URLhaus Database

You are currently viewing the URLhaus database entry for http://odeftg.com/odeftg.com/https://OCT/JisZ4GPkuVF1RiIH8RZ/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:453343
URL: http://odeftg.com/odeftg.com/https://OCT/JisZ4GPkuVF1RiIH8RZ/
URL Status:Offline
Host: odeftg.com
Date added:2020-09-04 14:30:11 UTC
Last online:2020-09-25 20:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-04 14:32:03 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:21 days, 6 hours, 7 minutes Bad (down since 2020-09-25 20:39:59 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-05Inf_20200905_460001.docdoc 4c3f9a91ab8bd67a7de8b61f6d5e49c34a0c3ded123f63205f02d17ff570c204Virustotal results 30.00%Heodo
2020-09-05Arc 776952.docdoc 0b9a2df9ae8e7dd522a8250303134d9778a41e95d02c06cd0b6a060afdb62cbdVirustotal results 30.51%Heodo
2020-09-05INF LJG4936.docdoc e598cf9a18d4db4fa8174ec8f921eb470f8b844063cec6fa35185f7f8f1d2b4bn/aHeodo
2020-09-05arc_20200905_8120.docdoc 99b355a60a9590d4a7695c3e6dbd12bcc643041c7f98e39ebb7bd29d4300b770Virustotal results 27.87%Heodo
2020-09-05ARC-LTT84093.docdoc 36db57afc7d4faa57d7bbd559db7ca4ae2bd483caacaa9fba1a3cc6839b240a3n/aHeodo
2020-09-05MES 20200905 V779042.docdoc e89ae83996380754135f2a758f5a9506a7a44eb610c70b28f909b2f0b73ce548Virustotal results 30.51%Heodo
2020-09-0518039_20200905_CQF67344.docdoc c687016b2136760124efe54694e2980e93b56aa5278ec587b7290a01f02c93fdVirustotal results 30.51%Heodo
2020-09-05inf_A930.docdoc 178548af9f561e5bf22a2a3bf689025f6219b073e79e56ea0b74f164dc02820en/aHeodo
2020-09-05doc-2020_09_05-501426.docdoc d4c076603f475a562c8771e360b65b734aba563731f4417b117ecfad4297d562Virustotal results 30.51%Heodo
2020-09-05Untitled-28499.docdoc 27ad65edce895a8ac105708b7510859313c9f88cec6a66611b581bc480ad6676n/aHeodo
2020-09-05Mes_2020_09_05_07121.docdoc c1658fd6974ace7a621b0e46c9d3f1bbb8ad7d3ddeb3032082937f3133c1c063Virustotal results 30.00%Heodo
2020-09-05DAT_2020_09_05_Z607.docdoc dd845235b8dc3a025eea6b0904c7e90b610afc290c4b55a7921062ba9f33cddeVirustotal results 30.51%Heodo
2020-09-05Rep 2020_09_05 5741477.docdoc 62cc3eedb06b43f8a3e286b0a9f04cbf36fe240a532b217d91950ea20fa0ba9cVirustotal results 28.33%Heodo
2020-09-05Untitled_2020_09_05_7010.docdoc 1fde53646d2021d4bd959bcc2ee2b8c1db5ca4b112b58af96efc114ffd4dc6e6Virustotal results 29.31%Heodo
2020-09-05S916-20200905-08214.docdoc eda41409cac593fa280357f888dfed9313d45a2523ff59de058f32b76478d925n/aHeodo
2020-09-05file-YK872.docdoc 4845d731ee51494da878e4a1e0c22ad0e6e1885aebe593bb6b3adf115f9c84d3n/aHeodo
2020-09-05Attachment 2020_09_05 1515109.docdoc 173c9cfe44cb721e3d1edede6afda3a107dd78b74c1adb41c19fae5ae6a382d7Virustotal results 28.33%Heodo
2020-09-05Rep_20200905_XC636.docdoc b1d37441a65187f53492dcd30fe0d3fafb9de343694c7ac79d3ce5434cec9350n/aHeodo
2020-09-05doc_2020_09_05_XJD602597.docdoc 206feb1d69aba0e52a7d33975a49cc2a9443deb7bcf9fb4f8a6428ffcd95c97bn/aHeodo
2020-09-05Mes-2020_09_05-1969.docdoc 0ca5df179f725a9c12ba1385711972c7e55bc02359435e954db6e65f1e2036fdVirustotal results 27.87%Heodo
2020-09-050390762_ZG266003.docdoc dcb081f33d098bd8befd0776a185a13823b7a4f29087f39cfb3b1cc9693722f9Virustotal results 26.67%Heodo
2020-09-05FILE-2020_09_05-Y21233.docdoc 2ddd8ba7251afbeee6c41576c377265c1a2a9f5370cd66683c24db0c89a0062dVirustotal results 26.67%Heodo
2020-09-05Inf CSH220517.docdoc 346db091f843b130bc229ea6a6cf9d569e0a9d2408e413dd9a5087bb25437652Virustotal results 26.67%Heodo
2020-09-05arc-20200905-542361.docdoc 0917f0cbca78c19301ba65aa799b29dcf90ee3666fc9f8b83f00c5ea34a0eba6Virustotal results 26.67%Heodo
2020-09-05Attachment-2020_09_05-VOI66791.docdoc a4455d8697ed542eb675343e5b8806faa6b522c16a69fa423acaef8577319b47Virustotal results 25.86%Heodo
2020-09-05LIST_0610.docdoc 8d7ac57ba3c19f60ff3e7d2e5bccfb5a790b9d05c84fd5237e4235be91fde6a9Virustotal results 27.12%Heodo
2020-09-05463-20200905-0347545.docdoc 83d89a6f47106112698cbbe3f9f407abbefeaa5304896f38e7bff037db8cf901Virustotal results 25.42%Heodo
2020-09-05INF.docdoc f0e8099995f3ce14cd75fb397efda8a5ef10d2360783b3321d55be49eb5a7888Virustotal results 22.03%Heodo
2020-09-054251EME-2020_09_05-XFB3951.docdoc 92bc3c4ef5b89ad046cb64e9cd6ee2eb8d1053b1b07620f1a0aa6503912b05efVirustotal results 21.67%Heodo
2020-09-05arc 2020_09_05 8005167.docdoc 08946ba696e1f6e1da7e3f5cc61273c6d9c2bc25f61ff89151213d62d4c8e625Virustotal results 21.67%Heodo
2020-09-057358O_20200905_MO606894.docdoc 349685f93e08324717dd09b79130205af7e095872a599905ac58c453d5a4f25en/aHeodo
2020-09-05inf.docdoc 2d5d1fe8c77135420414a5cef6384683cfbf59f04e7e9b03c909c2f4c3ec54e9n/aHeodo
2020-09-05INF-6650.docdoc fc3e08fd58ba899bf7597bdf599c48d0a7628661213da9a31f112a226748053dVirustotal results 21.67%Heodo
2020-09-05INF 20200905.docdoc 3c51d26e98137dad5c907c872c1af3b0faea7094df4acb08d71d8873e8800a9dn/aHeodo
2020-09-05MES-2020_09_05-5256.docdoc e5b5640cb999ccd3a5fa07ef28ecdb37ea16dbe142bd3cec619837a9c0c3baddVirustotal results 21.31%Heodo
2020-09-05INF-Q2088.docdoc 5d1e5bc11522b6d4daf399dbbd1a18561ee98aad33dce8f798e2aad3a2a5c329Virustotal results 22.03%Heodo
2020-09-05REP 20200905.docdoc 4c30d9c7120c06908f0bfdea08c45fbef17a72793a4688a2aa236899c0aa8d2bn/aHeodo
2020-09-044276 2020_09_05 ZR723.docdoc d9a9da6db3834089876251db68e72db8a21ff82ee58ca338a43a055110f793c4Virustotal results 22.03%Heodo
2020-09-04File-2020_09_05.docdoc 6d8bb4cc926450189c32b7634d2940fba6556c2865096d7ccafec6b4b6e0c396Virustotal results 21.31%Heodo
2020-09-04dat-2020_09_05-732260.docdoc 88d669402f9cb6d3c39a7de76b5e16c45d5db2b7a4e5c5f2b9ec112d299f85d6Virustotal results 21.31%Heodo
2020-09-04MES RVU2036.docdoc 137b5a0cda220100df4caefac31efe6cc85c4bd72580fe2ce1987887901d3ed7Virustotal results 22.03%Heodo
2020-09-04LIST-2020_09_05-6185.docdoc 0f264ea12ac1b1f96e80c683d7aabce629b15ded57f43e29a4faa7cbf057d673Virustotal results 21.67%Heodo
2020-09-04Attachments 20200905 LTE734953.docdoc 5c812ff66278cf61e89871fd5d02ba1e06092920cbface28f9710fd77ca413b2Virustotal results 20.69%Heodo
2020-09-04I693_2020_09_05_QCK81130.docdoc 50d0908dff351c8fcdfd307f4c93cad6065d4c10c2614fd4201209f862681cfdVirustotal results 20.34%Heodo
2020-09-04INF-2020_09_05-71213.docdoc 44f213e9ff99dece96ea33d94a4e46bb3e508480002c5e255d46ca711b44a9e3Virustotal results 20.00%Heodo
2020-09-04REP 2020_09_05.docdoc e3986d10ba408aefe9c0f44c298dafcd5501ea916fc093cbff42c479194a9309Virustotal results 20.00%Heodo
2020-09-04Inf_9968.docdoc 17387deff7e3725fb0ae1aacebcb5e9be101e9ad64a337ce858202ef07458f1cVirustotal results 20.00%Heodo
2020-09-04List_D26189.docdoc 4833c57c4ff48c2720247aa3bc9c8d62222f9fe3d095924030c344bfa8673847Virustotal results 20.00%Heodo
2020-09-04INF_IYP823410.docdoc d22f6705c1735812ddadd90de20741627b3116e4f8f97de636b160757970fc90Virustotal results 20.00%Heodo
2020-09-04804 Z7885.docdoc 4ad62f2c57a013638168235884ebd78c0b024008e87c9b2e84719d7543132e4dn/aHeodo
2020-09-04UNTITLED.docdoc 924f9439383931103e48f1a8618e3b5b0dc6e56ba52261116659d5dd2bbc3050Virustotal results 20.00%Heodo
2020-09-04Doc-0592.docdoc 9c0798c3e8889889ef70b039545920afb91f1508144606704a1889286192bbf9Virustotal results 20.34%Heodo
2020-09-04list-2020_09_04-B443.docdoc 623ee20c1b2e5a53a0bbf6eb21f4b87cb0e6392e023f1e08267abc08c26e5bbfVirustotal results 20.34%Heodo
2020-09-04LIST TF277685.docdoc be20749611f2a5d9a09e4782aa4443e339c5e6e4bffe65d32debca99b53d8d59Virustotal results 38.98%Heodo
2020-09-04UNTITLED-20200904.docdoc 6d4a3d1438bb3e79ceb52f64f733148049bb3d3f4a2a5e11c5942a9fea1e7436n/aHeodo
2020-09-04ARC-20200904-056.docdoc 4c213965b64b715680686d5c98d5d0129fdccb424a5e74f561c6969fa785d75cn/aHeodo
2020-09-04Arc 1206105.docdoc 6679f5b0900d978a3f0c3c6e101bb18ef6a043de0a83d202f80c4cd6c77a2378Virustotal results 35.59%Heodo
2020-09-04MES-20200904-UVK2009.docdoc 95718b95b1e8732ffb58a93557e44c7e7f99a0dec4ab200ad2ffa83e6b455780Virustotal results 36.21%Heodo
2020-09-041326 S7578.docdoc 09525f62505c8bf7a99dd08caa65a18ab1c71a0f291fd666b3c53972aa9f1466Virustotal results 35.59%Heodo
2020-09-045018093_2020_09_04.docdoc 6f0b6b0222cea2d8ba538112fd54ca8a8bdff5682be620babe330264cca0858aVirustotal results 35.00%Heodo
2020-09-04Mes_PI34515.docdoc 113c8c78cdad0ed438501117f87ca9b0d52b672ddd8b015284541ded516827e6Virustotal results 35.00%Heodo
2020-09-04Arc_20200904.docdoc 1aa05e276c9fc45289cfe940287e1141128258a93052f3ac4d5d7b78c9b0f15cVirustotal results 36.67%Heodo
2020-09-04LIST_2020_09_04_4392787.docdoc 07499f73c1b2290d3f1628c566a91f8f3bda896e9c9774c4de22d614a8b1381eVirustotal results 35.00%Heodo
2020-09-04Attachments_20200904_KP17366.docdoc 403170a4ca043be478bde432c994bc04e0ec0bb95f4d457928890829a998e46aVirustotal results 35.00%Heodo
2020-09-04V887_20200904_HIH34601.docdoc 530c8a300c489e40c554fb9c0be1d28633675699b2a84b520ff020fcebcf964dn/aHeodo
2020-09-040083_9417249.docdoc d21d369a575521b056524693121464f2aa51cbbc0790a6b01069bae6bb4dbb32Virustotal results 35.59%Heodo
2020-09-04INF_20200904_9580275.docdoc 0d5e301807f834486dc3a5e55e4e04056e56cb6b8a2f2136c64f55a0ba12f1f3Virustotal results 35.00%Heodo
2020-09-0403317 SLU47942.docdoc 38723e854156b62f83e4cdcf30c187c9fc432db05f0f55e1c824b40c7d02a489Virustotal results 35.59%Heodo
2020-09-04Inf-2020_09_04-OGX56678.docdoc 7ba727e56ef8d6bd90965dcbe4450880fd516019d4c10f8a5d101541aa883dfan/aHeodo
2020-09-04File_2020_09_04_022.docdoc 4ff12f48cce6bd43cadbeb06f54c727fa688da49d56903348dc190711e4d0891Virustotal results 28.33%Heodo
2020-09-04MES_J270.docdoc 088de2c93ca2a5d1c4e17cab469aa2ea619a58e4c03c744b338f74787e4dca86Virustotal results 30.51%Heodo
2020-09-04Mes-2020_09_04-571013.docdoc 9b5118c972be1fdccab96caaa3644530d5a73cefcb8b7a048497c43b3e1867dan/aHeodo
2020-09-04Untitled-2020_09_04-T468319.docdoc ac6a5c2f72c10af857d73db327000d07f01f791fe6638c339362584fe1293a4fVirustotal results 28.81%Heodo
2020-09-04Mes_20200904_SJ119.docdoc 2b92a083d78d4854c3fa6ee427357e1a0c4f3b5fc4b22546712e350870b77c45Virustotal results 28.33%Heodo
2020-09-04doc_20200904_09095.docdoc d7452abd23b4d0a252d67436bea5f98b177d6d4a707ce10ce71852940cf97a3cVirustotal results 28.33%Heodo