URLhaus Database

You are currently viewing the URLhaus database entry for http://liswear.es/wp-snapshots/http://LLC/BzVEb0wRmqg/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:451973
URL: http://liswear.es/wp-snapshots/http://LLC/BzVEb0wRmqg/
URL Status:Offline
Host: liswear.es
Date added:2020-09-02 22:09:14 UTC
Last online:2020-09-03 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-03 08:42:03 UTC to ripe{at}unelink[dot]com)
Takedown time:1 hour, 35 minutes Good (down since 2020-09-03 10:17:56 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-0345495802_20200903_D774459.docdoc deb0c36ce512ff5134c4dc8d2a02dddb984a99b9020e41eb5a2e615e05cc8cb9Virustotal results 18.64%Heodo
2020-09-03MES-KF75614.docdoc 21b54f9e86f5c5cc7386d77b189b766d1311f69089a12b40813c1d9e5aff9da2n/aHeodo
2020-09-03Attachments_JOO29909.docdoc c0cbde26c26008c28e57c09b3755a36c862bf431e69e8a8c6efa181a5c135343Virustotal results 18.33%Heodo
2020-09-03O506_20200903_QW787.docdoc 04984682aebaabd0ce8f3e09184ef4b4176cd9dbe0643776ab9a33e09b4f5f72Virustotal results 18.33%Heodo
2020-09-03file-20200903-M4268.docdoc d7e28dd65d5aab6b17a6509ad8869ce65f0838f59de7b034f9a0ea7775a19c35n/aHeodo
2020-09-03file_3700841.docdoc bb8be6e3bccde229bb6e346e4f516a05351234e0f4e76d37271e1cd164dbd5d4n/aHeodo
2020-09-03rep_KNK2830.docdoc 2d05ca541e0f2f0062ff2f5bdd4c3d472180f28d4f7084b30c361182249b7de4Virustotal results 37.29%Heodo
2020-09-03rep-20200903-L211.docdoc edd24d1a4d38c00b10ada9eaa24138cdbb5b2d6fcb80ff5350576827cf792494Virustotal results 35.00%Heodo
2020-09-03Rep_2020_09_03_560.docdoc fc90610a242c7e63c5308bdbe1465659981a65be23ca2ee1d99930fdde9cfdcdVirustotal results 35.59%Heodo
2020-09-03List 832.docdoc cacf08dc29380900a46bd3ef7a8d9df051aae704102a5878816183cfe16caf1bVirustotal results 31.67%Heodo
2020-09-03T5659.docdoc 3505f54cbf2ddab863054dc37a1c898cc5ff3f4dc69ef57ca0f8a32a132588e1Virustotal results 32.20%Heodo
2020-09-03LIST-20200903-EET767350.docdoc 610f9b964005fb3e89a45ddeb0555cb5137065429a651730c5aa68bfb59fcdfcVirustotal results 29.51%Heodo
2020-09-03doc_2020_09_03.docdoc 3eaff0adaedb721bdcb992b625696f79e232fa822f13b1183b30939b7ed0b4ccn/aHeodo
2020-09-03Attachments_20200903.docdoc c4e63aa4bd93111e81fc78b0cf516be383a95aaa80e1afbed1215283c56ad3adVirustotal results 30.51%Heodo
2020-09-03list_2020_09_03_3934547.docdoc fec90b9f6fbd9d737bfb18e0f1801b841454d1857793a0cb6484f891a1a495fdVirustotal results 30.00%Heodo
2020-09-0332790SW 20200903 993676.docdoc 37ef3759b818dcea7d8eb53b1154b78d5112b369a37d266135ca3b3852922114Virustotal results 30.00%Heodo
2020-09-03Dat 2020_09_03.docdoc de08010ddabc84739d35ba636f0e5392d059431e11e6f96b88541e693d421882n/aHeodo
2020-09-03file_2020_09_03_014652.docdoc ed9827a493cf03febb984e81ed9277dd7da365a7d84aeed254f720d8072eadean/aHeodo
2020-09-03Attachments JBK615383.docdoc f1273c5ac81abd89c31217015042acb434eea654480322da66ca1eaa119c73ban/aHeodo
2020-09-03UNTITLED_2020_09_03_5494.docdoc da1132b0bfe7505ba5697d51eeda268a7f7a45a3013adabdc071716ae957d8e7Virustotal results 31.58%Heodo
2020-09-03Dat_20200903_475.docdoc 3dfe28733e74beee2043c25a24a6ff3041c2411ce6054f8c843537c3f8c3b973Virustotal results 28.33%Heodo
2020-09-0314711.docdoc 1c4ae5147277da1ae2e1698cb5bbb78013414bc44ec134e7b0b5443ef4839f62Virustotal results 28.33%Heodo
2020-09-032313-AK966400.docdoc 8199d7cc599593d80152545c14a29f7e8c5bd99b5e114c67ff1d3c8938432cbcVirustotal results 27.59%Heodo
2020-09-03arc_2020_09_03_FME007.docdoc 433967efefa29b0d97818d4e20329a19d8192755d65023bbb679d96ef4c23004Virustotal results 26.67%Heodo
2020-09-03Rep 2020_09_03 326.docdoc af1503fdb9c16f88d297af1483bd07854a02a4ad77bbb4600e0e8f0397650fcdVirustotal results 26.67%Heodo
2020-09-03file.docdoc f9bf249b9678ee472c9c70694d9a1e9b6eef7388f21427773194d4e94418f805Virustotal results 25.42%Heodo
2020-09-03Arc 20200903.docdoc a05c6c80c1aed4ef6f7d276ea976bd3a3ebfbf8e80f46273376440eff47bc87bVirustotal results 27.12%Heodo
2020-09-03Inf-20200903.docdoc 12eb109b5cc21f61356696a06698808a9bcc8e97a6d3a5ef1c96d3aedd57b13cVirustotal results 27.12%Heodo
2020-09-03Dat_6308.docdoc 085d2ea87b81f4e928025643fbb3e252b20f52d3dfca8d8a91c7c99188b67e68Virustotal results 26.67%Heodo
2020-09-03arc-J159309.docdoc 3b9ae29dfc77210c64539999fc0cc72fed7df798f7f5adef5c8d5bb7ab9ab4afn/aHeodo
2020-09-03SO5953_EH354.docdoc a3e2eb1611caf695f981fe0341b42b3eb3ce6c89d4c5592e3a6f42de7fd61c50Virustotal results 26.23%Heodo
2020-09-03FILE_20200903_6825.docdoc 1d31079c43f1a74caa0a2b3f3d3ce420472f1850cba8580660e016333fffc799n/aHeodo
2020-09-02Mes_2020_09_03_OSC982.docdoc b4516e62068c35d8814a1d175c4f1062a9bb15afc1120a5c017d52a0b8b2ab98Virustotal results 27.12%Heodo
2020-09-02Untitled_JSA894861.docdoc 599a861ba05b57347331fbb180078cc4074c60d71c1e24c6b1469d18f139c4e7Virustotal results 26.67%Heodo
2020-09-02dat 2020_09_03 3544.docdoc a9604493990426298f032a099836b353e88a4b5152690b58c6eb87865d2864e8Virustotal results 25.00%Heodo
2020-09-02Attachments 2020_09_03.docdoc 6e6db219ffe9ff6be1e7df214bd10146f8df7e51344845c7c8ed5ab7954e58a6Virustotal results 25.42%Heodo
2020-09-02UNTITLED-461.docdoc 9e843c5909d8d51573070e5305cf349f5f653516f981ed2408fe345d6917f6ddVirustotal results 27.12%Heodo
2020-09-02File-E362916.docdoc 3e12b4e6701c06712933cef6cf69f6837c8faa4e4e33ebc312788ef3523af8f2Virustotal results 23.33%Heodo
2020-09-02List 20200903 7924700.docdoc de53464b8b694b4f672a2f55429b372de0dfd04906cc310700ad0201e16bd5ecVirustotal results 21.67%Heodo
2020-09-02INF_20200903_YF394854.docdoc fd3a469c84d289db52efd3a878e37adaf9a666de126cf3aa1fd4f0870abaff2fVirustotal results 21.67%Heodo