URLhaus Database

You are currently viewing the URLhaus database entry for https://pronachfolge.de/cgi-bin/https://FILE/o9caA4QYishnW// which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	452784
URL:	https://pronachfolge.de/cgi-bin/https://FILE/o9caA4QYishnW//
URL Status:	Offline
Host:	pronachfolge.de
Date added:	2020-09-03 21:35:06 UTC
Last online:	2020-09-04 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-03 21:36:15 UTC to abuse{at}strato[dot]de)
Takedown time:	1 day, 0 hours, 17 minutes (down since 2020-09-04 21:54:12 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-04	File_20200904_AY9185.doc	doc	24401840c0ce4a3b8e35bdf4f126f227be7487c4747c57f1bea55e0d488ade46	35.00%	Heodo
2020-09-04	inf 20200904 W442522.doc	doc	d4416a6ff0dbbf8a60d1df15030c7eeaf6be3883b9f4df72bd6312eb84caa672	35.00%	Heodo
2020-09-04	doc_2020_09_04_91426.doc	doc	60417a3fac59e91bb0031c7e6fc97a808021296c159f11631bc3ac3e34ec5603	n/a	Heodo
2020-09-04	34027014-2020_09_04-YHD37548.doc	doc	36ffaaac1fb3d49840166459ad272836f1add6d89d8733c4245582048c7b55d3	28.81%	Heodo
2020-09-04	Attachments-397.doc	doc	20f0a0ba4cd0dac615e918dd489d36a9dbe9da8eccd28074379ccb9297f44202	n/a	Heodo
2020-09-04	ARC_20200904_654814.doc	doc	edbc22e742e12b2af45a775673812f2c751b4f9071a83b9565d3d547fa380655	30.00%	Heodo
2020-09-04	Rep-2020_09_04-LD93182.doc	doc	be6a2393d8d58557a21737649e0977851d793862f1b80f1d27a1ee2ee70b3154	31.03%	Heodo
2020-09-04	dat-2020_09_04-FF9528.doc	doc	ba82dfa2da1757e5cb6ed6f9bb2d2c820d055dbab664b798475fd4a94d8476b9	28.81%	Heodo
2020-09-04	LY5408-20200904.doc	doc	533b65838696f229623a8367b9367b80001a7af8125899e324d550f4b4c64456	n/a	Heodo
2020-09-04	LWH13066 OQV289885.doc	doc	3b451d2d28836b979207203baee9be6f022bbe4132ebf4968ae41b510aaa869d	27.59%	Heodo
2020-09-04	file-20200904.doc	doc	1c3e3bdb04dc52f5610c1079242b43b61f136a2a328a6813fe492e4092cd6e4a	n/a	Heodo
2020-09-04	5842Y_2020_09_04_FUP6888.doc	doc	3b8964cde0e41b835a06f77a2d1834dac132f78cdebaf8b6e89214daf39b8752	n/a	Heodo
2020-09-04	FILE T793.doc	doc	6ba1180f37e95dd4238a52435a56d2cb1483ed9a34af53b44e0fecd5863244eb	n/a	Heodo
2020-09-04	file_20200904_8109.doc	doc	beb360bbf4f0bf929e1a8d6e734b006c12269cf4e034909c884cbdd8a9374c65	21.67%	Heodo
2020-09-04	list 2020_09_04.doc	doc	f7347d7eb634ea2c2bdeb69d026c099ca12acf563a5b6681e6467ce9c7260619	21.67%	Heodo
2020-09-04	Doc_2020_09_04_DUB2831.doc	doc	0348b2d84a9245b99853803db4a5d8a6bb6b89ba2b30d2d201dffbe97b718d82	21.31%	Heodo
2020-09-04	dat-GU158753.doc	doc	5e01f376491f37354db3791f6ec1c53893e852d5874971655f2b8c0c9bfa35cd	20.34%	Heodo
2020-09-04	Rep-2020_09_04-TVW9278.doc	doc	a3a6ac7d192be2e1805c8322a5902acff68c4ed635490764dff2be34287a7b6f	27.12%	Heodo
2020-09-04	dat_20200904_JEP542560.doc	doc	8c4a8a1c7d4ddbfd0b727a5f169b6bc78e7997fd2b0947299d663a215bb3a9d9	27.12%	Heodo
2020-09-04	3581GC-20200904-0168.doc	doc	ca900ae40752b2a78feb23b6d8c3f29f674621fc5a6d90b99c3f2f2c6efbe075	26.23%	Heodo
2020-09-04	VPZ673 20200904 252874.doc	doc	dd91e0f54696016ac33f44dbbabf15a089d0d2685b7e468529013e86c9522a99	27.12%	Heodo
2020-09-04	list.doc	doc	b6c9ea0c6311713092b07d9f28b5b798d84789c78cba9ce6f80d967cfec02942	26.67%	Heodo
2020-09-04	List_96410.doc	doc	76edab16c0826931fc12090a44f6f773625fba9165acd2459a0e27eeabe00cee	26.67%	Heodo
2020-09-04	94234Q 9287.doc	doc	16b7f00eb1a7bf6beaf28225b4535771838ac985608922be7cfc6d13b1ae33e8	25.00%	Heodo
2020-09-04	inf-2020_09_04-T67874.doc	doc	4dd07b5f70becd9fa1cd8ebbb833f449c200db06f39d962f13d96d55f4e61802	n/a	Heodo
2020-09-04	REP-20200904.doc	doc	5c3e085b8dc0398471b039b43d850dc0dd50acd421707eb3296026e53b65d5a9	23.33%	Heodo
2020-09-04	Attachments_2020_09_04_U2003.doc	doc	4db2255d31946791dda100686fe140e9c3b4df0060994abd723c697a68b5819a	23.33%	Heodo
2020-09-04	Mes-PAP133181.doc	doc	12f0fe0be2051b0b2db3468b20798d7813c859384af5be7c18845165d1bc9240	22.41%	Heodo
2020-09-04	list_566.doc	doc	bbb72c4df6c036dd3b187c18c6ba7bf547ed934e658bdcd5d3c23d14d244c2ea	23.33%	Heodo
2020-09-04	doc 2020_09_04 158.doc	doc	d9c975b6db619552db6df9461b3c0947dbeb829698591386f2c86994a414e005	23.33%	Heodo
2020-09-04	Arc VTX6127.doc	doc	dff60dc9f114e848e0904ff850adf4dfad09811c2ab905e56b1cb3f16dfbbe12	22.03%	Heodo
2020-09-04	LO9300-89786.doc	doc	1b9de5149166550851ee26d1ff101cb636ab70e0162faf31397c1b3d9efb8ac5	21.67%	Heodo
2020-09-04	Inf-20200904-RJ3926.doc	doc	2be118d48f3e89cf53df13c43a01cdea40d8ffc9ed68e343636386badff6200d	22.03%	Heodo
2020-09-04	LIST_2020_09_04_6851.doc	doc	987e6058bcbb6e6830567bcbf092de202f9fc61bc7b1a6f282f6ee741685e442	43.33%	Heodo
2020-09-04	LIST 20200904 O9262.doc	doc	12faca932c77d851b530ebd1ee39f12e9c7b755904fb11fa61fd7acb92afdf62	40.00%	Heodo
2020-09-04	ARC.doc	doc	933a5acf70c2c8f24a3d359a43ab898e556cdcae740ddcaf33acbc356ae1d9d5	38.33%	Heodo
2020-09-04	Doc-20200904-5010599.doc	doc	03cb9a738ad3ba7f5744d092532b2e578e9ade9b376af945fca5faf115b06c4b	40.68%	Heodo
2020-09-04	Untitled-2020_09_04-EE455.doc	doc	0ff1c95a7d850d74903fb10610c4d99e54fd900d51cad0f2deda82e1122f403c	40.00%	Heodo
2020-09-04	MES 2020_09_04.doc	doc	2fcecf7ef769ae49ecdf3905e7c5e7aad9a7f0ac4279fe518ed0108f25a0ec79	40.00%	Heodo
2020-09-04	List-YR14637.doc	doc	ac647d90b3039bce667132dc5186534b23351caaf4e883d9bf6330a66d6d84a2	40.68%	Heodo
2020-09-04	REP-20200904-393148.doc	doc	ede8d998dc31e2c855d01100bae27909e6fad8672e5bb1e7afced120b025c6a4	40.68%	Heodo
2020-09-04	Inf-20200904.doc	doc	b928a4ea1aae65b1c3ee2634f0d4d3bba7d8f0d7bd647c3befb30ba0f8b6a1ab	41.38%	Heodo
2020-09-04	arc_P63923.doc	doc	6c3530951ad2bde0a96b5bda4698fb3638e360f5176d3f6aa4f9ea0570a3f45d	40.00%	Heodo
2020-09-04	Dat 2020_09_04 PDH890878.doc	doc	4808444c5d5d505fcdfe5814913d92dea2c41dbd68018cff2817cabd134441a6	41.67%	Heodo
2020-09-04	MES 20200904 74266.doc	doc	b25414b4b759b6517cfc1ce36e58d10a5aac59912adc8230095f50f6659af778	40.00%	Heodo
2020-09-04	file-20200904-75332.doc	doc	90d7013803edb798ee2da7fcf3de07420ccd536dd01c96d0c787a80c0923f08d	40.00%	Heodo
2020-09-04	file_2020_09_04.doc	doc	113f271d566b508aed976158e057211703fe30c314960665466fe58d9e08e50b	40.00%	Heodo
2020-09-04	Rep-2020_09_04-246366.doc	doc	3b921395ead4db8129425113780d7d7391058b9a70f1bfadaa36d56c48de30ed	40.00%	Heodo
2020-09-04	57864LD-LRX323.doc	doc	f9cb536060fce2bb170aa95f67947db48d9b7e43e2095dad2337eda509017040	40.00%	Heodo
2020-09-04	ARC_2020_09_04_FJS480717.doc	doc	b0eafc0cd064f11cf1aaea20c1f55afc0770f81b4a59723d453b1ea6f6dd276c	n/a	Heodo
2020-09-04	list 2020_09_04 O284.doc	doc	41b51c9c72e134b6a5183ee31357d58d19e875c56db068adc0b5f8a3d12bdc3e	40.00%	Heodo
2020-09-04	List 2020_09_04.doc	doc	6300e903bf3720bb91e4db31ad186d98f0b8307f0abd3b785145f72f0a89edef	40.00%	Heodo
2020-09-04	LIST 2020_09_04 76918.doc	doc	ee7586771fa02df0ef18b9f88c3bb45135371e5f7a16f6304b1b500a99a0ca6e	40.98%	Heodo
2020-09-04	Attachment 20200904 Y280.doc	doc	c9760ed3a6abb462e2d429280f83f0e912114c2b1923fa1fec74b3ee350afa78	40.98%	Heodo
2020-09-04	INF 8771445.doc	doc	d6da8adc7df4680bdfe56aded8385d20e63b8af6ac83ff2abdccf2910232809b	40.00%	Heodo
2020-09-04	dat 20200904 1814744.doc	doc	f5ace8d328883020ed6b37dfb50687886670fba064afbbbbf6e9e695ce35e490	40.98%	Heodo
2020-09-04	MES 20200904 5546.doc	doc	479a6416cfb665d2d0f0b6e39d11282a0d31d799d87898d50f066e8d564808f6	36.67%	Heodo
2020-09-03	MES_2020_09_04_LS278763.doc	doc	5b1c5637bea570eeef52ff79044a41de92de4e33ddffcde3b3611bee6fc8e5b1	36.67%	Heodo
2020-09-03	Attachments_2020_09_04_439.doc	doc	ea4fc36885f9979ad9f5fa421926dba611a7a272abbc518fdb4da57125d0f548	32.79%	Heodo
2020-09-03	File-2020_09_04.doc	doc	5870705910f4290f13346efd3c9113483974723cc840cd330844efa6f5b3be19	34.48%	Heodo
2020-09-03	doc_20200904_S3033.doc	doc	dec0fc4e4611e340eb402f29ab07769dcc51d4a2806a8aa520f4332aca26f2db	33.33%	Heodo
2020-09-03	Doc 09605.doc	doc	939b166130d34042d2f4e49e43067b7670e409ae8dfe5e7d675160a838878230	31.67%	Heodo
2020-09-03	DAT 2020_09_04 E0857.doc	doc	93b78de73040a3429d67f551e6a789cd2a141185e4bdba2cb74d575346b169f8	31.67%	Heodo
2020-09-03	Attachment_2020_09_04_DX310507.doc	doc	2f9910b3fffce2373726bb19cee907def1ad66df1c9210d955647c7a638ef9ed	30.00%	Heodo
2020-09-03	REP 20200904 M227.doc	doc	eb96e6409fa3b1e2510201d45d3a629be387c1d50ca84645b13d0614702d7c62	29.82%	Heodo
2020-09-03	mes 8548223.doc	doc	c9915f741ce8d4cf9ca8c30d7711a0152562b3b68514486b5b49442ea9fc3b06	29.51%	Heodo
2020-09-03	FILE_2020_09_04.doc	doc	3c9f9e08bf1785b8c6c1fed306eb5e322fb63ea73a8d01a9fc83af4006d64008	31.03%	Heodo
2020-09-03	R89269-2020_09_04-788.doc	doc	7e3a1e6d36b83671b756096e60fc53cab42b64bdb208c976b889540d6e90bf17	28.81%	Heodo