fec90b9f6fbd9d737bfb18e0f1801b841454d1857793a0cb6484f891a1a495fdVirustotal results 30.00%Heodo
2020-09-03List_2020_09_03_R1986.docdoc e16df740c6b4d003b00ff92bcecbffcee7c2b1beb17d9bdfe388f753ffeee9a3Virustotal results 31.67%Heodo
2020-09-03Inf-852.docdoc 10b9c4bca67ace9500467fe62f3f429c09793aad07493bb237def1c168c83000Virustotal results 30.00%Heodo
2020-09-03rep-P0254.docdoc 9f06d52236fee48250887e3c5e7c440f42b4bcba489a3a884e18b7e873a07df5Virustotal results 30.00%Heodo
2020-09-03Inf-20200903-79644.docdoc c27e13323301dcbf879fd5d7c743e5f810ee5dca4d256bb69c599b85e26fe839n/aHeodo
2020-09-03MES-2020_09_03-05233.docdoc b4f5b53b9a038bcfed6b0ede01b82d41c3829d4e18e0672ed48ad2ed6795ce29Virustotal results 29.51%Heodo
2020-09-03LIST_20200903_474051.docdoc f1273c5ac81abd89c31217015042acb434eea654480322da66ca1eaa119c73ban/aHeodo
2020-09-03arc 2020_09_03 Q804.docdoc da1132b0bfe7505ba5697d51eeda268a7f7a45a3013adabdc071716ae957d8e7Virustotal results 31.58%Heodo
2020-09-03Mes 2020_09_03 87185.docdoc 3dfe28733e74beee2043c25a24a6ff3041c2411ce6054f8c843537c3f8c3b973Virustotal results 28.33%Heodo
2020-09-03list_2020_09_03_UB66891.docdoc 1c4ae5147277da1ae2e1698cb5bbb78013414bc44ec134e7b0b5443ef4839f62Virustotal results 28.33%Heodo
2020-09-03mes_6022.docdoc 2cda8e5f76cf5db89f157f738694792ea3ff19076b27e540a30116add841db9fn/aHeodo
2020-09-03Mes W481.docdoc 7a67e14b283722cde191123457b9d45b4da03bd8bf9412764fc8fb393bcdefdfVirustotal results 24.14%Heodo
2020-09-03List.docdoc af1503fdb9c16f88d297af1483bd07854a02a4ad77bbb4600e0e8f0397650fcdVirustotal results 26.67%Heodo
2020-09-03TO20667 2020_09_03 HC264.docdoc 331f6f1c7361fec9bc67094b8f722822cd76a5ed5f52d5b84750dfd66410b382n/aHeodo
2020-09-03Attachment_2020_09_03_FSH70882.docdoc 2f6c8e4cc76bba83b11c27d7964707f6b58b103caf3f596cb86669d33d843a5cVirustotal results 26.67%Heodo
2020-09-03mes_2020_09_03_31148.docdoc e42a5e7775e7be97e39d3f3f792bde9f6bad2b1a2e5c2832bf3956328e57e452Virustotal results 27.12%Heodo
2020-09-03Arc.docdoc 290ed9c24539d01f8be31a788976ceda4646eccf4c0d685d5907a924a0aabf49Virustotal results 27.12%Heodo
2020-09-03Rep-20200903-3590.docdoc 08461750f88454bb39066eb05f966d9592f736fee04659787314b643da114389Virustotal results 26.67%Heodo
2020-09-03LIST-20200903.docdoc 93626477fcc86e6dbc1fed84e7551bae12332fa4ea8799f4dfde98e5f1d071d0Virustotal results 27.12%Heodo
2020-09-03mes 2020_09_03 WX5026.docdoc a3e2eb1611caf695f981fe0341b42b3eb3ce6c89d4c5592e3a6f42de7fd61c50Virustotal results 26.23%Heodo
2020-09-03ZDA3565 4598.docdoc 5b27a5e6cdae618e9eb5e14035ea32c95ce43e30a8c36e1402d81e941dbebb03Virustotal results 26.67%Heodo
2020-09-03DAT_20200903_0364116.docdoc 8599de55c3e38503985cad1e6a7ea642de4c05b2233e45902e175227dae2a6acVirustotal results 27.12%Heodo
2020-09-02Inf_20200903_T298538.docdoc 61b040083e7c96e1cc10104a6bbb4fe6a9fd37affef67d18baa7e61554dec2d2Virustotal results 26.67%Heodo
2020-09-02Arc_2020_09_03_451615.docdoc e2903eb4f9230ac21528b58d84f15ae6dbd4191f8f0ca869657e9f04d6b1ff75Virustotal results 25.00%Heodo
2020-09-02427_20200903_341.docdoc 6e6db219ffe9ff6be1e7df214bd10146f8df7e51344845c7c8ed5ab7954e58a6Virustotal results 25.42%Heodo
2020-09-02Attachments-20200903-XF098.docdoc 42cb24fcecf7fda3dac12fd3cd37e79730f914e718de105352f702edd99427c1Virustotal results 25.00%Heodo
2020-09-02LIST-FV124.docdoc bdb1bca8969343d2a7323c24065f294827f3f79eb047d138c5102bc9a026530eVirustotal results 23.73%Heodo
2020-09-02Attachment_2020_09_03_9925801.docdoc 3984d62229bd9ebaf24af039aa5741ede99e729aaf51da3ce067332c8f0542b5Virustotal results 21.67%Heodo
2020-09-02INF-6722400.docdoc 24ed6a561e5c248b34d17090ff13dcb01f60d6451b44ab896e2a197f8fe2a337Virustotal results 22.03%Heodo