URLhaus Database

You are currently viewing the URLhaus database entry for http://werkwijzer-oldenzaal.nl/wp-content/https:/Pages/X5eXRItESMv2yHasU2LF/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:452036
URL: http://werkwijzer-oldenzaal.nl/wp-content/https:/Pages/X5eXRItESMv2yHasU2LF/
URL Status:Offline
Host: werkwijzer-oldenzaal.nl
Date added:2020-09-03 01:05:06 UTC
Last online:2020-09-03 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-03 08:39:44 UTC to abuse{at}antagonist[dot]nl)
Takedown time:40 minutes Wow (down since 2020-09-03 09:19:49 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-037241 2020_09_03 787569.docdoc db086b8728ea16bc67645ad3a8087b50c7876cb33c1e752f445d11a5c4c42dc2Virustotal results 18.33%Heodo
2020-09-03Inf_D365.docdoc c0cbde26c26008c28e57c09b3755a36c862bf431e69e8a8c6efa181a5c135343Virustotal results 18.33%Heodo
2020-09-03Inf VA652613.docdoc 04984682aebaabd0ce8f3e09184ef4b4176cd9dbe0643776ab9a33e09b4f5f72Virustotal results 18.33%Heodo
2020-09-03DAT 20200903 670468.docdoc 55225f33095a3abc91e9eb162d30c62a30a71fb6788eb1852007310f69a11be0n/aHeodo
2020-09-03File_2020_09_03_5697352.docdoc 1a4f785565e762ebb5114a4fa08330ab74c2e36f6b8c581022ee6b475b0b9313n/aHeodo
2020-09-03ARC-2020_09_03-JTV5992.docdoc 2d05ca541e0f2f0062ff2f5bdd4c3d472180f28d4f7084b30c361182249b7de4Virustotal results 37.29%Heodo
2020-09-03FILE_20200903_EEN640.docdoc edd24d1a4d38c00b10ada9eaa24138cdbb5b2d6fcb80ff5350576827cf792494Virustotal results 35.00%Heodo
2020-09-03Mes 6687.docdoc 3e0be4ed5da1702faca0d2cd0ca1f13267be6c7af90459dd04c5de4478cb9220Virustotal results 35.00%Heodo
2020-09-03Arc_4584.docdoc cacf08dc29380900a46bd3ef7a8d9df051aae704102a5878816183cfe16caf1bVirustotal results 31.67%Heodo
2020-09-03FILE-2020_09_03.docdoc 3505f54cbf2ddab863054dc37a1c898cc5ff3f4dc69ef57ca0f8a32a132588e1Virustotal results 32.20%Heodo
2020-09-03dat 2020_09_03 2212.docdoc 610f9b964005fb3e89a45ddeb0555cb5137065429a651730c5aa68bfb59fcdfcn/aHeodo
2020-09-03INF ZUD823.docdoc 3eaff0adaedb721bdcb992b625696f79e232fa822f13b1183b30939b7ed0b4ccVirustotal results 30.51%Heodo
2020-09-03794438 2020_09_03 0985.docdoc c4e63aa4bd93111e81fc78b0cf516be383a95aaa80e1afbed1215283c56ad3adVirustotal results 30.00%Heodo
2020-09-03file-2020_09_03-KL528.docdoc fec90b9f6fbd9d737bfb18e0f1801b841454d1857793a0cb6484f891a1a495fdVirustotal results 30.00%Heodo
2020-09-03REP_20200903_154671.docdoc 2d722fb6b23c15b0147b0a8503dd6ba60b38e235cda2ae6a722abca5e6af9045Virustotal results 30.51%Heodo
2020-09-03FILE_201728.docdoc de08010ddabc84739d35ba636f0e5392d059431e11e6f96b88541e693d421882Virustotal results 31.03%Heodo
2020-09-03FILE_20200903_OL078.docdoc b9a8cd441d4272f268bfe4f6d07d3e7d847df248f08827b609db5336c4cb8c6aVirustotal results 29.51%Heodo
2020-09-03MES-2020_09_03-05233.docdoc b4f5b53b9a038bcfed6b0ede01b82d41c3829d4e18e0672ed48ad2ed6795ce29Virustotal results 29.51%Heodo
2020-09-03LIST_20200903_474051.docdoc f1273c5ac81abd89c31217015042acb434eea654480322da66ca1eaa119c73baVirustotal results 30.51%Heodo
2020-09-03dat 6215047.docdoc da1132b0bfe7505ba5697d51eeda268a7f7a45a3013adabdc071716ae957d8e7Virustotal results 30.00%Heodo
2020-09-03Inf 20200903 M6274.docdoc 1fd0d748533826575c14cf110f2ba272517b328051ae72c9d397568d05ea93ccVirustotal results 28.07%Heodo
2020-09-03LVK010 2020_09_03 6442.docdoc c41f3d11c142049ed7f425035baa31c3fd11251621fd38312b9d36e632f6b18fVirustotal results 28.33%Heodo
2020-09-03mes_6022.docdoc 2cda8e5f76cf5db89f157f738694792ea3ff19076b27e540a30116add841db9fVirustotal results 28.81%Heodo
2020-09-03Mes W481.docdoc 7a67e14b283722cde191123457b9d45b4da03bd8bf9412764fc8fb393bcdefdfVirustotal results 24.14%Heodo
2020-09-03List.docdoc af1503fdb9c16f88d297af1483bd07854a02a4ad77bbb4600e0e8f0397650fcdVirustotal results 26.67%Heodo
2020-09-03TO20667 2020_09_03 HC264.docdoc 331f6f1c7361fec9bc67094b8f722822cd76a5ed5f52d5b84750dfd66410b382Virustotal results 26.67%Heodo
2020-09-03mes_20200903_5839.docdoc 030dc88d3c5827bd9cd7bbf0117a6cfdf55fc56d5b8d4715dfd85406a04ffd4an/aHeodo
2020-09-03mes_2020_09_03_31148.docdoc e42a5e7775e7be97e39d3f3f792bde9f6bad2b1a2e5c2832bf3956328e57e452Virustotal results 27.12%Heodo
2020-09-03Doc_2020_09_03_62351.docdoc 085d2ea87b81f4e928025643fbb3e252b20f52d3dfca8d8a91c7c99188b67e68Virustotal results 26.67%Heodo