URLhaus Database

You are currently viewing the URLhaus database entry for http://wintersilence.de/cgi-bin/https:/OCT/DlgX3vzEMl/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	453203
URL:	http://wintersilence.de/cgi-bin/https:/OCT/DlgX3vzEMl/
URL Status:	Offline
Host:	wintersilence.de
Date added:	2020-09-04 10:31:14 UTC
Last online:	2020-09-07 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-04 10:32:14 UTC to abuse{at}strato[dot]de)
Takedown time:	2 days, 22 hours, 44 minutes (down since 2020-09-07 09:17:07 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-04	MES-20200905-421.doc	doc	5c812ff66278cf61e89871fd5d02ba1e06092920cbface28f9710fd77ca413b2	20.69%	Heodo
2020-09-04	doc 20200905 6451.doc	doc	50d0908dff351c8fcdfd307f4c93cad6065d4c10c2614fd4201209f862681cfd	20.34%	Heodo
2020-09-04	Inf_2020_09_05_7986435.doc	doc	44f213e9ff99dece96ea33d94a4e46bb3e508480002c5e255d46ca711b44a9e3	19.30%	Heodo
2020-09-04	Doc.doc	doc	17387deff7e3725fb0ae1aacebcb5e9be101e9ad64a337ce858202ef07458f1c	20.00%	Heodo
2020-09-04	Attachments 2020_09_05 SLF809.doc	doc	4833c57c4ff48c2720247aa3bc9c8d62222f9fe3d095924030c344bfa8673847	20.00%	Heodo
2020-09-04	doc-20200905-474.doc	doc	d22f6705c1735812ddadd90de20741627b3116e4f8f97de636b160757970fc90	n/a	Heodo
2020-09-04	5857391_031660.doc	doc	4ad62f2c57a013638168235884ebd78c0b024008e87c9b2e84719d7543132e4d	20.00%	Heodo
2020-09-04	083-41657.doc	doc	9f003b20287110dbbea8826454c0666aee189fbf57cb907e8cf072dfe3829b18	20.69%	Heodo
2020-09-04	REP 20200904.doc	doc	924f9439383931103e48f1a8618e3b5b0dc6e56ba52261116659d5dd2bbc3050	20.00%	Heodo
2020-09-04	INF-20200904.doc	doc	bd6fabb51f037d2253220c55129be8125a21f63b579dd69ca9d82604f0208b60	20.34%	Heodo
2020-09-04	Attachments-20200904-LKX081.doc	doc	9c0798c3e8889889ef70b039545920afb91f1508144606704a1889286192bbf9	20.34%	Heodo
2020-09-04	LIST 2020_09_04.doc	doc	aa3db031e17cd90af00951bc4d86c18c8e42328f47e9014b552993ff1b29c557	20.34%	Heodo
2020-09-04	Attachment-2020_09_04-263894.doc	doc	44d3865f9ac7efa31a3e9882aa38bad74bdd7e66627f48cf5f915a664ad329cf	38.33%	Heodo
2020-09-04	INF-QY756399.doc	doc	a253aef329c83499bce145efd31ae02cea4034649151064020f8db8f5e18901d	n/a	Heodo
2020-09-04	FILE_2020_09_04_F384.doc	doc	0cfb4e12de240822e52fa2d66698bdcfea13a994ccf47b7fa45634e0dfff294a	35.59%	Heodo
2020-09-04	file_20200904_R8860.doc	doc	112b31f94d0408209223b109553273ff732fcd2f05b532c53d7ef7e4658bec80	35.59%	Heodo
2020-09-04	ARC-20200904-8010781.doc	doc	42fd6389ecf90d4666efe038e42ef8bcaa115a1f57b09602f842d2986e9f281a	35.59%	Heodo
2020-09-04	doc_2020_09_04_2366.doc	doc	6811ea887aa1fb0b0947ae4c101b1bccd01e6be62529652d9a9c70a8879485fe	34.43%	Heodo
2020-09-04	Untitled 2020_09_04 VK03208.doc	doc	a49d6ff985f57e4d6e09893b343f97b9da664ae8c0b7c0e95f18f1a8f119f1a8	35.00%	Heodo
2020-09-04	U05528_20200904_KHU11449.doc	doc	c9af36ca0fb3bda5fbb9b2b047989fe8f0464034fef0f22352c26edb9f8f050a	35.00%	Heodo
2020-09-04	MES_S965463.doc	doc	c9b3d60eb5016eb7958189110cbe77208b4099ca5f9f4b71d6170a263905e07b	35.00%	Heodo
2020-09-04	arc-2020_09_04-6807.doc	doc	5da16c9f1af8807ac20e6adce0424c7e8fb78d5a4187584a3587876c2affb1e7	35.59%	Heodo
2020-09-04	Inf 332794.doc	doc	3cbc74cc86834166223864b87a975cd733c121faa9d9119b74ab5d27c6a2c687	35.00%	Heodo
2020-09-04	List 2020_09_04 WR76364.doc	doc	5f507662f25de9c594d9c295a8fcd49bab262c3b83c2a470ca2a0303834b57d1	35.00%	Heodo
2020-09-04	inf_2020_09_04_38511.doc	doc	e4006ffd7617f48dca3ed5e7220e159de2160b07f86452e1fcb7fa0f27ed1d9a	n/a	Heodo
2020-09-04	rep-20200904-UJB348317.doc	doc	2de84dc5866a028c50d2092b83ad65d0377d6419786fcd9b87c75a624600ebcf	35.59%	Heodo
2020-09-04	mes-20200904.doc	doc	7ba727e56ef8d6bd90965dcbe4450880fd516019d4c10f8a5d101541aa883dfa	33.90%	Heodo
2020-09-04	INF-596.doc	doc	482e43557c2b67031f8b9141f11291ebb6d9fa946193ab1287ef2010ab18b462	26.67%	Heodo
2020-09-04	arc-ZW039.doc	doc	c586e91d4d8099da78bb2b844f2da8385b3ce716069343a4020b32274c7ade39	31.03%	Heodo
2020-09-04	file_2020_09_04_7738.doc	doc	edbc22e742e12b2af45a775673812f2c751b4f9071a83b9565d3d547fa380655	29.31%	Heodo
2020-09-04	File_2020_09_04_16616.doc	doc	be6a2393d8d58557a21737649e0977851d793862f1b80f1d27a1ee2ee70b3154	31.03%	Heodo
2020-09-04	DAT.doc	doc	1a2267bf7b914a9de28507fa9a91a5ae83a2441428bd581f461b67abc2e84423	26.23%	Heodo
2020-09-04	dat-2020_09_04-361.doc	doc	7160ce21f102d1b919bee53947094d83fd11055b2eadb90b11d5923498d504c3	29.31%	Heodo
2020-09-04	59618 2020_09_04 DW71106.doc	doc	fe8b0f5cf9354ea102596195bbbf5947c2103a393c585873166112b4734d3169	27.59%	Heodo
2020-09-04	Attachment ZW582531.doc	doc	1c3e3bdb04dc52f5610c1079242b43b61f136a2a328a6813fe492e4092cd6e4a	n/a	Heodo
2020-09-04	272Z-20200904-8318156.doc	doc	006573a1a4acf93e1940fd56fea0e62fa51082d6e0209689974721fc1b3f9f7d	25.42%	Heodo
2020-09-04	X2591_2020_09_04_D759881.doc	doc	92292a49939cb6ff5b8d8da77b4c5a898f4d833bbf5ec9fc2ec997e254c91e35	n/a	Heodo
2020-09-04	Inf 2020_09_04 209.doc	doc	2e6992209a57f96c89556ed36c0e872bf312cc0e79e673c6888fe3b263c1ce06	23.73%	Heodo
2020-09-04	Doc 20200904 241844.doc	doc	cb6f8268789cd833ce1b0c40a720e8f7b6bb9ae5c3d8cb8ae59e66391c81f606	20.34%	Heodo
2020-09-04	List-2020_09_04-ITC6388.doc	doc	0b32acf0a3322fe655fc8ea7251ece0b782a819ae84d5819cbd4f1e2ce7fb031	21.67%	Heodo
2020-09-04	doc_2020_09_04_PS7465.doc	doc	85bfcf83a2189cecee6fa6a8afbbed1f9986025e4783fda2ae91921c38e8b2c7	21.31%	Heodo
2020-09-04	DAT_20200904_0209143.doc	doc	50b57183a110a184c3028a10dfc67efbf04a18c1afe062e8ecf4b92694fbad23	n/a	Heodo
2020-09-04	file 2020_09_04 SV60519.doc	doc	eb2264ac02ea6f6ca9efed74315f140e86357be821112bba1c3b3a1f8b70e8c5	27.12%	Heodo
2020-09-04	FILE.doc	doc	ca900ae40752b2a78feb23b6d8c3f29f674621fc5a6d90b99c3f2f2c6efbe075	26.23%	Heodo
2020-09-04	51187-601848.doc	doc	3707b5de1e09741a173a932af10c341420b9303dd71c5e228345a8a9076edc11	n/a	Heodo