URLhaus Database

You are currently viewing the URLhaus database entry for https://obazda.de/WebCalendar_01/https:/LLC/WV755sTkod/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	453085
URL:	https://obazda.de/WebCalendar_01/https:/LLC/WV755sTkod/
URL Status:	Offline
Host:	obazda.de
Date added:	2020-09-04 06:59:03 UTC
Last online:	2020-09-04 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-04 07:00:16 UTC to abuse{at}strato[dot]de)
Takedown time:	15 hours, 42 minutes (down since 2020-09-04 22:42:16 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-04	FILE-2020_09_04.doc	doc	e4006ffd7617f48dca3ed5e7220e159de2160b07f86452e1fcb7fa0f27ed1d9a	35.59%	Heodo
2020-09-04	Attachment 313210.doc	doc	4f574c1f2f33241e9d1d44b74075d96778a9a152808b8c397f19a51c1b16ab2d	33.90%	Heodo
2020-09-04	file 2020_09_04 FZS08028.doc	doc	1be69671e6bec7358d5a7ea5bfe04ad1acad931ee84e73f3bcc53f78d28a7052	n/a	Heodo
2020-09-04	MES_2020_09_04_PLN412.doc	doc	0cac10e553ca0da14b7f6e1bf4c0586be92226b4edb922d9d7a79fd366142df8	n/a	Heodo
2020-09-04	inf 2020_09_04 5803.doc	doc	0fd7dcfa200a1b0da02cc3578b15e97fdb192f4085d66ac383db864551155bff	35.00%	Heodo
2020-09-04	File-2020_09_04-POC8698.doc	doc	60417a3fac59e91bb0031c7e6fc97a808021296c159f11631bc3ac3e34ec5603	n/a	Heodo
2020-09-04	K11091-2020_09_04-609.doc	doc	20f0a0ba4cd0dac615e918dd489d36a9dbe9da8eccd28074379ccb9297f44202	28.33%	Heodo
2020-09-04	Attachments.doc	doc	ac6a5c2f72c10af857d73db327000d07f01f791fe6638c339362584fe1293a4f	28.81%	Heodo
2020-09-04	doc-20200904.doc	doc	2b92a083d78d4854c3fa6ee427357e1a0c4f3b5fc4b22546712e350870b77c45	28.33%	Heodo
2020-09-04	List 20200904 G768.doc	doc	d7452abd23b4d0a252d67436bea5f98b177d6d4a707ce10ce71852940cf97a3c	28.33%	Heodo
2020-09-04	MES-20200904-PXN91820.doc	doc	6fe4e70594d98f07fc43fc54e2e24a57ba80babf404b803336a8c7cca7f4bd70	n/a	Heodo
2020-09-04	Untitled_20200904_680.doc	doc	533b65838696f229623a8367b9367b80001a7af8125899e324d550f4b4c64456	28.81%	Heodo
2020-09-04	761AXH 2020_09_04 6789.doc	doc	cba83b613d73f634da924685c3cfdd701edddbc80bd28399548cbdee1e5f4df1	25.86%	Heodo
2020-09-04	DAT 309.doc	doc	e04a181d4f71e29d0e1dd60e7ddaa50e20047dff94667fefcd0f582f5e3203a3	n/a	Heodo
2020-09-04	LIST-20200904-TWZ668454.doc	doc	3b8964cde0e41b835a06f77a2d1834dac132f78cdebaf8b6e89214daf39b8752	n/a	Heodo
2020-09-04	685997_I263.doc	doc	c27583344f73b13cb65d7c3cd67e313618cc794ef5b48f1db3e39adde0dd90c9	n/a	Heodo
2020-09-04	Attachments_2020_09_04_LWX6231.doc	doc	52a1f3085fece2adb5e447183da5a37ab0c90019b2237702ce65ead6ba03cf96	n/a	Heodo
2020-09-04	Attachment-20200904-JB79750.doc	doc	f7347d7eb634ea2c2bdeb69d026c099ca12acf563a5b6681e6467ce9c7260619	21.67%	Heodo
2020-09-04	Rep_C4416.doc	doc	6b6138015363422437174a3e66d6fe9830722c6af61b695c5bef3200fe97a98b	21.67%	Heodo
2020-09-04	Arc.doc	doc	ef71a4e7c9a6ea0844d8e1e667882eacc23b82d5a49596d4fec7ae808ec62c55	n/a	Heodo
2020-09-04	LIST-2020_09_04-X968786.doc	doc	eae2a3c4e7a60e5476ac2c92926540cf3c70568a318f1a20a996ebeb53e8749b	26.67%	Heodo
2020-09-04	REP OZJ8474.doc	doc	eb2264ac02ea6f6ca9efed74315f140e86357be821112bba1c3b3a1f8b70e8c5	27.12%	Heodo
2020-09-04	ARC_PLH969250.doc	doc	ca900ae40752b2a78feb23b6d8c3f29f674621fc5a6d90b99c3f2f2c6efbe075	26.67%	Heodo
2020-09-04	Doc AHV273.doc	doc	fe091cf9eba180793119db32fe94d4816c743d95fe73f73f8f8a11df2cd0aade	27.12%	Heodo
2020-09-04	rep LX168642.doc	doc	6b12df90c4f1f8bdf2bcc412748ab826992ecf7c8f1d6dff2768fff19be85236	27.12%	Heodo
2020-09-04	Arc 2020_09_04 528.doc	doc	b808a0657398e4cc49797e07b5519fd56682909338a9cd618547970286279268	25.00%	Heodo
2020-09-04	552RYJ 2020_09_04 4771140.doc	doc	4dd07b5f70becd9fa1cd8ebbb833f449c200db06f39d962f13d96d55f4e61802	n/a	Heodo
2020-09-04	Untitled-230433.doc	doc	35eae4bf4a4e774e6e01de12b1358e0b431ba0b625952ca4b650849e31cfb1f8	23.33%	Heodo
2020-09-04	ARC 20200904 8115.doc	doc	bfc004f7ac8d0c2e241dc8086e3e58fb542fcc47b5114ab614fa893199328acf	23.73%	Heodo
2020-09-04	FILE VWV190.doc	doc	741df8375c604df23cb9cc5bdbc6373f0b74df334fe2efd60bd6df7c5a398b65	22.95%	Heodo
2020-09-04	arc 2020_09_04 389085.doc	doc	bbb72c4df6c036dd3b187c18c6ba7bf547ed934e658bdcd5d3c23d14d244c2ea	n/a	Heodo
2020-09-04	UNTITLED 5552330.doc	doc	8dbc5aa0e47afc92f01ac0be897f8cfb5650e25857c1c7bdaf605dfc90a0d5f5	23.33%	Heodo
2020-09-04	doc_20200904_3517.doc	doc	970e16cc8aabea583a577bb3ca6a50b795357231ff02822fafb8aa7dd143667f	22.03%	Heodo
2020-09-04	MES_20200904_TG059.doc	doc	d38918707adc1b43963df18c7c3483e35cb906f58221fbe54adcbf770706feaf	21.67%	Heodo
2020-09-04	file 2020_09_04 PBO87908.doc	doc	a116a068131b7ef0d015c07614c3e6f346f604fd7d9b5b974b9f09a997916732	44.07%	Heodo